syzbot

 sign-in | mailing list | source | docs
🐞 Open [196]
🐞 Fixed [42]
🐞 Invalid [470]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
💬 Send us feedback

KASAN: use-after-free in sg_remove_request at addr ADDR (5)

Status: closed as invalid on 2017/10/30 13:35
First crash: 3095d, last: 3093d
Similar bugs (8)
Kernel Title Rank 🛈 Repro Cause bisect Fix bisect Count Last Reported Patched Status
android-49 KASAN: use-after-free in sg_remove_request at addr ADDR (6) 19 1 3092d 3092d 0/3 closed as invalid on 2017/11/01 18:02
android-49 KASAN: use-after-free in sg_remove_request at addr ADDR (2) 19 3 3101d 3102d 0/3 closed as invalid on 2017/10/22 12:19
android-49 KASAN: use-after-free in sg_remove_request at addr ADDR (4) 19 3 3097d 3098d 0/3 closed as invalid on 2017/10/26 15:19
android-49 KASAN: use-after-free in sg_remove_request at addr ADDR (8) 19 1 3089d 3089d 0/3 closed as invalid on 2017/11/03 09:19
android-49 KASAN: use-after-free in sg_remove_request at addr ADDR (7) 19 2 3089d 3090d 0/3 closed as invalid on 2017/11/03 07:08
android-49 KASAN: use-after-free in sg_remove_request at addr ADDR (3) 19 1 3098d 3098d 0/3 closed as invalid on 2017/10/25 10:19
android-49 KASAN: use-after-free in sg_remove_request at addr ADDR 19 28 3106d 3125d 0/3 closed as invalid on 2017/10/18 09:51
android-49 KASAN: use-after-free in sg_remove_request at addr ADDR (9) 19 1 3074d 3074d 0/3 closed as invalid on 2017/11/18 16:19

Sample crash report:
==================================================================
BUG: KASAN: use-after-free in __read_once_size include/linux/compiler.h:243 [inline] at addr ffff8801c9167740
BUG: KASAN: use-after-free in list_empty include/linux/list.h:189 [inline] at addr ffff8801c9167740
BUG: KASAN: use-after-free in sg_remove_request+0x103/0x120 drivers/scsi/sg.c:2120 at addr ffff8801c9167740

Crashes (6):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2017/10/29 20:28 https://android.googlesource.com/kernel/common android-4.9 3861f0b0f12a 80c74880 .config console log report ci-android-49-kasan-gce
2017/10/29 11:26 https://android.googlesource.com/kernel/common android-4.9 3861f0b0f12a 80c74880 .config console log report ci-android-49-kasan-gce
2017/10/28 14:10 https://android.googlesource.com/kernel/common android-4.9 3861f0b0f12a 80c74880 .config console log report ci-android-49-kasan-gce
2017/10/28 11:14 https://android.googlesource.com/kernel/common android-4.9 3861f0b0f12a 80c74880 .config console log report ci-android-49-kasan-gce
2017/10/27 20:09 https://android.googlesource.com/kernel/common android-4.9 c05ec29384df 4a7de22d .config console log report ci-android-49-kasan-gce
2017/10/27 17:47 https://android.googlesource.com/kernel/common android-4.9 c05ec29384df 4a7de22d .config console log report ci-android-49-kasan-gce
* Struck through repros no longer work on HEAD.