From this webpage screenshot, the following key vulnerability information can be extracted: 1. Vulnerability Description: - Title: fuse: Initialize beyond-EOF page contents before setting uptodate - Description: The function does not fully initialize page contents (including portions beyond EOF) before marking the page as uptodate. This could result in page contents being visible in userspace. 2. Impact Scope: - Information Leakage: This vulnerability may lead to the exposure of page contents beyond EOF in userspace, but only on systems that do not enable init-on-alloc (via or corresponding kernel command-line parameters). 3. Remediation Recommendation: - Fix Code: The function has been fixed to ensure that page contents are fully initialized before marking the page as uptodate. 4. Related Links: - Link: https://bugs.chromium.org/p/project-zero/issues/detail?id=2574 - Fix Request: a1d75f258230 ("fuse: add store request") 5. Authors: - Committer: Jann Horn - Committer: Linus Torvalds 6. Code Changes: - File: - Change Details: The function has been fixed to ensure full initialization of page contents before setting the page as uptodate. This information indicates that the vulnerability could lead to information leakage, but only affects systems that do not enable init-on-alloc. The vulnerability has been patched by ensuring complete initialization of page contents prior to marking them as uptodate.