KASAN: use-after-free Read in update_blocked_averages
Status: fixed on 2019/03/21 17:09
Fix commit: bc6e019b fou: Prevent unbounded recursion in GUE error handler also with UDP-Lite
First crash: 607d, last: 593d

Cause bisection: introduced by (bisect log):

commit b8a51b38e4d4dec3e379d52c0fe1a66827f7cf1e
Author: Stefano Brivio <>
Date: Thu Nov 8 11:19:23 2018 +0000

  fou, fou6: ICMP error handlers for FoU and GUE

Crash: kernel panic: stack is corrupted in rcu_dynticks_curr_cpu_in_eqs (log)
Repro: C syz .config

Sample crash report:

Crashes (3):
Manager Time Kernel Commit Syzkaller Config Log Report Syz repro C repro Maintainers
ci-upstream-net-kasan-gce 2018/11/13 13:45 net-next 3e536cff 5f5f6d14 .config log report syz C,,,,
ci-upstream-net-kasan-gce 2018/11/11 07:41 net-next 12ceaf88 f3c4e618 .config log report syz C
ci-upstream-net-kasan-gce 2018/11/26 02:03 net-next 358be656 3d3ec907 .config log report,,,