CVE-2025-38579
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
f2fs: fix KMSAN uninit-value in extent_info usage
KMSAN reported a use of uninitialized value in __is_extent_mergeable()
and __is_back_mergeable() via the read extent tree path.
The root cause is that get_read_extent_info() only initializes three
fields (fofs, blk, len) of struct extent_info, leaving the
remaining fields uninitialized. This leads to undefined behavior
when those fields are accessed later, especially during
extent merging.
Fix it by zero-initializing the extent_info struct before population.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 94afd6d6e5253179c9b891d02081cc8355a11768 < 08e8ab00a6d20d5544c932ee85a297d833895141 | affected |
| Linux | Linux | 94afd6d6e5253179c9b891d02081cc8355a11768 < e68b751ec2b15d866967812c57cfdfc1eba6a269 | affected |
| Linux | Linux | 94afd6d6e5253179c9b891d02081cc8355a11768 < dabfa3952c8e6bfe6414dbf32e8b6c5f349dc898 | affected |
| Linux | Linux | 94afd6d6e5253179c9b891d02081cc8355a11768 < 44a79437309e0ee2276ac17aaedc71253af253a8 | affected |
| Linux | Linux | 94afd6d6e5253179c9b891d02081cc8355a11768 < cc1615d5aba4f396cf412579928539a2b124c8a0 | affected |
| Linux | Linux | 94afd6d6e5253179c9b891d02081cc8355a11768 < 01b6f5955e0008af6bc3a181310d2744bb349800 | affected |
| Linux | Linux | 94afd6d6e5253179c9b891d02081cc8355a11768 < 154467f4ad033473e5c903a03e7b9bca7df9a0fa | affected |
| Linux | Linux | 5.15 | affected |
| Linux | Linux | 0 < 5.15 | unaffected |
| Linux | Linux | 5.15.190 <= 5.15.* | unaffected |
| Linux | Linux | 6.1.148 <= 6.1.* | unaffected |
| Linux | Linux | 6.6.102 <= 6.6.* | unaffected |
| Linux | Linux | 6.12.42 <= 6.12.* | unaffected |
| Linux | Linux | 6.15.10 <= 6.15.* | unaffected |
| Linux | Linux | 6.16.1 <= 6.16.* | unaffected |
| Linux | Linux | 6.17 <= * | unaffected |
Weaknesses
ADP Enrichment
CVE Program Container
Additional References
References
- https://git.kernel.org/stable/c/08e8ab00a6d20d5544c932ee85a297d833895141
- https://git.kernel.org/stable/c/e68b751ec2b15d866967812c57cfdfc1eba6a269
- https://git.kernel.org/stable/c/dabfa3952c8e6bfe6414dbf32e8b6c5f349dc898
- https://git.kernel.org/stable/c/44a79437309e0ee2276ac17aaedc71253af253a8
- https://git.kernel.org/stable/c/cc1615d5aba4f396cf412579928539a2b124c8a0
- https://git.kernel.org/stable/c/01b6f5955e0008af6bc3a181310d2744bb349800
- https://git.kernel.org/stable/c/154467f4ad033473e5c903a03e7b9bca7df9a0fa
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.