CVE-2025-68727

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2025-68727

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-68727.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2025-68727

Downstream

BELL-CVE-2025-68727

DEBIAN-CVE-2025-68727

DLA-4476-1

DSA-6127-1

ECHO-57ec-f852-85d0

ROOT-OS-DEBIAN-12-CVE-2025-68727

ROOT-OS-DEBIAN-13-CVE-2025-68727

ROOT-OS-UBUNTU-2204-CVE-2025-68727

ROOT-OS-UBUNTU-2404-CVE-2025-68727

SUSE-SU-2026:0447-1

SUSE-SU-2026:0472-1

SUSE-SU-2026:0587-1

SUSE-SU-2026:20477-1

SUSE-SU-2026:20498-1

SUSE-SU-2026:20845-1

UBUNTU-CVE-2025-68727

USN-8094-1

USN-8094-2

USN-8094-3

USN-8094-4

USN-8096-1

USN-8096-2

USN-8096-3

USN-8096-4

USN-8096-5

USN-8116-1

openSUSE-SU-2026:10039-1

openSUSE-SU-2026:10301-1

Related

Published

2025-12-24T10:33:11.085Z

Modified

2026-03-28T17:44:08.737382701Z

Summary

ntfs3: Fix uninit buffer allocated by __getname()

Details

In the Linux kernel, the following vulnerability has been resolved:

ntfs3: Fix uninit buffer allocated by __getname()

Fix uninit errors caused after buffer allocation given to 'de'; by initializing the buffer with zeroes. The fix was found by using KMSAN.

Database specific

{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/68xxx/CVE-2025-68727.json",
    "cna_assigner": "Linux"
}

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

78ab59fee07f22464f32eafebab2bd97ba94ff2d

Fixed

90e23db1a85956026999c18e76f402542cb004da

Fixed

53f4d6cb97096590410f3719f75cdf9fc5120f37

Fixed

dcb5e3cd96b77d52bb65988e4c914636a6d4fdd9

Fixed

4b1fd82848fdf0e01b3320815b261006c1722c3e

Fixed

d88d4b455b6794f48d7adad52593f1700c7bd50e

Fixed

b40a4eb4a0543d49686a6e693745009dac3b86a9

Fixed

9948dcb2f7b5a1bf8e8710eafaf6016e00be3ad6

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-68727.json"

Linux / Kernel

Package

Name: Kernel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

5.15.0

Fixed

5.15.198

Type: ECOSYSTEM
Events: Introduced

5.16.0

Fixed

6.1.160

Type: ECOSYSTEM
Events: Introduced

6.2.0

Fixed

6.6.120

Type: ECOSYSTEM
Events: Introduced

6.7.0

Fixed

6.12.63

Type: ECOSYSTEM
Events: Introduced

6.13.0

Fixed

6.17.13

Type: ECOSYSTEM
Events: Introduced

6.18.0

Fixed

6.18.2

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-68727.json"