CVE-2026-43474
Analyzed Analyzed - Analysis Complete
Uninitialized Variable in Linux Kernel fs/file_attr.c

Publication date: 2026-05-08

Last updated on: 2026-05-21

Assigner: kernel.org

Description
In the Linux kernel, the following vulnerability has been resolved: fs: init flags_valid before calling vfs_fileattr_get syzbot reported a uninit-value bug in [1]. Similar to the "*get" context where the kernel's internal file_kattr structure is initialized before calling vfs_fileattr_get(), we should use the same mechanism when using fa. [1] BUG: KMSAN: uninit-value in fuse_fileattr_get+0xeb4/0x1450 fs/fuse/ioctl.c:517 fuse_fileattr_get+0xeb4/0x1450 fs/fuse/ioctl.c:517 vfs_fileattr_get fs/file_attr.c:94 [inline] __do_sys_file_getattr fs/file_attr.c:416 [inline] Local variable fa.i created at: __do_sys_file_getattr fs/file_attr.c:380 [inline] __se_sys_file_getattr+0x8c/0xbd0 fs/file_attr.c:372
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-05-08
Last Modified
2026-05-21
Generated
2026-06-19
AI Q&A
2026-05-08
EPSS Evaluated
2026-06-18
NVD
CVE-2026-43474
EUVD
EUVD-2026-28780
Affected Vendors & Products
Showing 3 associated CPEs
Vendor Product Version / Range
linux linux_kernel 7.0
linux linux_kernel From 6.19 (inc) to 6.19.9 (exc)
linux linux_kernel From 6.17 (inc) to 6.18.19 (exc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-908 The product uses or accesses a resource that has not been initialized.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability in the Linux kernel involves an uninitialized value bug related to file attribute handling. Specifically, the issue occurs because the initialization of certain flags (flags_valid) was not done before calling the function vfs_fileattr_get. This can lead to the use of uninitialized data in the kernel's internal file attribute structures, as reported by syzbot.

The problem is similar to a previously known context where the kernel's internal file_kattr structure must be initialized before calling vfs_fileattr_get. The fix ensures that the same initialization mechanism is applied when using the file attribute structure (fa) to prevent uninitialized value usage.

Impact Analysis

This vulnerability involves an uninitialized value bug in the Linux kernel's fuse_fileattr_get function, which could potentially lead to undefined behavior or system instability when file attributes are accessed.

Since it is a kernel-level issue related to file attribute handling, it may affect system reliability or security depending on how the uninitialized value is exploited.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-43474. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart