In the Linux kernel, the following vulnerability has been resolved:
fs: init flagsvalid before calling vfsfileattr_get
syzbot reported a uninit-value bug in [1].
Similar to the "*get" context where the kernel's internal filekattr structure is initialized before calling vfsfileattr_get(), we should use the same mechanism when using fa.
[1] BUG: KMSAN: uninit-value in fusefileattrget+0xeb4/0x1450 fs/fuse/ioctl.c:517 fusefileattrget+0xeb4/0x1450 fs/fuse/ioctl.c:517 vfsfileattrget fs/file_attr.c:94 [inline] __dosysfilegetattr fs/fileattr.c:416 [inline]
Local variable fa.i created at: __dosysfilegetattr fs/fileattr.c:380 [inline] __sesysfilegetattr+0x8c/0xbd0 fs/fileattr.c:372
{
"cna_assigner": "Linux",
"osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/43xxx/CVE-2026-43474.json"
}