syzbot


Title Repro Cause bisect Fix bisect Count Last Reported Patched Closed Patch
general protection fault in em_cmp_match C 1 526d 526d 1/1 496d b9b47801cef5 net_sched: reject TCF_EM_SIMPLE case for complex ematch module
KASAN: use-after-free Read in bcm_can_tx C 2 868d 1325d 1/1 850d 632881680ba0 can: bcm: fix UAF of bcm op
general protection fault in ieee802154_llsec_parse_key_id C done 101 1138d 1193d 1/1 1107d 37580e6837c0 net: ieee802154: nl-mac: fix check on panid
general protection fault in nl802154_del_llsec_devkey C done 171 1138d 1199d 1/1 1107d 266e3f2ef0d1 net: ieee802154: fix nl802154 del llsec devkey
general protection fault in nl802154_del_llsec_key C done 135 1138d 1194d 1/1 1107d 1804bf103e73 net: ieee802154: fix nl802154 del llsec key
general protection fault in try_to_wake_up C done 707 1138d 1167d 1/1 1107d f6420532cfd7 net: tun: set tun->dev->addr_len during TUNSETLINK processing
general protection fault in nl802154_add_llsec_key C done 168 1138d 1198d 1/1 1107d 3a94a5b2e0ba net: ieee802154: fix nl802154 add llsec key
general protection fault in nl802154_del_llsec_dev C done 136 1138d 1200d 1/1 1108d 3ee9f1bafd06 net: ieee802154: fix nl802154 del llsec dev
INFO: trying to register non-static key in ieee802154_get_llsec_params C done 8 1141d 1165d 1/1 1111d df9aa96b613d net: ieee802154: stop dump llsec params for monitors
WARNING in cfg80211_connect C done 101 1155d 1335d 1/1 1121d bd7b29fb365e cfg80211: remove WARN_ON() in cfg80211_sme_connect
BUG: unable to handle kernel NULL pointer dereference in __lookup_hash C done 31 1151d 1344d 1/1 1121d b74d5f70523a reiserfs: add check for an invalid ih_entry_count
general protection fault in selinux_socket_sendmsg C done 3 1160d 1332d 1/1 1129d 534d2cf487b9 usbip: synchronize event handler with sysfs code paths
KASAN: use-after-free Read in ieee80211_ibss_build_presp C done 2 1161d 1307d 1/1 1131d d2ddd5417f6d mac80211: fix double free in ibss_leave
possible deadlock in red_adaptative_timer C done 2 1163d 1254d 1/1 1133d 43c9bffda3a2 net: sched: validate stab values
BUG: unable to handle kernel NULL pointer dereference in vhci_shutdown_connection syz done 1335 1167d 1258d 1/1 1135d 534d2cf487b9 usbip: synchronize event handler with sysfs code paths
WARNING in ext4_xattr_set_entry C done 19 1179d 1335d 1/1 1147d 470f69cb3742 ext4: do not try to set xattr into ea_inode if value is empty
BUG: unable to handle kernel NULL pointer dereference in amp_read_loc_assoc_final_data C done 207 1180d 1397d 1/1 1147d 2f642a2b3365 Bluetooth: Fix null pointer dereference in amp_read_loc_assoc_final_data
KASAN: use-after-free Read in ntfs_iget C done 2 1192d 1268d 1/1 1161d 49ee014a2070 ntfs: check for valid standard information attribute
KASAN: use-after-free Read in ntfs_read_locked_inode C done 2 1193d 1345d 1/1 1163d 49ee014a2070 ntfs: check for valid standard information attribute
KASAN: slab-out-of-bounds Read in squashfs_export_iget C done 4 1221d 1325d 1/1 1188d 69396cfd7908 squashfs: add more sanity checks in inode lookup
general protection fault in ieee80211_subif_start_xmit syz done 1 1218d 1278d 1/1 1188d d882652c1c6f mac80211: pause TX while changing interface type
general protection fault in ioctl_standard_call C done 24 1219d 1315d 1/1 1188d 173b67cf1e72 wext: fix NULL-ptr-dereference with cfg80211's lack of commit()
KASAN: slab-out-of-bounds Read in squashfs_get_id C 11 1190d 1344d 1/1 1190d 8d9ca7e328ef squashfs: add more sanity checks in id lookup
KASAN: use-after-free Read in squashfs_get_id C 1 1190d 1286d 1/1 1190d 8d9ca7e328ef squashfs: add more sanity checks in id lookup
KASAN: use-after-free Read in reiserfs_fill_super C done 2 1238d 1238d 1/1 1191d b74d5f70523a reiserfs: add check for an invalid ih_entry_count
divide error in do_journal_end C done 1 1235d 1296d 1/1 1191d b74d5f70523a reiserfs: add check for an invalid ih_entry_count
KASAN: use-after-free Read in search_by_entry_key C done 3 1238d 1344d 1/1 1191d b74d5f70523a reiserfs: add check for an invalid ih_entry_count
KASAN: use-after-free Read in reiserfs_read_locked_inode C done 5 1240d 1345d 1/1 1193d b74d5f70523a reiserfs: add check for an invalid ih_entry_count
general protection fault in dqput C done 1 1247d 1247d 1/1 1217d a9c625fcddc0 quota: Sanity-check quota file headers on load
KASAN: use-after-free Read in leaf_paste_entries C done 6 1249d 1293d 1/1 1217d b74d5f70523a reiserfs: add check for an invalid ih_entry_count
general protection fault in hci_phy_link_complete_evt C done 40 1248d 1395d 1/1 1217d 4113f6f73f6e Bluetooth: Fix null pointer dereference in hci_event_packet()
BUG: unable to handle kernel paging request in dquot_add_inodes C done 2 1251d 1272d 1/1 1220d a9c625fcddc0 quota: Sanity-check quota file headers on load
BUG: unable to handle kernel paging request in dqput C done 9 1253d 1342d 1/1 1221d a9c625fcddc0 quota: Sanity-check quota file headers on load
kernel BUG at net/core/dev.c:LINE! C inconclusive 3 1246d 1515d 1/1 1227d 8f9a69a92fc6 net: drop bogus skb with CHECKSUM_PARTIAL and offset beyond end of trimmed packet
kernel BUG at fs/reiserfs/prints.c:LINE! C done 3 1262d 1342d 1/1 1231d b74d5f70523a reiserfs: add check for an invalid ih_entry_count
general protection fault in get_work_pool C done 1 1264d 1294d 1/1 1234d 42a387dc80c3 mac80211: mesh: fix mesh_pathtbl_init() error path
BUG: corrupted list in dquot_disable C done 1 1266d 1266d 1/1 1235d a9c625fcddc0 quota: Sanity-check quota file headers on load
KASAN: use-after-free Read in sco_chan_del C done 10 1268d 1394d 1/1 1238d 4113f6f73f6e Bluetooth: Fix null pointer dereference in hci_event_packet()
INFO: trying to register non-static key in rhashtable_free_and_destroy C done 4 1272d 1286d 1/1 1239d 42a387dc80c3 mac80211: mesh: fix mesh_pathtbl_init() error path
KASAN: slab-out-of-bounds Read in hci_le_meta_evt C done 15 1275d 1395d 1/1 1245d 7ee2cd49f722 Bluetooth: Fix slab-out-of-bounds read in hci_le_direct_adv_report_evt()
BUG: unable to handle kernel paging request in dquot_add_space C done 1 1275d 1336d 1/1 1245d a9c625fcddc0 quota: Sanity-check quota file headers on load
BUG: sleeping function called from invalid context in sta_info_move_state C done 1101 1281d 1283d 1/1 1250d 89ab6b90b7d9 mac80211: free sta in sta_info_insert_finish() on errors
general protection fault in qp_release_pages C done 2 1283d 1313d 1/1 1252d 2b8c7395d275 VMCI: check return value of get_user_pages_fast() for errors
WARNING in unlock_new_inode C done 55 1309d 1347d 1/1 1279d a8ca9f684674 reiserfs: only call unlock_new_inode() if I_NEW
KASAN: slab-out-of-bounds Write in init_sb C done 3 1310d 1344d 1/1 1280d 78734edd11cc gfs2: add validation checks for size of superblock
KASAN: global-out-of-bounds Read in fbcon_resize C done 529 1315d 1363d 1/1 1284d d31eccab7abd fbcon: Fix user font detection test at fbcon_resize().
INFO: task hung in ucma_close C done 421 1315d 1727d 1/1 1284d ef13017d65b0 RDMA/ucma: ucma_context reference leak in error path
KASAN: global-out-of-bounds Read in vga16fb_imageblit C done 723 1315d 1638d 1/1 1284d 0472aa0c36c7 video: fbdev: fix OOB read in vga_8planes_imageblit()
KASAN: slab-out-of-bounds Read in ntfs_attr_find C done 10 1315d 1343d 1/1 1284d d2918cca649f ntfs: add check for mft record size in superblock
KASAN: global-out-of-bounds Read in fbcon_get_font C done 42 1322d 1638d 1/1 1291d 30386c13a1bf fbcon: Fix global-out-of-bounds read in fbcon_get_font()
KASAN: use-after-free Read in ntfs_attr_find C done 4 1323d 1343d 1/1 1293d d2918cca649f ntfs: add check for mft record size in superblock
KASAN: global-out-of-bounds Read in get_unique_tuple C done 5 1336d 1508d 1/1 1306d 60634d81cb43 netfilter: ctnetlink: add a range check for l3/l4 protonum
general protection fault in open_xa_dir C done 1 1344d 1344d 1/1 1313d e2b6b34324c4 reiserfs: Fix oops during mount
KASAN: use-after-free Read in rxrpc_see_skb syz done 1 1365d 1365d 1/1 1315d 38eefb196438 MIPS: SNI: Fix MIPS_L1_CACHE_SHIFT
INFO: task hung in nbd_ioctl (2) C done 16 1361d 1606d 1/1 1315d 7241d653bcc1 tipc: fix shutdown() of connection oriented socket
WARNING in restore_regulatory_settings C done 2264 1356d 1603d 1/1 1326d 02015d244d9c cfg80211: regulatory: reject invalid hints
general protection fault in __sock_release syz done 12 1357d 1369d 1/1 1326d c5c6e00f6cc5 fix regression in "epoll: Keep a reference on files added to the check list"
general protection fault in locks_remove_file syz done 6 1357d 1368d 1/1 1327d c5c6e00f6cc5 fix regression in "epoll: Keep a reference on files added to the check list"
general protection fault in tty_release C done 10 1358d 1368d 1/1 1328d c5c6e00f6cc5 fix regression in "epoll: Keep a reference on files added to the check list"
KASAN: use-after-free Read in seq_release_private syz done 1 1359d 1359d 1/1 1328d c5c6e00f6cc5 fix regression in "epoll: Keep a reference on files added to the check list"
WARNING: ODEBUG bug in corrupted syz done 1 1360d 1360d 1/1 1328d c5c6e00f6cc5 fix regression in "epoll: Keep a reference on files added to the check list"
WARNING: ODEBUG bug in exit_to_usermode_loop syz done 2 1362d 1364d 1/1 1331d c5c6e00f6cc5 fix regression in "epoll: Keep a reference on files added to the check list"
KASAN: use-after-free Read in __sock_release syz done 3 1362d 1370d 1/1 1331d c5c6e00f6cc5 fix regression in "epoll: Keep a reference on files added to the check list"
WARNING in snd_pcm_drop syz done 1 1361d 1361d 1/1 1331d c5c6e00f6cc5 fix regression in "epoll: Keep a reference on files added to the check list"
BUG: corrupted list in fuse_dev_free syz done 1 1363d 1363d 1/1 1332d c5c6e00f6cc5 fix regression in "epoll: Keep a reference on files added to the check list"
general protection fault in kmem_cache_free syz done 3 1364d 1364d 1/1 1333d c5c6e00f6cc5 fix regression in "epoll: Keep a reference on files added to the check list"
KASAN: use-after-free Read in snd_pcm_oss_release syz done 1 1364d 1364d 1/1 1333d c5c6e00f6cc5 fix regression in "epoll: Keep a reference on files added to the check list"
KASAN: use-after-free Write in ex_handler_refcount C done 16 1364d 1573d 1/1 1333d af7122cfbaee Bluetooth: add a mutex lock to avoid UAF in do_enale_set
KASAN: double-free or invalid-free in (null) syz done 1 1365d 1365d 1/1 1334d c5c6e00f6cc5 fix regression in "epoll: Keep a reference on files added to the check list"
BUG: corrupted list in mousedev_release syz done 1 1366d 1366d 1/1 1336d c5c6e00f6cc5 fix regression in "epoll: Keep a reference on files added to the check list"
INFO: trying to register non-static key in uhid_char_release C done 2 1367d 1387d 1/1 1337d 9e5894b7e222 HID: core: Correctly handle ReportSize being zero
KASAN: slab-out-of-bounds Read in hci_event_packet C done 17 1379d 1853d 1/1 1349d 68bb9eddbf5d Bluetooth: Prevent out-of-bounds read in hci_inquiry_result_with_rssi_evt()
KASAN: slab-out-of-bounds Read in hci_inquiry_result_with_rssi_evt C done 6 1380d 1397d 1/1 1350d 68bb9eddbf5d Bluetooth: Prevent out-of-bounds read in hci_inquiry_result_with_rssi_evt()
KASAN: use-after-free Read in get_block C done 8 1385d 1510d 1/1 1354d 0900097ef667 fs/minix: reject too-large maximum file size
WARNING in inc_nlink C done 21 1385d 1528d 1/1 1355d 12490f06ef08 fs/minix: don't allow getting deleted inodes
KASAN: slab-out-of-bounds Read in get_block C done 2 1385d 1415d 1/1 1355d 0900097ef667 fs/minix: reject too-large maximum file size
BUG: unable to handle kernel NULL pointer dereference in get_block C done 45 1386d 1533d 1/1 1356d 3c775629a5ff fs/minix: check return value of sb_getblk()
KASAN: slab-out-of-bounds Read in hci_extended_inquiry_result_evt C done 5 1389d 1395d 1/1 1357d d91299b8382b Bluetooth: Fix slab-out-of-bounds read in hci_extended_inquiry_result_evt()
KASAN: use-after-free Read in delete_and_unsubscribe_port syz done 2 1398d 1398d 1/1 1364d ccafbed8b2f6 ALSA: seq: oss: Serialize ioctls
KASAN: double-free or invalid-free in 0x2 syz done 1 1398d 1398d 1/1 1364d ccafbed8b2f6 ALSA: seq: oss: Serialize ioctls
INFO: task hung in fb_release C done 48 1400d 1631d 1/1 1368d c388072f90cc fbdev: Detect integer underflow at "struct fbcon_ops"->clear_margins.
unregister_netdevice: waiting for DEV to become free C done 120 1426d 1865d 1/1 1395d 0f7f0b057417 ipvs: fix tinfo memory leak in start_sync_thread
general protection fault in batadv_iv_ogm_schedule_buff 1 1502d 1502d 1/1 1419d e181bb93c904 batman-adv: Don't schedule OGM for disabled interface
KASAN: null-ptr-deref Write in choke_reset C done 283 1469d 1499d 1/1 1439d 4836eb6b5965 sch_choke: avoid potential panic in choke_reset()
KASAN: use-after-free Read in do_blk_trace_setup C done 342 1469d 1874d 1/1 1439d b390c22c0bc7 blktrace: fix unlocked access to init/start-stop/teardown
WARNING in xfrm_policy_insert syz done 8 1473d 1732d 1/1 1443d 1cd914b02b5a xfrm: fix a warning in xfrm_policy_insert_list
KASAN: slab-out-of-bounds Write in snd_rawmidi_kernel_write1 C done 1 1474d 1504d 1/1 1444d 8645ac3684a7 ALSA: rawmidi: Fix racy buffer resize under concurrent accesses
WARNING: ODEBUG bug in route4_change C done 23 1517d 1545d 1/1 1486d f0c92f59cf52 net_sched: cls_route: remove the right filter from hashtable
KASAN: use-after-free Write in release_tty C done 124 1518d 1637d 1/1 1487d b9eb60a0ef39 vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console
WARNING: ODEBUG bug in rfcomm_dev_ioctl C done 2 1526d 1526d 1/1 1495d 0da9c032adbb Bluetooth: RFCOMM: fix ODEBUG bug in rfcomm_dev_ioctl
KASAN: slab-out-of-bounds Read in selinux_xfrm_alloc_user C done 1 1527d 1527d 1/1 1497d 25106012e91a xfrm: add the missing verify_sec_ctx_len check in xfrm_add_acquire
WARNING: refcount bug in sock_wfree C done done 3 1528d 1649d 1/1 1498d 968f831d9056 sctp: fix refcount bug in sctp_wfree
KASAN: use-after-free Write in tcindex_set_parms C done 3 1531d 1531d 1/1 1500d 9f8b6c44be17 net_sched: keep alloc_hash updated after hash allocation
KASAN: slab-out-of-bounds Write in tcindex_set_parms C done 2 1531d 1531d 1/1 1501d 9f8b6c44be17 net_sched: keep alloc_hash updated after hash allocation
WARNING: ODEBUG bug in rfcomm_dlc_free C done 16 1534d 1766d 1/1 1503d 0da9c032adbb Bluetooth: RFCOMM: fix ODEBUG bug in rfcomm_dev_ioctl
KASAN: use-after-free Read in tty_open C done 5 1536d 1638d 1/1 1506d b9eb60a0ef39 vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console
KASAN: use-after-free Read in tty_buffer_cancel_work C done 2 1545d 1633d 1/1 1515d b9eb60a0ef39 vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console
KASAN: use-after-free Read in get_work_pool C done 1 1546d 1636d 1/1 1516d b9eb60a0ef39 vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console
KASAN: use-after-free Read in n_tty_receive_buf_common C done 25 1548d 1637d 1/1 1516d a4719f6d07b2 vt: selection, push sel_lock up
WARNING: kernel stack frame pointer has bad value C done 65 1553d 1857d 1/1 1519d 377d7378a605 fjes: fix missed check in fjes_acpi_add
INFO: task hung in paste_selection C done 8 1553d 1629d 1/1 1523d 7c315855c6f4 ipvlan: do not use cond_resched_rcu() in ipvlan_process_multicast()
INFO: task hung in drain_all_pages C done 1 1554d 1554d 1/1 1524d a86265edeb33 netfilter: xt_hashlimit: limit the max size of hashtable
INFO: task hung in tty_ldisc_hangup C done 17 1561d 1632d 1/1 1531d a4719f6d07b2 vt: selection, push sel_lock up
INFO: task hung in hashlimit_mt_check_common C done 6 1564d 1616d 1/1 1532d a86265edeb33 netfilter: xt_hashlimit: limit the max size of hashtable
KASAN: stack-out-of-bounds Write in ax25_getname C done 4 1563d 1859d 1/1 1532d ff8e12b0cfe2 vhost: Check docket sk_family instead of call getname
KASAN: slab-out-of-bounds Read in tcf_exts_destroy C done 1 1568d 1681d 1/1 1538d 6cb448ee493c net_sched: fix an OOB access in cls_tcindex
general protection fault in path_openat C done 40 1574d 1580d 1/1 1543d 40642747dd9f vfs: fix do_last() regression
BUG: sleeping function called from invalid context in tpk_write C done 10 1574d 1635d 1/1 1543d ab84fd0d3dc8 ttyprintk: fix a potential deadlock in interrupt context issue
BUG: sleeping function called from invalid context in lock_sock_nested (2) syz done 1 1576d 1636d 1/1 1546d 713ff7e4d605 crypto: af_alg - Use bh_lock_sock in sk_destruct
KASAN: use-after-free Read in ext4_xattr_set_entry C done 9 1578d 1670d 1/1 1548d 08e4a312439c ext4: validate the debug_want_extra_isize mount option at parse time
KASAN: slab-out-of-bounds Read in __nla_put_nohdr C done 2 1582d 1582d 1/1 1552d c5fd8a37e971 net-sysfs: Fix reference count leak
KASAN: slab-out-of-bounds Write in setup_udp_tunnel_sock C done 1 1586d 1586d 1/1 1555d c57b0f88fce8 Documentation: Document arm64 kpti control
KASAN: use-after-free Read in snd_timer_resolution C done 1 1588d 1588d 1/1 1558d 43bb0a16b25d ALSA: seq: Fix racy access for queue timer in proc read
INFO: task hung in genl_rcv_msg syz done 2 1592d 1592d 1/1 1562d 24070b40926b tcp: clear tp->total_retrans in tcp_disconnect()
WARNING in reconnect_path C done done 1 1594d 1654d 1/1 1563d b6e209a13a61 exportfs: fix 'passing zero to ERR_PTR()' warning
KASAN: use-after-free Write in __alloc_skb C done 1 1598d 1628d 1/1 1564d e841252840c4 net: rtnetlink: validate IFLA_MTU attribute in rtnl_create_link()
KASAN: use-after-free Read in cdev_put C done 6 1598d 1641d 1/1 1567d 0ce254bc68ed xen-blkback: prevent premature module unload
KASAN: slab-out-of-bounds Read in macvlan_broadcast C done 6 1599d 1603d 1/1 1568d 4a953272f2d2 macvlan: do not assume mac_header is set in macvlan_broadcast()
KASAN: use-after-free Read in macvlan_broadcast C done 8 1601d 1604d 1/1 1570d 4a953272f2d2 macvlan: do not assume mac_header is set in macvlan_broadcast()
WARNING: bad unlock balance in gtp_encap_enable_socket C done 2 1601d 1604d 1/1 1570d 887b0296a905 gtp: fix bad unlock balance in gtp_encap_enable_socket
KASAN: slab-out-of-bounds Read in bpf_skb_change_tail C done 2 1606d 1753d 1/1 1574d 7fed98f4a1e6 bpf: reject passing modified ctx to helper functions
KASAN: slab-out-of-bounds Read in bpf_skb_change_proto C done 2 1606d 1753d 1/1 1574d 7fed98f4a1e6 bpf: reject passing modified ctx to helper functions
KASAN: slab-out-of-bounds Read in bpf_clone_redirect C done 11 1612d 1775d 1/1 1581d 7fed98f4a1e6 bpf: reject passing modified ctx to helper functions
KASAN: slab-out-of-bounds Read in bpf_skb_change_head C done 2 1616d 1685d 1/1 1584d 7fed98f4a1e6 bpf: reject passing modified ctx to helper functions
possible deadlock in refcount_dec_and_mutex_lock C done 10 1615d 1687d 1/1 1584d 4df728651b8a nbd: verify socket is supported during setup
WARNING: refcount bug in cdev_get C done 21 1616d 1746d 1/1 1586d 03a709593040 net: usb: lan78xx: Connect PHY before registering MAC
INFO: rcu detected stall in br_handle_frame (2) C done 1 1621d 1621d 1/1 1590d 73a6f18d8390 pkt_sched: fq: do not accept silly TCA_FQ_QUANTUM
WARNING in ovl_rename syz done 2 1624d 1857d 1/1 1591d 6890751cfea7 ovl: relax WARN_ON() on rename to self
inconsistent lock state in sp_get C done 2 1629d 1629d 1/1 1598d 8b58905f212b 6pack,mkiss: fix possible deadlock
KASAN: slab-out-of-bounds Read in linear_transfer C done 4 1630d 1637d 1/1 1599d 2a76606d8a83 ALSA: pcm: oss: Avoid potential buffer overflows
possible deadlock in __might_fault C done 295 1632d 1872d 1/1 1601d d41971493d28 usb: mon: Fix a deadlock in usbmon between mmap and read
possible deadlock in mon_bin_vma_fault C done 282 1633d 1868d 1/1 1602d d41971493d28 usb: mon: Fix a deadlock in usbmon between mmap and read
WARNING: refcount bug in kobject_get C done 20 1637d 1871d 1/1 1607d 227db8e4c346 tipc: fix unlimited bundling of small messages
WARNING in refcount_error_report syz done 1 1639d 1639d 1/1 1607d 7272e8e3bfa3 inet: protect against too small mtu values.
BUG: corrupted list in p9_fd_cancelled syz done 2 1638d 1684d 1/1 1607d 8a82aee7bdfd arm64: Add MIDR encoding for Arm Cortex-A55 and Cortex-A35
BUG: unable to handle kernel paging request in slhc_free C done 4 1642d 1869d 1/1 1610d da0bbf51bdcb slip: make slhc_free() silently accept an error pointer
WARNING in dio_complete C done 27 1642d 1871d 1/1 1610d 365874a0eab5 blk-mq: avoid sysfs buffer overflow with too many CPU cores
KASAN: use-after-free Read in slip_open C done done 2 1645d 1645d 1/1 1613d f5bcc687e3d6 slip: Fix use-after-free Read in slip_open
KASAN: use-after-free Read in kfree_skb C done 98 1643d 1771d 1/1 1613d 79d404a2aa86 Bluetooth: Fix invalid-free in bcsp_close()
INFO: task hung in nbd_ioctl C done 18 1614d 1688d 1/1 1613d 4df728651b8a nbd: verify socket is supported during setup
WARNING: suspicious RCU usage in shmem_add_seals C done done 1435 1650d 1673d 1/1 1620d 988f701a805b memfd: Use radix_tree_deref_slot_protected to avoid the warning.
possible deadlock in flush_workqueue C done 15 1653d 1745d 1/1 1622d 4df728651b8a nbd: verify socket is supported during setup
WARNING in bpf_jit_free syz done 60 1695d 1868d 1/1 1623d 47569360be87 bpf: fix use after free in prog symbol exposure
INFO: task hung in lo_release syz done 128 1761d 1873d 1/1 1624d 22f36db48781 Revert "block/loop: Use global lock for ioctl() operation."
BUG: unable to handle kernel NULL pointer dereference in inet_autobind C inconclusive done 3133 1665d 1673d 1/1 1625d 7c3c0d51129a sctp: not bind the socket in sctp_connect
BUG: unable to handle kernel NULL pointer dereference in blk_mq_map_swqueue C done 20 1626d 1864d 1/1 1625d 0b584bf573ae nbd: fix max number of supported devs
BUG: unable to handle kernel paging request in dummy_set_vf_vlan C done 5 1658d 1752d 1/1 1625d 9ed49fc95f37 net: rtnetlink: prevent underflows in do_setvfinfo()
BUG: unable to handle kernel paging request in dummy_set_vf_spoofchk C done 6 1662d 1773d 1/1 1625d 9ed49fc95f37 net: rtnetlink: prevent underflows in do_setvfinfo()
BUG: unable to handle kernel paging request in dummy_get_vf_config C done 4 1677d 1775d 1/1 1627d 9ed49fc95f37 net: rtnetlink: prevent underflows in do_setvfinfo()
WARNING: suspicious RCU usage in netem_enqueue C done 3 1682d 1705d 1/1 1628d 6f492e801033 net_sched: add max len check for TCA_KIND
BUG: unable to handle kernel paging request in dummy_set_vf_rss_query_en C done 5 1682d 1773d 1/1 1628d 9ed49fc95f37 net: rtnetlink: prevent underflows in do_setvfinfo()
BUG: unable to handle kernel paging request in dummy_set_vf_mac C done 5 1691d 1763d 1/1 1628d 9ed49fc95f37 net: rtnetlink: prevent underflows in do_setvfinfo()
BUG: unable to handle kernel NULL pointer dereference in tc_bind_tclass C done 14 1685d 1725d 1/1 1628d 54b9f5791846 net_sched: check cops->tcf_block in tc_bind_tclass()
KASAN: null-ptr-deref Write in kvm_write_guest_virt_system C done 53 1691d 1709d 1/1 1629d 2890b718f4a8 watchdog: imx2_wdt: fix min() calculation in imx2_wdt_set_timeout
WARNING in tcp_send_loss_probe C done 22 1712d 1722d 1/1 1632d ba2ddb43f270 tcp: Don't dequeue SYN/FIN-segments from write-queue
general protection fault in tcp_push C done 55 1711d 1722d 1/1 1632d f1dcc5ed4bea tcp: Reset send_head when removing skb from write-queue
BUG: unable to handle kernel paging request in dummy_set_vf_rate C done 3 1711d 1726d 1/1 1632d 9ed49fc95f37 net: rtnetlink: prevent underflows in do_setvfinfo()
WARNING in tcp_retransmit_timer C done 215 1711d 1722d 1/1 1632d ba2ddb43f270 tcp: Don't dequeue SYN/FIN-segments from write-queue
general protection fault in qdisc_destroy C done 4 1711d 1716d 1/1 1632d e0f600b69df3 net_sched: let qdisc_put() accept NULL pointer
INFO: rcu detected stall in mld_dad_timer_expire C done 1 1717d 1717d 1/1 1632d cc243e2427ce sch_hhf: ensure quantum and hhf_non_hh_weight are non-zero
INFO: rcu detected stall in br_handle_frame C done 15 1713d 1725d 1/1 1633d cc243e2427ce sch_hhf: ensure quantum and hhf_non_hh_weight are non-zero
WARNING in kernfs_get C done 17 1744d 1863d 1/1 1633d 5432923a6b20 driver core: Fix use-after-free and double free on glue directory
INFO: rcu detected stall in mld_ifc_timer_expire C done 9 1715d 1725d 1/1 1634d cc243e2427ce sch_hhf: ensure quantum and hhf_non_hh_weight are non-zero
WARNING in xfrm_state_fini C done 193 1718d 1872d 1/1 1635d cd393b38514d xfrm: clean up xfrm protocol checks
INFO: rcu detected stall in addrconf_dad_work C done 18 1718d 1725d 1/1 1635d cc243e2427ce sch_hhf: ensure quantum and hhf_non_hh_weight are non-zero
INFO: rcu detected stall in corrupted C done 3 1719d 1741d 1/1 1635d cc243e2427ce sch_hhf: ensure quantum and hhf_non_hh_weight are non-zero
BUG: unable to handle kernel paging request in dummy_set_vf_trust C done 2 1727d 1760d 1/1 1636d 9ed49fc95f37 net: rtnetlink: prevent underflows in do_setvfinfo()
WARNING in map_lookup_elem C done 2 1733d 1733d 1/1 1636d 95867919494d KVM: x86: add tracepoints around __direct_map and FNAME(fetch)
WARNING: refcount bug in hci_register_dev C done 3 1731d 1746d 1/1 1636d 5432923a6b20 driver core: Fix use-after-free and double free on glue directory
kernel BUG at ./include/linux/skbuff.h:LINE! C done 16 1727d 1753d 1/1 1636d e5df4baea324 tcp: fix tcp_rtx_queue_tail in case of empty retransmit queue
general protection fault in packet_lookup_frame C done 1 1749d 1749d 1/1 1637d 5ac73816dda7 net/packet: fix race in tpacket_snd()
WARNING: refcount bug in kobject_put C done 3 1753d 1860d 1/1 1637d 5432923a6b20 driver core: Fix use-after-free and double free on glue directory
general protection fault in tcf_ife_init C done 12 1764d 1774d 1/1 1637d 7fcc60e5f837 ife: error out when nla attributes are empty
general protection fault in kernfs_add_one C done 5 1761d 1830d 1/1 1637d 5432923a6b20 driver core: Fix use-after-free and double free on glue directory
WARNING in sysfs_remove_group C done 1 1777d 1777d 1/1 1638d 5432923a6b20 driver core: Fix use-after-free and double free on glue directory
BUG: unable to handle kernel paging request in coalesced_mmio_write C done 4 1795d 1801d 1/1 1639d bf81752d808c KVM: coalesced_mmio: add bounds checking
WARNING in kernfs_put C done 2 1793d 1860d 1/1 1639d 5432923a6b20 driver core: Fix use-after-free and double free on glue directory
KASAN: use-after-free Read in erspan_build_header C done 18 1839d 1874d 1/1 1640d 1d629bf9b576 net: erspan: fix use-after-free
KASAN: slab-out-of-bounds Read in erspan_build_header C done 8 1838d 1874d 1/1 1640d d93fb604c079 tipc: fix modprobe tipc failed after switch order of device registration
WARNING in notify_change C done 14 1803d 1868d 1/1 1640d 2c5462425563 Abort file_remove_privs() for non-reg. files
KASAN: use-after-free Read in tcp_init_tso_segs C 1424 1711d 1722d 1/1 1698d f1dcc5ed4bea tcp: Reset send_head when removing skb from write-queue