|
KASAN: use-after-free Read in get_max_inline_xattr_value_size
ext4
|
C |
|
|
20 |
390d |
469d
|
2/2 |
316d |
8aad0253b5e6
ext4: add inode table check in __ext4_get_inode_loc to aovid possible infinite loop
|
|
kernel BUG in ext4_write_inline_data
|
C |
|
|
3 |
492d |
530d
|
2/2 |
379d |
21086923c1e6
UPSTREAM: ext4: fix kernel BUG in 'ext4_write_inline_data_end()'
|
|
KASAN: use-after-free Read in do_garbage_collect
|
C |
|
|
4 |
517d |
546d
|
2/2 |
380d |
e5142a4935c1
f2fs: fix to do sanity check on i_extra_isize in is_alive()
|
|
kernel BUG in __skb_gso_segment
|
C |
|
|
1 |
491d |
491d
|
2/2 |
387d |
de2ea2a0ad51
net/af_packet: make sure to pull mac header
|
|
kernel BUG in ext4_write_inline_data_end
|
C |
|
|
4 |
643d |
777d
|
2/2 |
569d |
18881d7e5171
ext4: fix race condition between ext4_write and ext4_convert_inline_data
|
|
kernel BUG in notify_change
|
C |
|
|
18 |
603d |
1146d
|
2/2 |
576d |
def19b1cf16c
ANDROID: incfs: Add check for ATTR_KILL_SUID and ATTR_MODE in incfs_setattr
|
|
kernel BUG in ext4_ind_remove_space
|
C |
|
|
1 |
820d |
820d
|
2/2 |
680d |
259dc49deaa2
ext4: limit length to bitmap_maxbytes - blocksize in punch_hole
|
|
general protection fault in incfs_kill_sb
|
C |
|
|
2965 |
770d |
805d
|
2/2 |
731d |
b730087e9a5d
ANDROID: incremental-fs: limit mount stack depth
|
|
KASAN: use-after-free Read in firmware_fallback_sysfs
|
C |
|
|
2349 |
911d |
1461d
|
1/2 |
911d |
d09639528b66
firmware_loader: fix use-after-free in firmware_fallback_sysfs
|
|
BUG: unable to handle kernel paging request in csum_partial
|
C |
|
|
5 |
965d |
1547d
|
1/2 |
911d |
53b480e68c1c
ip_gre: add validation for csum_start
|
|
KASAN: slab-out-of-bounds Write in snd_usb_mixer_interrupt
|
C |
|
|
4 |
1390d |
1399d
|
1/2 |
918d |
25e1bb1e6c36
ALSA: usb-audio: Fix OOB access of mixer element list
|
|
KASAN: use-after-free Read in ax88172a_unbind
|
C |
|
|
38 |
1361d |
1476d
|
1/2 |
918d |
d0d394c71604
ax88172a: fix ax88172a_unbind() failures
|
|
KASAN: use-after-free Read in usbhid_close
|
syz |
|
|
1 |
1467d |
1467d
|
1/2 |
918d |
613045bfc63d
HID: usbhid: Fix race between usbhid_close() and usbhid_stop()
|
|
KASAN: slab-out-of-bounds Write in hiddev_ioctl_usage
|
C |
|
|
4 |
1453d |
1472d
|
1/2 |
918d |
851d0813ab80
HID: hiddev: Fix slab-out-of-bounds write in hiddev_ioctl_usage()
|
|
general protection fault in path_openat
|
syz |
|
|
26 |
1534d |
1541d
|
1/2 |
920d |
2c38e6140126
vfs: fix do_last() regression
|
|
general protection fault in nf_ct_netns_do_get
|
C |
|
|
10 |
1560d |
1560d
|
1/2 |
920d |
503ff0dcfba7
netfilter: arp_tables: init netns pointer in xt_tgchk_param struct
|
|
KASAN: use-after-free Read in locks_delete_block
|
C |
|
|
3 |
1506d |
1560d
|
1/2 |
920d |
384e15fc4226
locks: fix a potential use-after-free problem when wakeup a waiter
|
|
general protection fault in inet6_set_link_af
|
C |
|
|
1 |
1535d |
1535d
|
1/2 |
920d |
036ecba2eb99
ipv6/addrconf: fix potential NULL deref in inet6_set_link_af()
|
|
BUG: unable to handle kernel paging request in do_xdp_generic
|
C |
|
|
189 |
1522d |
1552d
|
1/2 |
920d |
747d5bcb97eb
tun: correct header offsets in napi frags mode
|
|
KASAN: use-after-free Read in eth_header_parse_protocol
|
C |
|
|
532 |
1099d |
1128d
|
1/2 |
920d |
599200ad44e7
net: ensure mac header is set in virtio_net_hdr_to_skb()
|
|
KASAN: use-after-free Write in smsc95xx_mdio_read
|
syz |
|
|
2 |
1407d |
1407d
|
1/2 |
1380d |
ab9ee18f4646
usbnet: smsc95xx: Fix use-after-free after removal
|