syzbot


KASAN: use-after-free Write in vcs_read
Status: upstream: reported C repro on 2020/08/21 06:09
Reported-by: syzbot+ad1f53726c3bd11180cb@syzkaller.appspotmail.com
Fix commit: Revert "vc_screen: extract vcs_read_buf_header"
Patched on: [ci-upstream-linux-next-kasan-gce-root], missing on: [ci-qemu-upstream ci-qemu-upstream-386 ci-upstream-bpf-kasan-gce ci-upstream-bpf-next-kasan-gce ci-upstream-gce-leak ci-upstream-kasan-gce ci-upstream-kasan-gce-386 ci-upstream-kasan-gce-root ci-upstream-kasan-gce-selinux-root ci-upstream-kasan-gce-smack-root ci-upstream-kmsan-gce ci-upstream-kmsan-gce-386 ci-upstream-net-kasan-gce ci-upstream-net-this-kasan-gce ci2-upstream-kcsan-gce ci2-upstream-usb]
First crash: 32d, last: 26d

Cause bisection: introduced by (bisect log):

commit b1c32fcfadf5593ab7a63261cc8a5747c36e627e
Author: Jiri Slaby <jslaby@suse.cz>
Date: Tue Aug 18 08:57:05 2020 +0000

  vc_screen: extract vcs_read_buf_header

Crash: BUG: Bad page map (log)
Repro: C syz .config

Sample crash report:

Crashes (11):
Manager Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Maintainers
ci-upstream-linux-next-kasan-gce-root 2020/08/24 13:59 linux-next d8be0e12 67b599d1 .config log report syz C gregkh@linuxfoundation.org, jirislaby@kernel.org, linux-kernel@vger.kernel.org
ci-upstream-linux-next-kasan-gce-root 2020/08/23 17:06 linux-next 494d311a cef5ae68 .config log report syz C gregkh@linuxfoundation.org, jirislaby@kernel.org, linux-kernel@vger.kernel.org
ci-upstream-linux-next-kasan-gce-root 2020/08/23 01:19 linux-next 494d311a 1da71ab0 .config log report syz C gregkh@linuxfoundation.org, jirislaby@kernel.org, linux-kernel@vger.kernel.org
ci-upstream-linux-next-kasan-gce-root 2020/08/22 04:16 linux-next 494d311a 6436ce4b .config log report syz C gregkh@linuxfoundation.org, jirislaby@kernel.org, linux-kernel@vger.kernel.org
ci-upstream-linux-next-kasan-gce-root 2020/08/26 07:31 linux-next 3a00d3df 344da168 .config log report gregkh@linuxfoundation.org, jirislaby@kernel.org, linux-kernel@vger.kernel.org
ci-upstream-linux-next-kasan-gce-root 2020/08/25 19:55 linux-next 3a00d3df 344da168 .config log report gregkh@linuxfoundation.org, jirislaby@kernel.org, linux-kernel@vger.kernel.org
ci-upstream-linux-next-kasan-gce-root 2020/08/24 01:46 linux-next 494d311a cef5ae68 .config log report gregkh@linuxfoundation.org, jirislaby@kernel.org, linux-kernel@vger.kernel.org
ci-upstream-linux-next-kasan-gce-root 2020/08/22 15:34 linux-next 494d311a 6436ce4b .config log report gregkh@linuxfoundation.org, jirislaby@kernel.org, linux-kernel@vger.kernel.org
ci-upstream-linux-next-kasan-gce-root 2020/08/22 15:12 linux-next 494d311a 6436ce4b .config log report gregkh@linuxfoundation.org, jirislaby@kernel.org, linux-kernel@vger.kernel.org
ci-upstream-linux-next-kasan-gce-root 2020/08/22 14:29 linux-next 494d311a 6436ce4b .config log report gregkh@linuxfoundation.org, jirislaby@kernel.org, linux-kernel@vger.kernel.org
ci-upstream-linux-next-kasan-gce-root 2020/08/20 06:55 linux-next 605cbf3d ed282a3a .config log report gregkh@linuxfoundation.org, jirislaby@kernel.org, linux-kernel@vger.kernel.org