DEBIAN-CVE-2025-68727

DEBIAN-CVE-2025-68727 PUBLISHED

In the Linux kernel, the following vulnerability has been resolved: ntfs3: Fix uninit buffer allocated by __getname() Fix uninit errors caused after buffer allocation given to 'de'; by initializing the buffer with zeroes. The fix was found by using KMSAN.

Affected Products

Vendor	Product	Versions
Debian:12	linux	0, 6.1.38-3, 6.1.106-3
Debian:14	linux	6.15.1-1, 6.15.2-1, 6.15.3-1
Debian:13	linux	6.12.41-1, 6.12.43-1, 6.12.43-1~bpo12+1
Debian:11	linux-6.1	0, 6.1.106-3~deb11u2, 6.1.106-3~deb11u3

Timeline

Dec 24, 2025 CVE Published
Apr 28, 2026 CVE Updated

References

https://security-tracker.debian.org/tracker/CVE-2025-68727 advisory

Open in Interactive Console →