|
KASAN: use-after-free Read in get_max_inline_xattr_value_size
ext4
|
C |
|
|
20 |
254d |
334d
|
2/2 |
181d |
8aad0253b5e6
ext4: add inode table check in __ext4_get_inode_loc to aovid possible infinite loop
|
|
kernel BUG in ext4_write_inline_data
|
C |
|
|
3 |
357d |
395d
|
2/2 |
244d |
21086923c1e6
UPSTREAM: ext4: fix kernel BUG in 'ext4_write_inline_data_end()'
|
|
KASAN: use-after-free Read in do_garbage_collect
|
C |
|
|
4 |
381d |
411d
|
2/2 |
245d |
e5142a4935c1
f2fs: fix to do sanity check on i_extra_isize in is_alive()
|
|
kernel BUG in __skb_gso_segment
|
C |
|
|
1 |
356d |
356d
|
2/2 |
251d |
de2ea2a0ad51
net/af_packet: make sure to pull mac header
|
|
kernel BUG in ext4_write_inline_data_end
|
C |
|
|
4 |
508d |
642d
|
2/2 |
434d |
18881d7e5171
ext4: fix race condition between ext4_write and ext4_convert_inline_data
|
|
kernel BUG in notify_change
|
C |
|
|
18 |
468d |
1011d
|
2/2 |
441d |
def19b1cf16c
ANDROID: incfs: Add check for ATTR_KILL_SUID and ATTR_MODE in incfs_setattr
|
|
kernel BUG in ext4_ind_remove_space
|
C |
|
|
1 |
685d |
685d
|
2/2 |
545d |
259dc49deaa2
ext4: limit length to bitmap_maxbytes - blocksize in punch_hole
|
|
general protection fault in incfs_kill_sb
|
C |
|
|
2965 |
635d |
669d
|
2/2 |
595d |
b730087e9a5d
ANDROID: incremental-fs: limit mount stack depth
|
|
KASAN: use-after-free Read in firmware_fallback_sysfs
|
C |
|
|
2349 |
775d |
1326d
|
1/2 |
775d |
d09639528b66
firmware_loader: fix use-after-free in firmware_fallback_sysfs
|
|
BUG: unable to handle kernel paging request in csum_partial
|
C |
|
|
5 |
830d |
1411d
|
1/2 |
775d |
53b480e68c1c
ip_gre: add validation for csum_start
|
|
KASAN: slab-out-of-bounds Write in snd_usb_mixer_interrupt
|
C |
|
|
4 |
1254d |
1264d
|
1/2 |
783d |
25e1bb1e6c36
ALSA: usb-audio: Fix OOB access of mixer element list
|
|
KASAN: use-after-free Read in ax88172a_unbind
|
C |
|
|
38 |
1226d |
1341d
|
1/2 |
783d |
d0d394c71604
ax88172a: fix ax88172a_unbind() failures
|
|
KASAN: use-after-free Read in usbhid_close
|
syz |
|
|
1 |
1332d |
1332d
|
1/2 |
783d |
613045bfc63d
HID: usbhid: Fix race between usbhid_close() and usbhid_stop()
|
|
KASAN: slab-out-of-bounds Write in hiddev_ioctl_usage
|
C |
|
|
4 |
1317d |
1337d
|
1/2 |
783d |
851d0813ab80
HID: hiddev: Fix slab-out-of-bounds write in hiddev_ioctl_usage()
|
|
general protection fault in path_openat
|
syz |
|
|
26 |
1398d |
1405d
|
1/2 |
784d |
2c38e6140126
vfs: fix do_last() regression
|
|
general protection fault in nf_ct_netns_do_get
|
C |
|
|
10 |
1424d |
1425d
|
1/2 |
784d |
503ff0dcfba7
netfilter: arp_tables: init netns pointer in xt_tgchk_param struct
|
|
KASAN: use-after-free Read in locks_delete_block
|
C |
|
|
3 |
1371d |
1424d
|
1/2 |
784d |
384e15fc4226
locks: fix a potential use-after-free problem when wakeup a waiter
|
|
general protection fault in inet6_set_link_af
|
C |
|
|
1 |
1400d |
1400d
|
1/2 |
784d |
036ecba2eb99
ipv6/addrconf: fix potential NULL deref in inet6_set_link_af()
|
|
BUG: unable to handle kernel paging request in do_xdp_generic
|
C |
|
|
189 |
1386d |
1416d
|
1/2 |
784d |
747d5bcb97eb
tun: correct header offsets in napi frags mode
|
|
KASAN: use-after-free Read in eth_header_parse_protocol
|
C |
|
|
532 |
964d |
993d
|
1/2 |
784d |
599200ad44e7
net: ensure mac header is set in virtio_net_hdr_to_skb()
|
|
KASAN: use-after-free Write in smsc95xx_mdio_read
|
syz |
|
|
2 |
1272d |
1272d
|
1/2 |
1244d |
ab9ee18f4646
usbnet: smsc95xx: Fix use-after-free after removal
|