syzbot


KASAN: use-after-free Read in __list_del_entry
Status: fixed on 2018/05/22 16:53
Reported-by: syzbot+@syzkaller.appspotmail.com
Fix commit: UPSTREAM: ANDROID: binder: prevent transactions into own process.
First crash: 1364d, last: 1360d
similar bugs (1):
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
android-49 KASAN: use-after-free Read in __list_del_entry (3) C 9 1356d 1364d 3/3 fixed on 2018/06/04 19:55

Sample crash report:

Crashes (5):
Manager Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Title
ci-android-44-kasan-gce 2018/03/05 12:48 https://android.googlesource.com/kernel/common android-4.4 855ea747806b bbd5104f .config log report syz C
ci-android-44-kasan-gce-386 2018/03/08 19:00 https://android.googlesource.com/kernel/common android-4.4 d63fdf61a4dc acd0caa5 .config log report syz
ci-android-44-kasan-gce-386 2018/03/06 12:43 https://android.googlesource.com/kernel/common android-4.4 d63fdf61a4dc aef0b792 .config log report syz
ci-android-44-kasan-gce-386 2018/03/06 03:20 https://android.googlesource.com/kernel/common android-4.4 855ea747806b aef0b792 .config log report syz
ci-android-44-kasan-gce-386 2018/03/05 12:40 https://android.googlesource.com/kernel/common android-4.4 855ea747806b bbd5104f .config log report syz