syzbot

 sign-in | mailing list | source | docs
🐞 Open [735]
🐞 Fixed [51]
🐞 Invalid [496]
Missing Backports [58]
Kernel Health Bugs/Month Bug Lifetimes Fuzzing Crashes
💬 Send us feedback

Title Repro Cause bisect Fix bisect Count Last Reported Patched Closed Patch
KASAN: use-after-free Write in xfs_trans_committed_bulk origin:lts-only C done 42 103d 573d 0/3 never xfs: fix super block buf log item UAF during force shutdown
possible deadlock in rds_wake_sk_sleep origin:upstream missing-backport C done 1 46d 489d 3/3 5d20h 124f20c5f6e5 net:rds: Fix possible deadlock in rds_message_put
possible deadlock in hfsplus_file_extend missing-backport origin:lts-only C done 3439 48d 574d 3/3 12d 603d064d406a hfsplus: fix to avoid false alarm of circular locking
UBSAN: array-index-out-of-bounds in diFree origin:upstream missing-backport C done 13 51d 97d 3/3 16d 63f7fdf733ad jfs: Fix array-index-out-of-bounds in diFree
possible deadlock in local_lock_acquire origin:upstream missing-backport C done 54 49d 191d 3/3 16d d240b789dded mm: mmap_lock: replace get_memcg_path_buf() with on-stack buffer
possible deadlock in __lock_task_sighand origin:upstream C done 108 54d 205d 3/3 22d d240b789dded mm: mmap_lock: replace get_memcg_path_buf() with on-stack buffer
WARNING in perf_event_release_kernel origin:upstream C done 1 56d 285d 3/3 23d 9ad46f1fef42 perf: Fix event leak upon exec and file release
kernel BUG in __block_write_begin_int C done 3 80d 80d 3/3 38d 7000b438dda9 nilfs2: fix kernel bug on rename operation of broken directory
KASAN: use-after-free Read in nilfs_set_link C done 1 80d 80d 3/3 38d 7000b438dda9 nilfs2: fix kernel bug on rename operation of broken directory
kernel BUG in f2fs_vm_page_mkwrite origin:upstream C done 3 83d 125d 3/3 40d 70f5ef5f33c3 f2fs: fix return value of f2fs_convert_inline_inode()
WARNING in ieee80211_check_rate_mask origin:lts-only C done 29 50d 161d 3/3 48d badabac392d3 wifi: mac80211: check basic rates validity
SYZFAIL: clone failed origin:lts-only syz done 1 129d 251d 3/3 54d f0f1bd244a85 perf/core: Fix missing wakeup when waiting for context reference
WARNING in hid_output_report origin:lts-only C done 8 99d 99d 3/3 59d 8bac61934cd5 HID: core: remove unnecessary WARN_ON() in implement()
possible deadlock in sock_hash_update_common origin:upstream C done 1 136d 136d 3/3 96d 11e8ecc5b860 bpf: Allow delete from sockmap/sockhash only if update is allowed
WARNING in sock_hash_delete_elem C done 987 178d 205d 3/3 141d d1e73fb19a4c bpf, sockmap: Prevent lock inversion deadlock in map delete elem
possible deadlock in scheduler_tick C done 162 178d 203d 3/3 142d d1e73fb19a4c bpf, sockmap: Prevent lock inversion deadlock in map delete elem
WARNING in sock_map_delete_elem C done 1015 178d 205d 3/3 143d d1e73fb19a4c bpf, sockmap: Prevent lock inversion deadlock in map delete elem
WARNING in sock_map_unref C done 18 178d 181d 3/3 145d d1e73fb19a4c bpf, sockmap: Prevent lock inversion deadlock in map delete elem
possible deadlock in hrtimer_run_queues C done 20 179d 204d 3/3 148d d1e73fb19a4c bpf, sockmap: Prevent lock inversion deadlock in map delete elem
WARNING: proc registration bug in scsi_host_alloc origin:lts-only C inconclusive 28 187d 552d 3/3 178d cea234bb214b scsi: core: Fix unremoved procfs host directory regression
BUG: unable to handle kernel paging request in bpf_probe_read_kernel_str origin:upstream C done 1 212d 245d 3/3 180d e8a67fe34b76 x86/mm: Disallow vsyscall page read for copy_from_kernel_nofault()
BUG: unable to handle kernel paging request in copy_from_kernel_nofault origin:upstream C done 2 222d 325d 3/3 191d e8a67fe34b76 x86/mm: Disallow vsyscall page read for copy_from_kernel_nofault()
KASAN: use-after-free Read in unix_stream_read_actor origin:lts-only C done 1 328d 330d 3/3 297d 75bcfc188abf af_unix: fix use-after-free in unix_stream_read_actor()
INFO: task hung in xfs_buf_delwri_pushbuf origin:lts-only C done 30 337d 571d 3/3 305d 8d0baec78e8a xfs: fix intermittent hang during quotacheck
general protection fault in inherit_task_group origin:upstream C done 4 339d 344d 3/3 305d 21b07a2e6095 perf/core: Fix potential NULL deref
WARNING in isotp_tx_timer_handler C done 3 339d 543d 3/3 308d e163ad6a8639 can: isotp: add local echo tx processing and tx without FC
UBSAN: shift-out-of-bounds in extAlloc origin:upstream C done 217 384d 576d 3/3 352d 8f994b830dd0 jfs: validate max amount of blocks before allocation.
possible deadlock in exfat_iterate origin:upstream C done 81 422d 555d 3/3 365d 1c33ca1e1974 exfat: release s_lock before calling dir_emit()
KASAN: null-ptr-deref Write in get_block origin:upstream missing-backport C done 2 431d 477d 3/3 369d afd9a31b5aa4 fs/sysv: Null check to prevent null-ptr-deref bug
possible deadlock in hugetlbfs_file_mmap origin:lts-only C done 242 437d 576d 3/3 373d d0eb4917f4d3 sched/cpuset: Bring back cpuset_mutex
INFO: task hung in drop_current_rng origin:lts-only C done 307 441d 574d 3/3 374d f5634d21541e hwrng: virtio - don't wait on cleanup
WARNING in corrupted C done 3 452d 566d 3/3 378d 784a8027b8ac media: usb: siano: Fix warning due to null work_func_t function pointer
WARNING in usbnet_start_xmit/usb_submit_urb C done 2 454d 510d 3/3 378d 27d0f755d649 net: usbnet: Fix WARNING in usbnet_start_xmit/usb_submit_urb
UBSAN: shift-out-of-bounds in dbFree origin:upstream C done 1 463d 525d 3/3 382d de984faecddb jfs: jfs_dmap: Validate db_l2nbperpage while mounting
WARNING in nilfs_btree_assign C done 26 474d 549d 3/3 422d b12011cea56b nilfs2: fix buffer corruption due to concurrent device reads
BUG: unable to handle kernel paging request in ext4_acquire_dquot origin:lts-only C done 2 475d 510d 3/3 428d 32c2f51fffec quota: Properly disable quotas when add_dquot_ref() fails
BUG: unable to handle kernel NULL pointer dereference in hdr_find_e origin:lts-only C done 8 478d 564d 3/3 431d 333feb7ba84f fs/ntfs3: Check fields while reading
WARNING in nilfs_segctor_do_construct C done 2 485d 506d 3/3 443d 4357336192ed nilfs2: fix possible out-of-bounds segment allocation in resize ioctl
possible deadlock in ext4_xattr_set_handle C done 42 486d 578d 3/3 446d bdbfbb7d5057 ext4: add EA_INODE checking to ext4_iget()
general protection fault in gfs2_evict_inode C done 4 490d 541d 3/3 456d fd8b4e28f400 gfs2: Don't deref jdesc in evict
WARNING: bad unlock balance in l2cap_bredr_sig_cmd origin:lts-only C done 5 501d 533d 3/3 467d 116b9c002c89 Bluetooth: L2CAP: fix "bad unlock balance" in l2cap_disconnect_rsp
possible deadlock in sys_quotactl_fd origin:upstream C done 167 501d 550d 3/3 467d 1de53f2223eb ext4: fix lockdep warning when enabling MMP
WARNING: bad unlock balance in l2cap_recv_frame origin:lts-only C done 5 501d 524d 3/3 467d 116b9c002c89 Bluetooth: L2CAP: fix "bad unlock balance" in l2cap_disconnect_rsp
WARNING in hfsplus_cat_write_inode origin:lts-only C done 9 503d 564d 3/3 467d 37cab61a52d6 fs: hfsplus: remove WARN_ON() from hfsplus_cat_{read,write}_inode()
WARNING: ODEBUG bug in __do_softirq origin:lts-only C done 1 508d 510d 3/3 478d cff0af3d1364 net/sched: sch_ingress: Only create under TC_H_INGRESS
kernel BUG in end_page_writeback origin:lts-only C done 6 517d 567d 3/3 486d 9a7f63283af6 f2fs: fix to avoid use-after-free for cached IPU bio
BUG: unable to handle kernel paging request in sctp_outq_tail C done 2 546d 577d 3/3 514d 667eb99cf7c1 sctp: check send stream number after wait_for_sndbuf
BUG: unable to handle kernel paging request in io_arm_poll_handler C done 11 564d 574d 3/3 527d f4ba55411cc8 io_uring: avoid null-ptr-deref in io_arm_poll_handler
WARNING: refcount bug in qrtr_node_lookup C done 1 569d 569d 3/3 538d b9ba5906c420 net: qrtr: Fix a refcount bug in qrtr_recvmsg()
KASAN: use-after-free Read in hfsplus_releasepage C done 1 576d 576d 3/3 543d 05103d88482d fs: hfsplus: fix UAF issue in hfsplus_put_super
possible deadlock in l2tp_tunnel_register C done 41 575d 578d 3/3 543d f6df58aa15f7 l2tp: Avoid possible recursive deadlock in l2tp_tunnel_register()