syzbot


fixed (39):
Title Repro Bisected Count Last Reported Closed Patch
possible deadlock in ashmem_llseek 5 588d 632d 189d 1d47c874 staging: android: ashmem: Fix lockdep issue during llseek
general protection fault in sg_remove_scat C 279 562d 745d 380d 6505dd1f scsi: sg: don't return bogus Sg_requests
KASAN: stack-out-of-bounds Read in xt_copy_counters_from_user C 18 390d 396d 382d 3ea051bc netfilter: x_tables: avoid stack-out-of-bounds read in xt_copy_counters_from_user
general protection fault in sockfs_setattr C 11 418d 436d 417d 7fa8c15e UPSTREAM: socket: close race condition between sock_close() and sockfs_setattr()
BUG: unable to handle kernel paging request in page_remove_rmap C 14617 419d 425d 419d 89c059b6 x86/mm: Simplify p[g4um]d_page() macros
BUG: unable to handle kernel paging request in copy_huge_pmd C 433 419d 425d 419d 89c059b6 x86/mm: Simplify p[g4um]d_page() macros
BUG: unable to handle kernel paging request in __split_huge_pmd C 174 419d 425d 419d 89c059b6 x86/mm: Simplify p[g4um]d_page() macros
KASAN: use-after-free Read in __list_del_entry (3) C 9 581d 588d 497d c4048b20 UPSTREAM: ANDROID: binder: prevent transactions into own process.
KASAN: use-after-free Read in binder_release_work C 132 538d 551d 510d c4048b20 UPSTREAM: ANDROID: binder: prevent transactions into own process.
WARNING in set_precision C 1320 531d 652d 531d 06a02a81 KEYS: DNS: limit the length of option strings
possible deadlock in __might_fault C 10264 574d 595d 538d d3c79a38 staging: android: ashmem: Fix possible deadlock in ashmem_ioctl
BUG: using __this_cpu_read() in preemptible code in ipcomp_init_state C 304159 553d 671d 552d 30df7fb5 net: xfrm: use preempt-safe this_cpu_read() in ipcomp_alloc_tfms()
WARNING in binder_send_failed_reply C 74 588d 686d 586d d3a2afb9 UPSTREAM: ANDROID: binder: remove WARN() for redundant txn error
KASAN: use-after-free Read in remove_wait_queue C 6 600d 610d 588d 72766d75 ANDROID: binder: synchronize_rcu() when using POLLFREE.
WARNING in __alloc_pages_slowpath (3) C 547 590d 594d 590d f6738522 ANDROID: keychord: Check for write data size
KASAN: double-free or invalid-free in relay_open C 64 605d 656d 601d 91cebf98 kernel/relay.c: revert "kernel/relay.c: fix potential memory leak"
BUG: Double free or freeing an invalid pointer (2) C 1 677d 677d 601d 91cebf98 kernel/relay.c: revert "kernel/relay.c: fix potential memory leak"
BUG: bad unlock balance in ipmr_mfc_seq_stop C 7493 608d 686d 608d 7d3d60ef ip6mr: fix stale iterator
KASAN: use-after-free Read in __lock_acquire C 1161 615d 686d 608d 550c01d0 UPSTREAM: ANDROID: binder: remove waitqueue when thread exits.
WARNING in task_participate_group_stop C 15 643d 799d 615d 4d53eb49 kernel/signal.c: remove the no longer needed SIGNAL_UNKILLABLE check in complete_signal()
general protection fault in ip6_setup_cork 924 715d 726d 619d 28fa583f ipv6: flowlabel: do not leave opt->tot_len with garbage
kernel BUG at net/key/af_key.c:LINE! C 1 778d 778d 619d 6ceabde6 xfrm: Copy policy family in clone_policy
general protection fault in assoc_array_apply_edit 1 721d 721d 622d 67bcc5e5 assoc_array: Fix a buggy node-splitting case
BUG: unable to handle kernel paging request in snd_seq_oss_readq_puts C 3 756d 755d 656d 4b52c317 ALSA: seq: Fix OSS sysex delivery in OSS emulation
KASAN: stack-out-of-bounds Read in memcmp C 4 802d 805d 682d 0b865641 BACKPORT: xfrm: Don't use sk_family for socket policy lookups
WARNING in reuseport_alloc C 106 695d 725d 686d 3b0b4d2c soreuseport: fix initialization race
WARNING in skb_warn_bad_offload C 442 706d 813d 706d net: remove open-coded skb_cow_head.
KASAN: use-after-free Read in fanout_demux_rollover C 5 749d 770d 707d 6f7cdd4a packet: hold bind lock when rebinding to fanout hook
WARNING in __alloc_pages_slowpath C 2412 713d 787d 713d 1f46caef FROMLIST: ALSA: usx2y: Suppress kernel warning at page allocation failures
WARNING in __switch_to C 54 740d 808d 721d 5e9b07f3 x86/fpu: Don't let userspace set bogus xcomp_bv
KASAN: use-after-free Read in bio_copy_user_iov syz 73 775d 805d 721d 4099ac93 scsi: sg: protect accesses to 'reserved' page array
general protection fault in skb_release_data 1 792d 792d 721d 304b4101 ipv6: fix out of bound writes in __ip6_append_data()
BUG: sleeping function called from invalid context at mm/slab.h:LINE C 3 798d 811d 721d 0f94b36d af_key: Add lock to key dump
BUG: unable to handle kernel NULL pointer dereference in __remove_shared_vm_struct C 1 784d 783d 721d b65b6ac5 fork: fix incorrect fput of ->exe_file causing use-after-free
WARNING in fib6_del 281 745d 782d 722d 9b2b0817 UPSTREAM: ipv6: fib: Unlink replaced routes from their nodes
KASAN: use-after-free Read in parse_ipsecrequests C 7 813d 813d 782d 3c17d418 UPSTREAM: af_key: Fix sadb_x_ipsecrequest parsing
WARNING in __list_add C 11 795d 809d 794d 59584701 ANDROID: keychord: Fix races in keychord_write.
BUG: Double free or freeing an invalid pointer syz 70 795d 812d 794d 59584701 ANDROID: keychord: Fix races in keychord_write.
KASAN: slab-out-of-bounds Read in keychord_write syz 2 815d 813d 808d 913d980e ANDROID: keychord: Fix a slab out-of-bounds read.