syzbot


assert "ln != NULL" failed in nd6.c
Status: fixed on 2019/09/29 08:30
Reported-by: syzbot+91254714f1bd3f5233df@syzkaller.appspotmail.com
Fix commit: bdbfbec5cea8 Do more sanity checks when accepting socket addresses in routing messages from user land. Inspect length field early in rtm_xaddrs(). Strings must be NUL terminated. The socket address type and length depend on the routing message type. Currently checks are not super strict to avoid too much user land fallout. OK mpi@ Reported-by: syzbot+638dbf7851da8e255af5@syzkaller.appspotmail.com
First crash: 688d, last: 688d

Sample crash report:

Crashes (1):
Manager Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Title
ci-openbsd-main 2019/09/06 04:42 openbsd 87bcbcf52bc3 c16be727 .config log report