syzbot


KASAN: use-after-free Write in fsnotify_detach_connector_from_object
Status: fixed on 2020/07/17 17:58
Reported-by: syzbot+7d2debdcdb3cb93c1e5e@syzkaller.appspotmail.com
Fix commit: ef1548adada5 proc: Use new_inode not new_inode_pseudo
First crash: 538d, last: 530d

Cause bisection: introduced by (bisect log) :
commit 76313c70c52f930af4afd21684509ca52297ea71
Author: Eric W. Biederman <ebiederm@xmission.com>
Date: Wed Feb 19 16:37:15 2020 +0000

  uml: Create a private mount of proc for mconsole

Crash: general protection fault in batadv_iv_ogm_schedule_buff (log)
Repro: C syz .config

Sample crash report:

Crashes (4):
Manager Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Title
ci-upstream-kasan-gce-selinux-root 2020/06/08 10:56 upstream 7ae77150d94d 7751efd0 .config log report syz C
ci-upstream-kasan-gce 2020/06/08 09:50 upstream 7ae77150d94d 7751efd0 .config log report syz C
ci-upstream-kasan-gce 2020/06/16 21:09 upstream 7ae77150d94d 559fbe2d .config log report
ci-upstream-kasan-gce 2020/06/08 09:19 upstream 7ae77150d94d 7751efd0 .config log report