CVE-2025-38737

UNKNOWN 0.0

cifs: Fix oops due to uninitialised variable

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

In the Linux kernel, the following vulnerability has been resolved: cifs: Fix oops due to uninitialised variable Fix smb3_init_transform_rq() to initialise buffer to NULL before calling netfs_alloc_folioq_buffer() as netfs assumes it can append to the buffer it is given. Setting it to NULL means it should start a fresh buffer, but the value is currently undefined.

Vendor	linux
Product	linux
Ecosystems	Linux Kernel
Industries	Technology
Published	Sep 5, 2025
Last Updated	May 11, 2026

Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new unknown vulnerabilities affecting linux linux are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Linux / Linux

a2906d3316fc19bf0ade84618bb73eab604c447e < 4931fe2dbe1cc0e7d350a4b51b0b330e43971d98 a2906d3316fc19bf0ade84618bb73eab604c447e < 6adaa9fae36f848afa7278945d725e197e33c496 a2906d3316fc19bf0ade84618bb73eab604c447e < 453a6d2a68e54a483d67233c6e1e24c4095ee4be

Linux / Linux

6.12

References

NVD ↗ CVE.org ↗ EPSS Data ↗

git.kernel.org: https://git.kernel.org/stable/c/4931fe2dbe1cc0e7d350a4b51b0b330e43971d98 git.kernel.org: https://git.kernel.org/stable/c/6adaa9fae36f848afa7278945d725e197e33c496 git.kernel.org: https://git.kernel.org/stable/c/453a6d2a68e54a483d67233c6e1e24c4095ee4be