|
kernel BUG in __es_remove_extent (2)
|
C |
|
|
2 |
226d |
380d
|
2/2 |
223d |
d0083459e2b6
ext4: fix bug_on in __es_tree_search
|
|
KASAN: use-after-free Read in get_max_inline_xattr_value_size
ext4
|
C |
|
|
20 |
708d |
787d
|
2/2 |
635d |
8aad0253b5e6
ext4: add inode table check in __ext4_get_inode_loc to aovid possible infinite loop
|
|
kernel BUG in ext4_write_inline_data
|
C |
|
|
3 |
810d |
848d
|
2/2 |
698d |
21086923c1e6
UPSTREAM: ext4: fix kernel BUG in 'ext4_write_inline_data_end()'
|
|
KASAN: use-after-free Read in do_garbage_collect
|
C |
|
|
4 |
835d |
865d
|
2/2 |
699d |
e5142a4935c1
f2fs: fix to do sanity check on i_extra_isize in is_alive()
|
|
kernel BUG in __skb_gso_segment
|
C |
|
|
1 |
810d |
810d
|
2/2 |
705d |
de2ea2a0ad51
net/af_packet: make sure to pull mac header
|
|
kernel BUG in ext4_write_inline_data_end
|
C |
|
|
4 |
962d |
1095d
|
2/2 |
888d |
18881d7e5171
ext4: fix race condition between ext4_write and ext4_convert_inline_data
|
|
kernel BUG in notify_change
|
C |
|
|
18 |
921d |
1465d
|
2/2 |
895d |
def19b1cf16c
ANDROID: incfs: Add check for ATTR_KILL_SUID and ATTR_MODE in incfs_setattr
|
|
kernel BUG in ext4_ind_remove_space
|
C |
|
|
1 |
1138d |
1138d
|
2/2 |
999d |
259dc49deaa2
ext4: limit length to bitmap_maxbytes - blocksize in punch_hole
|
|
general protection fault in incfs_kill_sb
|
C |
|
|
2965 |
1089d |
1123d
|
2/2 |
1049d |
b730087e9a5d
ANDROID: incremental-fs: limit mount stack depth
|
|
KASAN: use-after-free Read in firmware_fallback_sysfs
|
C |
|
|
2349 |
1229d |
1779d
|
1/2 |
1229d |
d09639528b66
firmware_loader: fix use-after-free in firmware_fallback_sysfs
|
|
BUG: unable to handle kernel paging request in csum_partial
|
C |
|
|
5 |
1284d |
1865d
|
1/2 |
1229d |
53b480e68c1c
ip_gre: add validation for csum_start
|
|
KASAN: slab-out-of-bounds Write in snd_usb_mixer_interrupt
|
C |
|
|
4 |
1708d |
1718d
|
1/2 |
1237d |
25e1bb1e6c36
ALSA: usb-audio: Fix OOB access of mixer element list
|
|
KASAN: use-after-free Read in ax88172a_unbind
|
C |
|
|
38 |
1679d |
1795d
|
1/2 |
1237d |
d0d394c71604
ax88172a: fix ax88172a_unbind() failures
|
|
KASAN: use-after-free Read in usbhid_close
|
syz |
|
|
1 |
1786d |
1786d
|
1/2 |
1237d |
613045bfc63d
HID: usbhid: Fix race between usbhid_close() and usbhid_stop()
|
|
KASAN: slab-out-of-bounds Write in hiddev_ioctl_usage
|
C |
|
|
4 |
1771d |
1790d
|
1/2 |
1237d |
851d0813ab80
HID: hiddev: Fix slab-out-of-bounds write in hiddev_ioctl_usage()
|
|
general protection fault in path_openat
|
syz |
|
|
26 |
1852d |
1859d
|
1/2 |
1238d |
2c38e6140126
vfs: fix do_last() regression
|
|
general protection fault in nf_ct_netns_do_get
|
C |
|
|
10 |
1878d |
1878d
|
1/2 |
1238d |
503ff0dcfba7
netfilter: arp_tables: init netns pointer in xt_tgchk_param struct
|
|
KASAN: use-after-free Read in locks_delete_block
|
C |
|
|
3 |
1825d |
1878d
|
1/2 |
1238d |
384e15fc4226
locks: fix a potential use-after-free problem when wakeup a waiter
|
|
general protection fault in inet6_set_link_af
|
C |
|
|
1 |
1853d |
1853d
|
1/2 |
1238d |
036ecba2eb99
ipv6/addrconf: fix potential NULL deref in inet6_set_link_af()
|
|
BUG: unable to handle kernel paging request in do_xdp_generic
|
C |
|
|
189 |
1840d |
1870d
|
1/2 |
1238d |
747d5bcb97eb
tun: correct header offsets in napi frags mode
|
|
KASAN: use-after-free Read in eth_header_parse_protocol
|
C |
|
|
532 |
1417d |
1447d
|
1/2 |
1238d |
599200ad44e7
net: ensure mac header is set in virtio_net_hdr_to_skb()
|
|
KASAN: use-after-free Write in smsc95xx_mdio_read
|
syz |
|
|
2 |
1725d |
1725d
|
1/2 |
1698d |
ab9ee18f4646
usbnet: smsc95xx: Fix use-after-free after removal
|