syzbot


KASAN: use-after-free Read in skb_dequeue
Status: fixed on 2021/03/29 19:17
Reported-by: syzbot+f086977f0ce58311420d@syzkaller.appspotmail.com
Fix commit: c1a77dbcaa2d btrfs: raid56: simplify tracking of Q stripe presence
First crash: 540d, last: 335d

Fix bisection: fixed by (bisect log) :
commit c1a77dbcaa2d7f45fc9cb9f0c525e1c11957bf2a
Author: David Sterba <dsterba@suse.com>
Date: Wed Feb 19 14:17:20 2020 +0000

  btrfs: raid56: simplify tracking of Q stripe presence

similar bugs (5):
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
android-54 KASAN: use-after-free Read in skb_dequeue syz 1 162d 162d 0/1 upstream: reported syz repro on 2021/08/16 16:14
android-49 KASAN: use-after-free Read in skb_dequeue (2) 8 1273d 1438d 0/3 auto-closed as invalid on 2019/02/22 12:37
upstream KASAN: use-after-free Read in skb_dequeue C 4 1315d 1315d 9/22 fixed on 2018/07/09 18:05
android-44 KASAN: use-after-free Read in skb_dequeue 1 1245d 1245d 0/2 auto-closed as invalid on 2019/02/25 16:09
linux-4.19 KASAN: use-after-free Read in skb_dequeue (2) C done 2 133d 163d 1/1 fixed on 2021/10/15 14:38

Sample crash report:

Crashes (1):
Manager Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Title
ci2-linux-4-19 2020/08/04 04:52 linux-4.19.y 13af6c74b14a 96dd3623 .config log report syz