syzbot


KASAN: use-after-free Write in dec_rlimit_ucounts
Status: upstream: reported C repro on 2021/07/17 06:22
Reported-by: syzbot+01985d7909f9468f013c@syzkaller.appspotmail.com
Fix commit: 345daff2e994 ucounts: Fix race condition between alloc_ucounts and put_ucounts bbb6d0f3e1fe ucounts: Increase ucounts reference counter before the security hook
Patched on: [ci-qemu2-arm64 ci-qemu2-arm64-compat ci-qemu2-arm64-mte ci-qemu2-riscv64 ci-upstream-bpf-kasan-gce ci-upstream-bpf-next-kasan-gce ci-upstream-gce-leak ci-upstream-kasan-gce ci-upstream-kasan-gce-386 ci-upstream-kasan-gce-root ci-upstream-kasan-gce-selinux-root ci-upstream-kasan-gce-smack-root ci-upstream-linux-next-kasan-gce-root ci-upstream-net-kasan-gce ci-upstream-net-this-kasan-gce ci2-upstream-kcsan-gce ci2-upstream-usb], missing on: [ci-qemu-upstream ci-qemu-upstream-386 ci-qemu2-arm32 ci-upstream-kmsan-gce ci-upstream-kmsan-gce-386]
First crash: 74d, last: 28d

Sample crash report:

Crashes (4):
Manager Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Title
ci-upstream-kasan-gce-smack-root 2021/08/19 20:31 upstream d6d09a694205 b599f2fc .config log report syz C KASAN: use-after-free Write in dec_rlimit_ucounts
ci-upstream-kasan-gce-smack-root 2021/07/07 09:32 upstream 3dbdb38e2869 4846d5c1 .config log report info KASAN: use-after-free Write in dec_rlimit_ucounts
ci-upstream-kasan-gce-root 2021/07/04 20:08 upstream 3dbdb38e2869 55aa55c2 .config log report info KASAN: use-after-free Write in dec_rlimit_ucounts
ci-qemu-upstream-386 2021/08/04 21:41 upstream 251a1524293d b97d64c9 .config log report info KASAN: use-after-free Write in dec_rlimit_ucounts