syzbot


KASAN: use-after-free Write in __alloc_skb (3)
Status: upstream: reported C repro on 2020/07/29 18:24
Reported-by: syzbot+7569bc4cd6fad9f1e551@syzkaller.appspotmail.com
First crash: 17d, last: 15d

Cause bisection: the bug happens on the oldest tested release
Crash: WARNING in sysfs_warn_dup (log)
Repro: C syz .config
similar bugs (5):
Kernel Title Repro Bisected Count Last Reported Patched Status
linux-4.19 KASAN: use-after-free Write in __alloc_skb C fix 2 212d 280d 1/1 fixed on 2020/02/11 15:16
upstream KASAN: use-after-free Write in __alloc_skb (2) C cause 7 226d 242d 16/17 fixed on 2020/02/18 14:31
linux-4.14 KASAN: use-after-free Write in __alloc_skb (2) C 1 18d 18d 0/1 upstream: reported C repro on 2020/07/24 01:04
upstream KASAN: use-after-free Write in __alloc_skb 2 266d 272d 0/17 closed as invalid on 2019/12/08 05:44
linux-4.14 KASAN: use-after-free Write in __alloc_skb C fix 1 212d 242d 1/1 fixed on 2020/02/14 21:56

Sample crash report:

Crashes (2):
Manager Time Kernel Commit Syzkaller Config Log Report Syz repro C repro Maintainers
ci-upstream-kasan-gce 2020/07/25 18:21 upstream 68845a55 1f7cc1ca .config log report syz C davem@davemloft.net, kuba@kernel.org, kuznet@ms2.inr.ac.ru, linux-kernel@vger.kernel.org, netdev@vger.kernel.org, yoshfuji@linux-ipv6.org
ci-upstream-linux-next-kasan-gce-root 2020/07/27 08:23 linux-next 26027945 51265195 .config log report syz C davem@davemloft.net, kuba@kernel.org, kuznet@ms2.inr.ac.ru, linux-kernel@vger.kernel.org, netdev@vger.kernel.org, yoshfuji@linux-ipv6.org