CVE-2025-40278

*** Pendiente de traducción *** In the Linux kernel, the following vulnerability has been resolved:<br /> <br /> net: sched: act_ife: initialize struct tc_ife to fix KMSAN kernel-infoleak<br /> <br /> Fix a KMSAN kernel-infoleak detected by the syzbot .<br /> <br /> [net?] KMSAN: kernel-infoleak in __skb_datagram_iter<br /> <br /> In tcf_ife_dump(), the variable &amp;#39;opt&amp;#39; was partially initialized using a<br /> designatied initializer. While the padding bytes are reamined<br /> uninitialized. nla_put() copies the entire structure into a<br /> netlink message, these uninitialized bytes leaked to userspace.<br /> <br /> Initialize the structure with memset before assigning its fields<br /> to ensure all members and padding are cleared prior to beign copied.<br /> <br /> This change silences the KMSAN report and prevents potential information<br /> leaks from the kernel memory.<br /> <br /> This fix has been tested and validated by syzbot. This patch closes the<br /> bug reported at the following syzkaller link and ensures no infoleak.