syzbot


KASAN: use-after-free Read in v4l2_ioctl
Status: closed as dup on 2019/08/13 14:06
Reported-by: syzbot+d587871cd33a9bc7c086@syzkaller.appspotmail.com
Fix commit: c666355e60dd media: radio-raremono: change devm_k*alloc to k*alloc
First crash: 1013d, last: 931d
Duplicate of (1):
Title Repro Cause bisect Fix bisect Count Last Reported
KASAN: use-after-free Read in v4l2_release C 275 907d 1011d
duplicates (4):
Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
KASAN: use-after-free Read in v4l2_fh_del 1 995d 994d 0/22 closed as dup on 2019/08/13 12:59
KASAN: use-after-free Write in v4l2_prio_close 1 963d 962d 0/22 closed as dup on 2019/08/13 12:58
KASAN: use-after-free Write in v4l2_device_release 3 987d 997d 0/22 closed as dup on 2019/08/13 12:58
KASAN: use-after-free Read in __video_do_ioctl syz 63 911d 1011d 0/22 closed as dup on 2019/08/13 12:28
similar bugs (1):
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream KASAN: use-after-free Read in v4l2_ioctl (2) C error 1 213d 209d 0/22 upstream: reported C repro on 2021/06/25 04:53
Patch testing requests:
Created Duration User Patch Repo Result
2019/06/29 23:49 39m lnowakow@eng.ucsd.edu patch https://github.com/google/kasan.git usb-fuzzer OK
2019/06/29 23:36 5m lnowakow@eng.ucsd.edu patch https://github.com/google/kasan.git usb-fuzzer error

Sample crash report:

Crashes (33):
Manager Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Title
ci2-upstream-usb 2019/04/15 15:41 https://github.com/google/kasan.git usb-fuzzer 9a33b36996cb 505ab413 .config log report syz C
ci2-upstream-usb 2019/04/13 07:32 https://github.com/google/kasan.git usb-fuzzer 9a33b36996cb c402d8f1 .config log report syz C
ci2-upstream-usb 2019/04/29 18:18 https://github.com/google/kasan.git usb-fuzzer 43151d6c3fce b617407b .config log report syz
ci2-upstream-usb 2019/07/04 03:20 https://github.com/google/kasan.git usb-fuzzer 7829a896a587 55565fa0 .config log report
ci2-upstream-usb 2019/06/27 23:00 https://github.com/google/kasan.git usb-fuzzer 7829a896a587 7509bf36 .config log report
ci2-upstream-usb 2019/06/17 13:21 https://github.com/google/kasan.git usb-fuzzer 69bbe8c72e6f 442206d7 .config log report
ci2-upstream-usb 2019/06/02 12:26 https://github.com/google/kasan.git usb-fuzzer 69bbe8c72e6f 53c81ea5 .config log report
ci2-upstream-usb 2019/05/29 16:58 https://github.com/google/kasan.git usb-fuzzer 69bbe8c72e6f f5a25d38 .config log report
ci2-upstream-usb 2019/05/25 00:17 https://github.com/google/kasan.git usb-fuzzer 43151d6c3fce 85c57315 .config log report
ci2-upstream-usb 2019/05/22 23:53 https://github.com/google/kasan.git usb-fuzzer 43151d6c3fce 84b9d384 .config log report
ci2-upstream-usb 2019/05/13 16:43 https://github.com/google/kasan.git usb-fuzzer 43151d6c3fce 16ab1e89 .config log report
ci2-upstream-usb 2019/05/13 05:23 https://github.com/google/kasan.git usb-fuzzer 43151d6c3fce 5f302c04 .config log report
ci2-upstream-usb 2019/05/13 03:31 https://github.com/google/kasan.git usb-fuzzer 43151d6c3fce 5f302c04 .config log report
ci2-upstream-usb 2019/05/13 02:57 https://github.com/google/kasan.git usb-fuzzer 43151d6c3fce 5f302c04 .config log report
ci2-upstream-usb 2019/05/13 02:51 https://github.com/google/kasan.git usb-fuzzer 43151d6c3fce 5f302c04 .config log report
ci2-upstream-usb 2019/05/12 23:43 https://github.com/google/kasan.git usb-fuzzer 43151d6c3fce 5f302c04 .config log report
ci2-upstream-usb 2019/05/12 19:15 https://github.com/google/kasan.git usb-fuzzer 43151d6c3fce 5f302c04 .config log report
ci2-upstream-usb 2019/05/12 12:18 https://github.com/google/kasan.git usb-fuzzer 43151d6c3fce c017728b .config log report
ci2-upstream-usb 2019/05/12 12:02 https://github.com/google/kasan.git usb-fuzzer 43151d6c3fce c017728b .config log report
ci2-upstream-usb 2019/05/12 09:21 https://github.com/google/kasan.git usb-fuzzer 43151d6c3fce c017728b .config log report
ci2-upstream-usb 2019/05/11 08:32 https://github.com/google/kasan.git usb-fuzzer 43151d6c3fce 46caad94 .config log report
ci2-upstream-usb 2019/05/11 08:06 https://github.com/google/kasan.git usb-fuzzer 43151d6c3fce 46caad94 .config log report
ci2-upstream-usb 2019/05/10 23:34 https://github.com/google/kasan.git usb-fuzzer 43151d6c3fce 46caad94 .config log report
ci2-upstream-usb 2019/05/10 10:05 https://github.com/google/kasan.git usb-fuzzer 43151d6c3fce 018207ef .config log report
ci2-upstream-usb 2019/05/07 21:47 https://github.com/google/kasan.git usb-fuzzer 43151d6c3fce a7383bfa .config log report
ci2-upstream-usb 2019/05/06 16:54 https://github.com/google/kasan.git usb-fuzzer 43151d6c3fce 148296f4 .config log report
ci2-upstream-usb 2019/05/04 20:35 https://github.com/google/kasan.git usb-fuzzer 43151d6c3fce d28f4ce5 .config log report
ci2-upstream-usb 2019/05/04 12:26 https://github.com/google/kasan.git usb-fuzzer 43151d6c3fce d28f4ce5 .config log report
ci2-upstream-usb 2019/05/04 11:58 https://github.com/google/kasan.git usb-fuzzer 43151d6c3fce d28f4ce5 .config log report
ci2-upstream-usb 2019/05/03 13:44 https://github.com/google/kasan.git usb-fuzzer 43151d6c3fce 1bfa09b9 .config log report
ci2-upstream-usb 2019/04/24 01:51 https://github.com/google/kasan.git usb-fuzzer d34f9519daaa 2398edea .config log report
ci2-upstream-usb 2019/04/21 23:59 https://github.com/google/kasan.git usb-fuzzer d34f9519daaa b0e8efcb .config log report
ci2-upstream-usb 2019/04/20 11:03 https://github.com/google/kasan.git usb-fuzzer d34f9519daaa b0e8efcb .config log report