syzbot


Title Repro Cause bisect Fix bisect Count Last Reported Patched Closed Patch
general protection fault in em_cmp_match C 1 734d 734d 1/1 703d b9b47801cef5 net_sched: reject TCF_EM_SIMPLE case for complex ematch module
KASAN: use-after-free Read in bcm_can_tx C 2 1076d 1532d 1/1 1058d 632881680ba0 can: bcm: fix UAF of bcm op
general protection fault in ieee802154_llsec_parse_key_id C done 101 1346d 1401d 1/1 1315d 37580e6837c0 net: ieee802154: nl-mac: fix check on panid
general protection fault in nl802154_del_llsec_devkey C done 171 1346d 1407d 1/1 1315d 266e3f2ef0d1 net: ieee802154: fix nl802154 del llsec devkey
general protection fault in nl802154_del_llsec_key C done 135 1346d 1402d 1/1 1315d 1804bf103e73 net: ieee802154: fix nl802154 del llsec key
general protection fault in try_to_wake_up C done 707 1346d 1375d 1/1 1315d f6420532cfd7 net: tun: set tun->dev->addr_len during TUNSETLINK processing
general protection fault in nl802154_add_llsec_key C done 168 1346d 1406d 1/1 1315d 3a94a5b2e0ba net: ieee802154: fix nl802154 add llsec key
general protection fault in nl802154_del_llsec_dev C done 136 1346d 1407d 1/1 1316d 3ee9f1bafd06 net: ieee802154: fix nl802154 del llsec dev
INFO: trying to register non-static key in ieee802154_get_llsec_params C done 8 1349d 1372d 1/1 1318d df9aa96b613d net: ieee802154: stop dump llsec params for monitors
WARNING in cfg80211_connect C done 101 1363d 1543d 1/1 1328d bd7b29fb365e cfg80211: remove WARN_ON() in cfg80211_sme_connect
BUG: unable to handle kernel NULL pointer dereference in __lookup_hash C done 31 1359d 1552d 1/1 1328d b74d5f70523a reiserfs: add check for an invalid ih_entry_count
general protection fault in selinux_socket_sendmsg C done 3 1368d 1540d 1/1 1337d 534d2cf487b9 usbip: synchronize event handler with sysfs code paths
KASAN: use-after-free Read in ieee80211_ibss_build_presp C done 2 1369d 1515d 1/1 1339d d2ddd5417f6d mac80211: fix double free in ibss_leave
possible deadlock in red_adaptative_timer C done 2 1371d 1462d 1/1 1341d 43c9bffda3a2 net: sched: validate stab values
BUG: unable to handle kernel NULL pointer dereference in vhci_shutdown_connection syz done 1335 1375d 1466d 1/1 1343d 534d2cf487b9 usbip: synchronize event handler with sysfs code paths
WARNING in ext4_xattr_set_entry C done 19 1387d 1543d 1/1 1354d 470f69cb3742 ext4: do not try to set xattr into ea_inode if value is empty
BUG: unable to handle kernel NULL pointer dereference in amp_read_loc_assoc_final_data C done 207 1387d 1605d 1/1 1354d 2f642a2b3365 Bluetooth: Fix null pointer dereference in amp_read_loc_assoc_final_data
KASAN: use-after-free Read in ntfs_iget C done 2 1400d 1476d 1/1 1369d 49ee014a2070 ntfs: check for valid standard information attribute
KASAN: use-after-free Read in ntfs_read_locked_inode C done 2 1401d 1553d 1/1 1371d 49ee014a2070 ntfs: check for valid standard information attribute
KASAN: slab-out-of-bounds Read in squashfs_export_iget C done 4 1429d 1532d 1/1 1395d 69396cfd7908 squashfs: add more sanity checks in inode lookup
general protection fault in ieee80211_subif_start_xmit syz done 1 1426d 1486d 1/1 1395d d882652c1c6f mac80211: pause TX while changing interface type
general protection fault in ioctl_standard_call C done 24 1427d 1522d 1/1 1395d 173b67cf1e72 wext: fix NULL-ptr-dereference with cfg80211's lack of commit()
KASAN: slab-out-of-bounds Read in squashfs_get_id C 11 1398d 1552d 1/1 1397d 8d9ca7e328ef squashfs: add more sanity checks in id lookup
KASAN: use-after-free Read in squashfs_get_id C 1 1398d 1494d 1/1 1397d 8d9ca7e328ef squashfs: add more sanity checks in id lookup
KASAN: use-after-free Read in reiserfs_fill_super C done 2 1446d 1446d 1/1 1399d b74d5f70523a reiserfs: add check for an invalid ih_entry_count
divide error in do_journal_end C done 1 1443d 1503d 1/1 1399d b74d5f70523a reiserfs: add check for an invalid ih_entry_count
KASAN: use-after-free Read in search_by_entry_key C done 3 1446d 1552d 1/1 1399d b74d5f70523a reiserfs: add check for an invalid ih_entry_count
KASAN: use-after-free Read in reiserfs_read_locked_inode C done 5 1448d 1553d 1/1 1401d b74d5f70523a reiserfs: add check for an invalid ih_entry_count
general protection fault in dqput C done 1 1455d 1455d 1/1 1425d a9c625fcddc0 quota: Sanity-check quota file headers on load
KASAN: use-after-free Read in leaf_paste_entries C done 6 1457d 1500d 1/1 1425d b74d5f70523a reiserfs: add check for an invalid ih_entry_count
general protection fault in hci_phy_link_complete_evt C done 40 1456d 1603d 1/1 1425d 4113f6f73f6e Bluetooth: Fix null pointer dereference in hci_event_packet()
BUG: unable to handle kernel paging request in dquot_add_inodes C done 2 1458d 1480d 1/1 1428d a9c625fcddc0 quota: Sanity-check quota file headers on load
BUG: unable to handle kernel paging request in dqput C done 9 1461d 1550d 1/1 1429d a9c625fcddc0 quota: Sanity-check quota file headers on load
kernel BUG at net/core/dev.c:LINE! C inconclusive 3 1454d 1723d 1/1 1434d 8f9a69a92fc6 net: drop bogus skb with CHECKSUM_PARTIAL and offset beyond end of trimmed packet
kernel BUG at fs/reiserfs/prints.c:LINE! C done 3 1469d 1550d 1/1 1439d b74d5f70523a reiserfs: add check for an invalid ih_entry_count
general protection fault in get_work_pool C done 1 1472d 1502d 1/1 1442d 42a387dc80c3 mac80211: mesh: fix mesh_pathtbl_init() error path
BUG: corrupted list in dquot_disable C done 1 1474d 1474d 1/1 1443d a9c625fcddc0 quota: Sanity-check quota file headers on load
KASAN: use-after-free Read in sco_chan_del C done 10 1476d 1601d 1/1 1446d 4113f6f73f6e Bluetooth: Fix null pointer dereference in hci_event_packet()
INFO: trying to register non-static key in rhashtable_free_and_destroy C done 4 1480d 1494d 1/1 1447d 42a387dc80c3 mac80211: mesh: fix mesh_pathtbl_init() error path
KASAN: slab-out-of-bounds Read in hci_le_meta_evt C done 15 1483d 1602d 1/1 1452d 7ee2cd49f722 Bluetooth: Fix slab-out-of-bounds read in hci_le_direct_adv_report_evt()
BUG: unable to handle kernel paging request in dquot_add_space C done 1 1483d 1543d 1/1 1453d a9c625fcddc0 quota: Sanity-check quota file headers on load
BUG: sleeping function called from invalid context in sta_info_move_state C done 1101 1488d 1491d 1/1 1458d 89ab6b90b7d9 mac80211: free sta in sta_info_insert_finish() on errors
general protection fault in qp_release_pages C done 2 1490d 1520d 1/1 1459d 2b8c7395d275 VMCI: check return value of get_user_pages_fast() for errors
WARNING in unlock_new_inode C done 55 1517d 1554d 1/1 1486d a8ca9f684674 reiserfs: only call unlock_new_inode() if I_NEW
KASAN: slab-out-of-bounds Write in init_sb C done 3 1518d 1552d 1/1 1488d 78734edd11cc gfs2: add validation checks for size of superblock
KASAN: global-out-of-bounds Read in fbcon_resize C done 529 1523d 1571d 1/1 1491d d31eccab7abd fbcon: Fix user font detection test at fbcon_resize().
INFO: task hung in ucma_close C done 421 1523d 1935d 1/1 1492d ef13017d65b0 RDMA/ucma: ucma_context reference leak in error path
KASAN: global-out-of-bounds Read in vga16fb_imageblit C done 723 1523d 1846d 1/1 1492d 0472aa0c36c7 video: fbdev: fix OOB read in vga_8planes_imageblit()
KASAN: slab-out-of-bounds Read in ntfs_attr_find C done 10 1523d 1550d 1/1 1492d d2918cca649f ntfs: add check for mft record size in superblock
KASAN: global-out-of-bounds Read in fbcon_get_font C done 42 1529d 1845d 1/1 1499d 30386c13a1bf fbcon: Fix global-out-of-bounds read in fbcon_get_font()
KASAN: use-after-free Read in ntfs_attr_find C done 4 1531d 1550d 1/1 1500d d2918cca649f ntfs: add check for mft record size in superblock
KASAN: global-out-of-bounds Read in get_unique_tuple C done 5 1544d 1716d 1/1 1514d 60634d81cb43 netfilter: ctnetlink: add a range check for l3/l4 protonum
general protection fault in open_xa_dir C done 1 1552d 1552d 1/1 1521d e2b6b34324c4 reiserfs: Fix oops during mount
KASAN: use-after-free Read in rxrpc_see_skb syz done 1 1573d 1573d 1/1 1522d 38eefb196438 MIPS: SNI: Fix MIPS_L1_CACHE_SHIFT
INFO: task hung in nbd_ioctl (2) C done 16 1569d 1814d 1/1 1522d 7241d653bcc1 tipc: fix shutdown() of connection oriented socket
WARNING in restore_regulatory_settings C done 2264 1564d 1810d 1/1 1534d 02015d244d9c cfg80211: regulatory: reject invalid hints
general protection fault in __sock_release syz done 12 1565d 1577d 1/1 1534d c5c6e00f6cc5 fix regression in "epoll: Keep a reference on files added to the check list"
general protection fault in locks_remove_file syz done 6 1565d 1576d 1/1 1535d c5c6e00f6cc5 fix regression in "epoll: Keep a reference on files added to the check list"
general protection fault in tty_release C done 10 1566d 1576d 1/1 1535d c5c6e00f6cc5 fix regression in "epoll: Keep a reference on files added to the check list"
KASAN: use-after-free Read in seq_release_private syz done 1 1567d 1567d 1/1 1535d c5c6e00f6cc5 fix regression in "epoll: Keep a reference on files added to the check list"
WARNING: ODEBUG bug in corrupted syz done 1 1567d 1567d 1/1 1535d c5c6e00f6cc5 fix regression in "epoll: Keep a reference on files added to the check list"
WARNING: ODEBUG bug in exit_to_usermode_loop syz done 2 1569d 1571d 1/1 1538d c5c6e00f6cc5 fix regression in "epoll: Keep a reference on files added to the check list"
KASAN: use-after-free Read in __sock_release syz done 3 1570d 1578d 1/1 1538d c5c6e00f6cc5 fix regression in "epoll: Keep a reference on files added to the check list"
WARNING in snd_pcm_drop syz done 1 1569d 1569d 1/1 1538d c5c6e00f6cc5 fix regression in "epoll: Keep a reference on files added to the check list"
BUG: corrupted list in fuse_dev_free syz done 1 1571d 1571d 1/1 1540d c5c6e00f6cc5 fix regression in "epoll: Keep a reference on files added to the check list"
general protection fault in kmem_cache_free syz done 3 1572d 1572d 1/1 1541d c5c6e00f6cc5 fix regression in "epoll: Keep a reference on files added to the check list"
KASAN: use-after-free Read in snd_pcm_oss_release syz done 1 1572d 1572d 1/1 1541d c5c6e00f6cc5 fix regression in "epoll: Keep a reference on files added to the check list"
KASAN: use-after-free Write in ex_handler_refcount C done 16 1571d 1781d 1/1 1541d af7122cfbaee Bluetooth: add a mutex lock to avoid UAF in do_enale_set
KASAN: double-free or invalid-free in (null) syz done 1 1573d 1573d 1/1 1542d c5c6e00f6cc5 fix regression in "epoll: Keep a reference on files added to the check list"
BUG: corrupted list in mousedev_release syz done 1 1574d 1574d 1/1 1544d c5c6e00f6cc5 fix regression in "epoll: Keep a reference on files added to the check list"
INFO: trying to register non-static key in uhid_char_release C done 2 1575d 1594d 1/1 1545d 9e5894b7e222 HID: core: Correctly handle ReportSize being zero
KASAN: slab-out-of-bounds Read in hci_event_packet C done 17 1587d 2061d 1/1 1557d 68bb9eddbf5d Bluetooth: Prevent out-of-bounds read in hci_inquiry_result_with_rssi_evt()
KASAN: slab-out-of-bounds Read in hci_inquiry_result_with_rssi_evt C done 6 1588d 1604d 1/1 1557d 68bb9eddbf5d Bluetooth: Prevent out-of-bounds read in hci_inquiry_result_with_rssi_evt()
KASAN: use-after-free Read in get_block C done 8 1593d 1718d 1/1 1562d 0900097ef667 fs/minix: reject too-large maximum file size
WARNING in inc_nlink C done 21 1593d 1736d 1/1 1563d 12490f06ef08 fs/minix: don't allow getting deleted inodes
KASAN: slab-out-of-bounds Read in get_block C done 2 1593d 1623d 1/1 1563d 0900097ef667 fs/minix: reject too-large maximum file size
BUG: unable to handle kernel NULL pointer dereference in get_block C done 45 1594d 1740d 1/1 1564d 3c775629a5ff fs/minix: check return value of sb_getblk()
KASAN: slab-out-of-bounds Read in hci_extended_inquiry_result_evt C done 5 1597d 1602d 1/1 1565d d91299b8382b Bluetooth: Fix slab-out-of-bounds read in hci_extended_inquiry_result_evt()
KASAN: use-after-free Read in delete_and_unsubscribe_port syz done 2 1605d 1605d 1/1 1572d ccafbed8b2f6 ALSA: seq: oss: Serialize ioctls
KASAN: double-free or invalid-free in 0x2 syz done 1 1606d 1606d 1/1 1572d ccafbed8b2f6 ALSA: seq: oss: Serialize ioctls
INFO: task hung in fb_release C done 48 1608d 1839d 1/1 1576d c388072f90cc fbdev: Detect integer underflow at "struct fbcon_ops"->clear_margins.
unregister_netdevice: waiting for DEV to become free C done 120 1634d 2073d 1/1 1603d 0f7f0b057417 ipvs: fix tinfo memory leak in start_sync_thread
general protection fault in batadv_iv_ogm_schedule_buff 1 1710d 1710d 1/1 1627d e181bb93c904 batman-adv: Don't schedule OGM for disabled interface
KASAN: null-ptr-deref Write in choke_reset C done 283 1677d 1707d 1/1 1646d 4836eb6b5965 sch_choke: avoid potential panic in choke_reset()
KASAN: use-after-free Read in do_blk_trace_setup C done 342 1677d 2081d 1/1 1647d b390c22c0bc7 blktrace: fix unlocked access to init/start-stop/teardown
WARNING in xfrm_policy_insert syz done 8 1681d 1940d 1/1 1651d 1cd914b02b5a xfrm: fix a warning in xfrm_policy_insert_list
KASAN: slab-out-of-bounds Write in snd_rawmidi_kernel_write1 C done 1 1682d 1712d 1/1 1652d 8645ac3684a7 ALSA: rawmidi: Fix racy buffer resize under concurrent accesses
WARNING: ODEBUG bug in route4_change C done 23 1724d 1753d 1/1 1694d f0c92f59cf52 net_sched: cls_route: remove the right filter from hashtable
KASAN: use-after-free Write in release_tty C done 124 1725d 1845d 1/1 1695d b9eb60a0ef39 vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console
WARNING: ODEBUG bug in rfcomm_dev_ioctl C done 2 1734d 1734d 1/1 1703d 0da9c032adbb Bluetooth: RFCOMM: fix ODEBUG bug in rfcomm_dev_ioctl
KASAN: slab-out-of-bounds Read in selinux_xfrm_alloc_user C done 1 1735d 1735d 1/1 1705d 25106012e91a xfrm: add the missing verify_sec_ctx_len check in xfrm_add_acquire
WARNING: refcount bug in sock_wfree C done done 3 1736d 1857d 1/1 1706d 968f831d9056 sctp: fix refcount bug in sctp_wfree
KASAN: use-after-free Write in tcindex_set_parms C done 3 1738d 1739d 1/1 1708d 9f8b6c44be17 net_sched: keep alloc_hash updated after hash allocation
KASAN: slab-out-of-bounds Write in tcindex_set_parms C done 2 1739d 1739d 1/1 1709d 9f8b6c44be17 net_sched: keep alloc_hash updated after hash allocation
WARNING: ODEBUG bug in rfcomm_dlc_free C done 16 1742d 1974d 1/1 1711d 0da9c032adbb Bluetooth: RFCOMM: fix ODEBUG bug in rfcomm_dev_ioctl
KASAN: use-after-free Read in tty_open C done 5 1744d 1846d 1/1 1713d b9eb60a0ef39 vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console
KASAN: use-after-free Read in tty_buffer_cancel_work C done 2 1753d 1841d 1/1 1723d b9eb60a0ef39 vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console
KASAN: use-after-free Read in get_work_pool C done 1 1754d 1844d 1/1 1724d b9eb60a0ef39 vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console
KASAN: use-after-free Read in n_tty_receive_buf_common C done 25 1756d 1844d 1/1 1724d a4719f6d07b2 vt: selection, push sel_lock up
WARNING: kernel stack frame pointer has bad value C done 65 1761d 2064d 1/1 1726d 377d7378a605 fjes: fix missed check in fjes_acpi_add
INFO: task hung in paste_selection C done 8 1761d 1836d 1/1 1731d 7c315855c6f4 ipvlan: do not use cond_resched_rcu() in ipvlan_process_multicast()
INFO: task hung in drain_all_pages C done 1 1762d 1762d 1/1 1731d a86265edeb33 netfilter: xt_hashlimit: limit the max size of hashtable
INFO: task hung in tty_ldisc_hangup C done 17 1769d 1840d 1/1 1739d a4719f6d07b2 vt: selection, push sel_lock up
INFO: task hung in hashlimit_mt_check_common C done 6 1772d 1824d 1/1 1740d a86265edeb33 netfilter: xt_hashlimit: limit the max size of hashtable
KASAN: stack-out-of-bounds Write in ax25_getname C done 4 1771d 2067d 1/1 1740d ff8e12b0cfe2 vhost: Check docket sk_family instead of call getname
KASAN: slab-out-of-bounds Read in tcf_exts_destroy C done 1 1776d 1889d 1/1 1745d 6cb448ee493c net_sched: fix an OOB access in cls_tcindex
general protection fault in path_openat C done 40 1782d 1788d 1/1 1751d 40642747dd9f vfs: fix do_last() regression
BUG: sleeping function called from invalid context in tpk_write C done 10 1781d 1843d 1/1 1751d ab84fd0d3dc8 ttyprintk: fix a potential deadlock in interrupt context issue
BUG: sleeping function called from invalid context in lock_sock_nested (2) syz done 1 1784d 1844d 1/1 1753d 713ff7e4d605 crypto: af_alg - Use bh_lock_sock in sk_destruct
KASAN: use-after-free Read in ext4_xattr_set_entry C done 9 1786d 1878d 1/1 1756d 08e4a312439c ext4: validate the debug_want_extra_isize mount option at parse time
KASAN: slab-out-of-bounds Read in __nla_put_nohdr C done 2 1790d 1790d 1/1 1760d c5fd8a37e971 net-sysfs: Fix reference count leak
KASAN: slab-out-of-bounds Write in setup_udp_tunnel_sock C done 1 1794d 1794d 1/1 1763d c57b0f88fce8 Documentation: Document arm64 kpti control
KASAN: use-after-free Read in snd_timer_resolution C done 1 1796d 1796d 1/1 1766d 43bb0a16b25d ALSA: seq: Fix racy access for queue timer in proc read
INFO: task hung in genl_rcv_msg syz done 2 1800d 1800d 1/1 1770d 24070b40926b tcp: clear tp->total_retrans in tcp_disconnect()
WARNING in reconnect_path C done done 1 1802d 1862d 1/1 1771d b6e209a13a61 exportfs: fix 'passing zero to ERR_PTR()' warning
KASAN: use-after-free Write in __alloc_skb C done 1 1805d 1835d 1/1 1772d e841252840c4 net: rtnetlink: validate IFLA_MTU attribute in rtnl_create_link()
KASAN: use-after-free Read in cdev_put C done 6 1805d 1849d 1/1 1775d 0ce254bc68ed xen-blkback: prevent premature module unload
KASAN: slab-out-of-bounds Read in macvlan_broadcast C done 6 1807d 1811d 1/1 1776d 4a953272f2d2 macvlan: do not assume mac_header is set in macvlan_broadcast()
KASAN: use-after-free Read in macvlan_broadcast C done 8 1808d 1811d 1/1 1778d 4a953272f2d2 macvlan: do not assume mac_header is set in macvlan_broadcast()
WARNING: bad unlock balance in gtp_encap_enable_socket C done 2 1809d 1811d 1/1 1778d 887b0296a905 gtp: fix bad unlock balance in gtp_encap_enable_socket
KASAN: slab-out-of-bounds Read in bpf_skb_change_tail C done 2 1814d 1960d 1/1 1781d 7fed98f4a1e6 bpf: reject passing modified ctx to helper functions
KASAN: slab-out-of-bounds Read in bpf_skb_change_proto C done 2 1814d 1961d 1/1 1781d 7fed98f4a1e6 bpf: reject passing modified ctx to helper functions
KASAN: slab-out-of-bounds Read in bpf_clone_redirect C done 11 1820d 1982d 1/1 1789d 7fed98f4a1e6 bpf: reject passing modified ctx to helper functions
KASAN: slab-out-of-bounds Read in bpf_skb_change_head C done 2 1824d 1893d 1/1 1792d 7fed98f4a1e6 bpf: reject passing modified ctx to helper functions
possible deadlock in refcount_dec_and_mutex_lock C done 10 1823d 1895d 1/1 1792d 4df728651b8a nbd: verify socket is supported during setup
WARNING: refcount bug in cdev_get C done 21 1824d 1954d 1/1 1794d 03a709593040 net: usb: lan78xx: Connect PHY before registering MAC
INFO: rcu detected stall in br_handle_frame (2) C done 1 1829d 1829d 1/1 1798d 73a6f18d8390 pkt_sched: fq: do not accept silly TCA_FQ_QUANTUM
WARNING in ovl_rename syz done 2 1832d 2064d 1/1 1799d 6890751cfea7 ovl: relax WARN_ON() on rename to self
inconsistent lock state in sp_get C done 2 1836d 1836d 1/1 1805d 8b58905f212b 6pack,mkiss: fix possible deadlock
KASAN: slab-out-of-bounds Read in linear_transfer C done 4 1838d 1845d 1/1 1807d 2a76606d8a83 ALSA: pcm: oss: Avoid potential buffer overflows
possible deadlock in __might_fault C done 295 1839d 2080d 1/1 1809d d41971493d28 usb: mon: Fix a deadlock in usbmon between mmap and read
possible deadlock in mon_bin_vma_fault C done 282 1840d 2076d 1/1 1810d d41971493d28 usb: mon: Fix a deadlock in usbmon between mmap and read
WARNING: refcount bug in kobject_get C done 20 1845d 2078d 1/1 1815d 227db8e4c346 tipc: fix unlimited bundling of small messages
WARNING in refcount_error_report syz done 1 1847d 1847d 1/1 1815d 7272e8e3bfa3 inet: protect against too small mtu values.
BUG: corrupted list in p9_fd_cancelled syz done 2 1846d 1892d 1/1 1815d 8a82aee7bdfd arm64: Add MIDR encoding for Arm Cortex-A55 and Cortex-A35
BUG: unable to handle kernel paging request in slhc_free C done 4 1850d 2077d 1/1 1818d da0bbf51bdcb slip: make slhc_free() silently accept an error pointer
WARNING in dio_complete C done 27 1850d 2079d 1/1 1818d 365874a0eab5 blk-mq: avoid sysfs buffer overflow with too many CPU cores
KASAN: use-after-free Read in slip_open C done done 2 1853d 1853d 1/1 1820d f5bcc687e3d6 slip: Fix use-after-free Read in slip_open
KASAN: use-after-free Read in kfree_skb C done 98 1851d 1978d 1/1 1820d 79d404a2aa86 Bluetooth: Fix invalid-free in bcsp_close()
INFO: task hung in nbd_ioctl C done 18 1822d 1896d 1/1 1820d 4df728651b8a nbd: verify socket is supported during setup
WARNING: suspicious RCU usage in shmem_add_seals C done done 1435 1858d 1881d 1/1 1828d 988f701a805b memfd: Use radix_tree_deref_slot_protected to avoid the warning.
possible deadlock in flush_workqueue C done 15 1861d 1953d 1/1 1830d 4df728651b8a nbd: verify socket is supported during setup
WARNING in bpf_jit_free syz done 60 1903d 2076d 1/1 1831d 47569360be87 bpf: fix use after free in prog symbol exposure
INFO: task hung in lo_release syz done 128 1969d 2081d 1/1 1832d 22f36db48781 Revert "block/loop: Use global lock for ioctl() operation."
BUG: unable to handle kernel NULL pointer dereference in inet_autobind C inconclusive done 3133 1872d 1881d 1/1 1833d 7c3c0d51129a sctp: not bind the socket in sctp_connect
BUG: unable to handle kernel NULL pointer dereference in blk_mq_map_swqueue C done 20 1834d 2072d 1/1 1833d 0b584bf573ae nbd: fix max number of supported devs
BUG: unable to handle kernel paging request in dummy_set_vf_vlan C done 5 1866d 1960d 1/1 1833d 9ed49fc95f37 net: rtnetlink: prevent underflows in do_setvfinfo()
BUG: unable to handle kernel paging request in dummy_set_vf_spoofchk C done 6 1869d 1981d 1/1 1833d 9ed49fc95f37 net: rtnetlink: prevent underflows in do_setvfinfo()
BUG: unable to handle kernel paging request in dummy_get_vf_config C done 4 1885d 1983d 1/1 1835d 9ed49fc95f37 net: rtnetlink: prevent underflows in do_setvfinfo()
WARNING: suspicious RCU usage in netem_enqueue C done 3 1889d 1913d 1/1 1836d 6f492e801033 net_sched: add max len check for TCA_KIND
BUG: unable to handle kernel paging request in dummy_set_vf_rss_query_en C done 5 1890d 1981d 1/1 1836d 9ed49fc95f37 net: rtnetlink: prevent underflows in do_setvfinfo()
BUG: unable to handle kernel paging request in dummy_set_vf_mac C done 5 1898d 1971d 1/1 1836d 9ed49fc95f37 net: rtnetlink: prevent underflows in do_setvfinfo()
BUG: unable to handle kernel NULL pointer dereference in tc_bind_tclass C done 14 1893d 1933d 1/1 1836d 54b9f5791846 net_sched: check cops->tcf_block in tc_bind_tclass()
KASAN: null-ptr-deref Write in kvm_write_guest_virt_system C done 53 1899d 1917d 1/1 1837d 2890b718f4a8 watchdog: imx2_wdt: fix min() calculation in imx2_wdt_set_timeout
WARNING in tcp_send_loss_probe C done 22 1920d 1929d 1/1 1839d ba2ddb43f270 tcp: Don't dequeue SYN/FIN-segments from write-queue
general protection fault in tcp_push C done 55 1919d 1929d 1/1 1839d f1dcc5ed4bea tcp: Reset send_head when removing skb from write-queue
BUG: unable to handle kernel paging request in dummy_set_vf_rate C done 3 1919d 1934d 1/1 1839d 9ed49fc95f37 net: rtnetlink: prevent underflows in do_setvfinfo()
WARNING in tcp_retransmit_timer C done 215 1919d 1929d 1/1 1839d ba2ddb43f270 tcp: Don't dequeue SYN/FIN-segments from write-queue
general protection fault in qdisc_destroy C done 4 1919d 1924d 1/1 1839d e0f600b69df3 net_sched: let qdisc_put() accept NULL pointer
INFO: rcu detected stall in mld_dad_timer_expire C done 1 1925d 1925d 1/1 1839d cc243e2427ce sch_hhf: ensure quantum and hhf_non_hh_weight are non-zero
INFO: rcu detected stall in br_handle_frame C done 15 1921d 1933d 1/1 1841d cc243e2427ce sch_hhf: ensure quantum and hhf_non_hh_weight are non-zero
WARNING in kernfs_get C done 17 1951d 2071d 1/1 1841d 5432923a6b20 driver core: Fix use-after-free and double free on glue directory
INFO: rcu detected stall in mld_ifc_timer_expire C done 9 1923d 1933d 1/1 1842d cc243e2427ce sch_hhf: ensure quantum and hhf_non_hh_weight are non-zero
WARNING in xfrm_state_fini C done 193 1926d 2080d 1/1 1842d cd393b38514d xfrm: clean up xfrm protocol checks
INFO: rcu detected stall in addrconf_dad_work C done 18 1926d 1933d 1/1 1842d cc243e2427ce sch_hhf: ensure quantum and hhf_non_hh_weight are non-zero
INFO: rcu detected stall in corrupted C done 3 1927d 1949d 1/1 1843d cc243e2427ce sch_hhf: ensure quantum and hhf_non_hh_weight are non-zero
BUG: unable to handle kernel paging request in dummy_set_vf_trust C done 2 1934d 1968d 1/1 1843d 9ed49fc95f37 net: rtnetlink: prevent underflows in do_setvfinfo()
WARNING in map_lookup_elem C done 2 1941d 1941d 1/1 1843d 95867919494d KVM: x86: add tracepoints around __direct_map and FNAME(fetch)
WARNING: refcount bug in hci_register_dev C done 3 1939d 1954d 1/1 1843d 5432923a6b20 driver core: Fix use-after-free and double free on glue directory
kernel BUG at ./include/linux/skbuff.h:LINE! C done 16 1935d 1961d 1/1 1843d e5df4baea324 tcp: fix tcp_rtx_queue_tail in case of empty retransmit queue
general protection fault in packet_lookup_frame C done 1 1957d 1957d 1/1 1844d 5ac73816dda7 net/packet: fix race in tpacket_snd()
WARNING: refcount bug in kobject_put C done 3 1961d 2068d 1/1 1844d 5432923a6b20 driver core: Fix use-after-free and double free on glue directory
general protection fault in tcf_ife_init C done 12 1972d 1982d 1/1 1845d 7fcc60e5f837 ife: error out when nla attributes are empty
general protection fault in kernfs_add_one C done 5 1969d 2038d 1/1 1845d 5432923a6b20 driver core: Fix use-after-free and double free on glue directory
WARNING in sysfs_remove_group C done 1 1985d 1985d 1/1 1846d 5432923a6b20 driver core: Fix use-after-free and double free on glue directory
BUG: unable to handle kernel paging request in coalesced_mmio_write C done 4 2003d 2009d 1/1 1847d bf81752d808c KVM: coalesced_mmio: add bounds checking
WARNING in kernfs_put C done 2 2001d 2068d 1/1 1847d 5432923a6b20 driver core: Fix use-after-free and double free on glue directory
KASAN: use-after-free Read in erspan_build_header C done 18 2047d 2081d 1/1 1848d 1d629bf9b576 net: erspan: fix use-after-free
KASAN: slab-out-of-bounds Read in erspan_build_header C done 8 2045d 2081d 1/1 1848d d93fb604c079 tipc: fix modprobe tipc failed after switch order of device registration
WARNING in notify_change C done 14 2011d 2076d 1/1 1848d 2c5462425563 Abort file_remove_privs() for non-reg. files
KASAN: use-after-free Read in tcp_init_tso_segs C 1424 1919d 1929d 1/1 1905d f1dcc5ed4bea tcp: Reset send_head when removing skb from write-queue