memory leak in dvb_dmxdev_add

ID	Workflow	Result	Correct	Bug	Created	Started	Finished	Revision	Error
54f507a1-92b5-4623-a116-3ccaff662716	assessment-security	DenialOfService: ✅ Exploitable: ❌ FilesystemTrigger: ❌ NetworkTrigger: ❌ PeripheralTrigger: ❌ RemoteTrigger: ❌ Unprivileged: ❌ UserNamespace: ❌ VMGuestTrigger: ❌ VMHostTrigger: ❌	❓	memory leak in dvb_dmxdev_add_pid	2026/05/24 21:04	2026/05/24 21:04	2026/05/24 21:44	c69befb30ac10e158cc9d1557b508ee3f0eca1de

Title	Replies (including bot)	Last reply
[PATCH] media: dvb-core: release pid memory when set filter to sec	1 (1)	2026/04/26 05:33
[syzbot] [media?] memory leak in dvb_dmxdev_add_pid	1 (3)	2026/04/26 05:32

Title

Replies (including bot)

Last reply

[PATCH] media: dvb-core: release pid memory when set filter to sec

1 (1)

2026/04/26 05:33

[syzbot] [media?] memory leak in dvb_dmxdev_add_pid

1 (3)

2026/04/26 05:32

Created	Duration	User	Patch	Repo	Result
2026/05/09 21:37	1h14m	retest repro		upstream	report log
2026/04/26 05:03	27m	eadavis@qq.com	patch	upstream	OK log

Created

Duration

User

Patch

Repo

Result

2026/05/09 21:37

1h14m

retest repro

upstream

report log

2026/04/26 05:03

27m

eadavis@qq.com

patch

upstream

OK log

BUG: memory leak unreferenced object 0xffff88810b771800 (size 32): comm "syz.0.17", pid 5923, jiffies 4294942824 hex dump (first 32 bytes): 02 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 08 00 56 05 00 c9 ff ff 08 00 56 05 00 c9 ff ff ..V.......V..... backtrace (crc 1a56a8d7): kmemleak_alloc_recursive include/linux/kmemleak.h:44 [inline] slab_post_alloc_hook mm/slub.c:4574 [inline] slab_alloc_node mm/slub.c:4898 [inline] __kmalloc_cache_noprof+0x371/0x480 mm/slub.c:5410 kmalloc_noprof include/linux/slab.h:950 [inline] kzalloc_noprof include/linux/slab.h:1188 [inline] dvb_dmxdev_add_pid+0x9c/0x160 drivers/media/dvb-core/dmxdev.c:897 dvb_dmxdev_pes_filter_set drivers/media/dvb-core/dmxdev.c:972 [inline] dvb_demux_do_ioctl+0x3c6/0x7d0 drivers/media/dvb-core/dmxdev.c:1092 dvb_usercopy+0x116/0x2d0 drivers/media/dvb-core/dvbdev.c:996 dvb_demux_ioctl+0x29/0x40 drivers/media/dvb-core/dmxdev.c:1201 vfs_ioctl fs/ioctl.c:51 [inline] __do_sys_ioctl fs/ioctl.c:597 [inline] __se_sys_ioctl fs/ioctl.c:583 [inline] __x64_sys_ioctl+0xf4/0x140 fs/ioctl.c:583 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline] do_syscall_64+0xee/0xf80 arch/x86/entry/syscall_64.c:94 entry_SYSCALL_64_after_hwframe+0x77/0x7f BUG: memory leak unreferenced object 0xffff8881297f65e0 (size 32): comm "syz.0.18", pid 5934, jiffies 4294942829 hex dump (first 32 bytes): 02 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 08 00 56 05 00 c9 ff ff 08 00 56 05 00 c9 ff ff ..V.......V..... backtrace (crc 1a56a8d7): kmemleak_alloc_recursive include/linux/kmemleak.h:44 [inline] slab_post_alloc_hook mm/slub.c:4574 [inline] slab_alloc_node mm/slub.c:4898 [inline] __kmalloc_cache_noprof+0x371/0x480 mm/slub.c:5410 kmalloc_noprof include/linux/slab.h:950 [inline] kzalloc_noprof include/linux/slab.h:1188 [inline] dvb_dmxdev_add_pid+0x9c/0x160 drivers/media/dvb-core/dmxdev.c:897 dvb_dmxdev_pes_filter_set drivers/media/dvb-core/dmxdev.c:972 [inline] dvb_demux_do_ioctl+0x3c6/0x7d0 drivers/media/dvb-core/dmxdev.c:1092 dvb_usercopy+0x116/0x2d0 drivers/media/dvb-core/dvbdev.c:996 dvb_demux_ioctl+0x29/0x40 drivers/media/dvb-core/dmxdev.c:1201 vfs_ioctl fs/ioctl.c:51 [inline] __do_sys_ioctl fs/ioctl.c:597 [inline] __se_sys_ioctl fs/ioctl.c:583 [inline] __x64_sys_ioctl+0xf4/0x140 fs/ioctl.c:583 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline] do_syscall_64+0xee/0xf80 arch/x86/entry/syscall_64.c:94 entry_SYSCALL_64_after_hwframe+0x77/0x7f connection error: failed to recv *flatrpc.ExecutorMessageRawT: EOF

Crashes (1):
Time	Kernel	Commit	Syzkaller	Config	Log	Report	Syz repro	C repro	VM info	Assets (help?)	Manager	Title
2026/04/25 16:22	upstream	27d128c1cff6	9c2d0995	.config	console log	report	syz / log	C		[disk image] [vmlinux] [kernel image]	ci-upstream-gce-leak	memory leak in dvb_dmxdev_add_pid

Crashes (1):

Assets (help?)