syzbot

 sign-in | mailing list | source | docs
🐞 Open [196]
🐞 Fixed [42]
🐞 Invalid [470]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
💬 Send us feedback

Applied filters: WithRepro (drop)
Title Rank 🛈 Repro Cause bisect Fix bisect Count Last Reported Patched Closed Patch
kernel BUG at drivers/android/binder_alloc.c:LINE! -1 C 44 2405d 2653d 1/3 never 5997da82145b FROMGIT: binder: fix BUG_ON found by selinux-testsuite
possible deadlock in seq_read 4 C 56124 2400d 2636d 1/3 never 73601ea5b7b1 fs/open.c: allow opening only regular files during execve()
general protection fault in sg_remove_scat 2 C 279 3013d 3195d 3/3 2831d 48ae8484e9fc scsi: sg: don't return bogus Sg_requests
KASAN: stack-out-of-bounds Read in xt_copy_counters_from_user 17 C 18 2841d 2847d 3/3 2832d e466af75c074 netfilter: x_tables: avoid stack-out-of-bounds read in xt_copy_counters_from_user
general protection fault in sockfs_setattr 2 C 11 2869d 2887d 3/3 2868d 6d8c50dcb029 UPSTREAM: socket: close race condition between sock_close() and sockfs_setattr()
BUG: unable to handle kernel paging request in page_remove_rmap 8 C 14617 2869d 2876d 3/3 2869d fd7e315988b7 x86/mm: Simplify p[g4um]d_page() macros
BUG: unable to handle kernel paging request in copy_huge_pmd 8 C 433 2869d 2876d 3/3 2869d fd7e315988b7 x86/mm: Simplify p[g4um]d_page() macros
BUG: unable to handle kernel paging request in __split_huge_pmd 8 C 174 2869d 2876d 3/3 2869d fd7e315988b7 x86/mm: Simplify p[g4um]d_page() macros
KASAN: use-after-free Read in __list_del_entry (3) 19 C 9 3032d 3039d 3/3 2948d 7aa135fcf263 UPSTREAM: ANDROID: binder: prevent transactions into own process.
KASAN: use-after-free Read in binder_release_work 19 C 132 2988d 3002d 3/3 2961d 7aa135fcf263 UPSTREAM: ANDROID: binder: prevent transactions into own process.
WARNING in set_precision -1 C 1320 2981d 3103d 3/3 2981d 9c438d7a3a52 KEYS: DNS: limit the length of option strings
possible deadlock in __might_fault 4 C 10264 3025d 3046d 3/3 2989d 740a5759bf22 staging: android: ashmem: Fix possible deadlock in ashmem_ioctl
BUG: using __this_cpu_read() in preemptible code in ipcomp_init_state 4 C 304159 3004d 3122d 2/3 3003d 0dcd7876029b net: xfrm: use preempt-safe this_cpu_read() in ipcomp_alloc_tfms()
WARNING in binder_send_failed_reply -1 C 74 3038d 3137d 2/3 3036d e46a3b3ba750 UPSTREAM: ANDROID: binder: remove WARN() for redundant txn error
KASAN: use-after-free Read in remove_wait_queue 19 C 6 3051d 3061d 2/3 3039d 5eeb2ca02a2f ANDROID: binder: synchronize_rcu() when using POLLFREE.
WARNING in __alloc_pages_slowpath (3) -1 C 547 3041d 3044d 2/3 3041d f67385227a42 ANDROID: keychord: Check for write data size
KASAN: double-free or invalid-free in relay_open 24 C 64 3055d 3106d 2/3 3052d a1be1f3931bf kernel/relay.c: revert "kernel/relay.c: fix potential memory leak"
BUG: Double free or freeing an invalid pointer (2) -1 C 1 3127d 3127d 2/3 3052d a1be1f3931bf kernel/relay.c: revert "kernel/relay.c: fix potential memory leak"
KASAN: use-after-free Read in __lock_acquire 19 C 1161 3066d 3137d 2/3 3058d f5cb779ba163 UPSTREAM: ANDROID: binder: remove waitqueue when thread exits.
BUG: bad unlock balance in ipmr_mfc_seq_stop 4 C 7493 3059d 3137d 2/3 3058d 4adfa79fc254 ip6mr: fix stale iterator
WARNING in task_participate_group_stop -1 C 15 3093d 3250d 2/3 3066d 426915796cca kernel/signal.c: remove the no longer needed SIGNAL_UNKILLABLE check in complete_signal()
kernel BUG at net/key/af_key.c:LINE! -1 C 1 3229d 3229d 2/3 3069d 0e74aa1d79a5 xfrm: Copy policy family in clone_policy
BUG: unable to handle kernel paging request in snd_seq_oss_readq_puts 8 C 3 3207d 3206d 2/3 3107d 132d358b183a ALSA: seq: Fix OSS sysex delivery in OSS emulation
KASAN: stack-out-of-bounds Read in memcmp 17 C 4 3252d 3256d 1/3 3132d 4c86d77743a5 BACKPORT: xfrm: Don't use sk_family for socket policy lookups
WARNING in reuseport_alloc -1 C 106 3146d 3175d 1/3 3136d 1b5f962e71bf soreuseport: fix initialization race
WARNING in skb_warn_bad_offload -1 C 442 3157d 3264d 1/3 3157d net: remove open-coded skb_cow_head.
KASAN: use-after-free Read in fanout_demux_rollover 19 C 5 3199d 3220d 1/3 3158d 008ba2a13f2d packet: hold bind lock when rebinding to fanout hook
WARNING in __alloc_pages_slowpath -1 C 2412 3163d 3238d 1/3 3163d 7682e399485f FROMLIST: ALSA: usx2y: Suppress kernel warning at page allocation failures
KASAN: use-after-free Read in bio_copy_user_iov 19 syz 73 3225d 3256d 1/3 3172d 1bc0eb044615 scsi: sg: protect accesses to 'reserved' page array
BUG: sleeping function called from invalid context at mm/slab.h:LINE -1 C 3 3249d 3262d 1/3 3172d 89e357d83c06 af_key: Add lock to key dump
BUG: unable to handle kernel NULL pointer dereference in __remove_shared_vm_struct 10 C 1 3235d 3233d 1/3 3172d 2b7e8665b4ff fork: fix incorrect fput of ->exe_file causing use-after-free
WARNING in __switch_to -1 C 54 3191d 3259d 1/3 3172d 814fb7bb7db5 x86/fpu: Don't let userspace set bogus xcomp_bv
KASAN: use-after-free Read in parse_ipsecrequests 19 C 7 3263d 3264d 1/3 3233d 096f41d3a8fc UPSTREAM: af_key: Fix sadb_x_ipsecrequest parsing
WARNING in __list_add -1 C 11 3246d 3259d 1/3 3244d 59584701f1e2 ANDROID: keychord: Fix races in keychord_write.
BUG: Double free or freeing an invalid pointer -1 syz 70 3245d 3263d 1/3 3244d 59584701f1e2 ANDROID: keychord: Fix races in keychord_write.
KASAN: slab-out-of-bounds Read in keychord_write 17 syz 2 3265d 3264d 1/3 3259d 913d980e07d8 ANDROID: keychord: Fix a slab out-of-bounds read.