syzbot

 sign-in | mailing list | source | docs
🐞 Open [825]
🐞 Fixed [84]
🐞 Invalid [1039]
Missing Backports [127]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
💬 Send us feedback

Title Rank 🛈 Repro Cause bisect Fix bisect Count Last Reported Patched Closed Patch
kernel BUG in pskb_expand_head (2) origin:lts-only -1 C done 7 51d 84d 2/3 never 4dba44333a11 bpf, sockmap: Fix panic when calling skb_linearize
KASAN: use-after-free Write in xfs_trans_committed_bulk origin:lts-only 24 C done 43 121d 943d 0/3 never xfs: fix super block buf log item UAF during force shutdown
WARNING in smsusb_start_streaming/usb_submit_urb origin:upstream -1 C done 3 55d 147d 2/3 never ffa551a30da6 usb: core: usb_submit_urb: downgrade type check
WARNING in udf_process_sequence origin:lts-only -1 C done 4 46d 54d 2/3 never dc83df485f44 udf: Verify partition map count
possible deadlock in __blockdev_direct_IO origin:upstream 4 C done 24 54d 333d 2/3 never 03b40bf5d038 fs/buffer: fix use-after-free when call bh_read() helper
BUG: unable to handle kernel paging request in preempt_schedule_irq origin:upstream 8 C done 21 45d 165d 2/3 never 03b40bf5d038 fs/buffer: fix use-after-free when call bh_read() helper
UBSAN: shift-out-of-bounds in pcl726_attach origin:upstream -1 C done 19 43d 94d 2/3 never bab220b0bb5a comedi: pcl726: Prevent invalid irq number
KASAN: use-after-free Read in remove_wait_queue 19 C done 25 47d 69d 2/3 never d85fac8729c9 comedi: fix race between polling and detaching
UBSAN: shift-out-of-bounds in aio_iiro_16_attach origin:lts-only -1 C done 29 47d 81d 2/3 never c593215385f0 comedi: aio_iiro_16: Fix bit shift out of bounds
KASAN: use-after-free Write in diWrite origin:upstream 24 C done 22 73d 385d 3/3 31d f98bf80b20f4 jfs: fix null ptr deref in dtInsertEntry
WARNING in ath6kl_bmi_get_target_info origin:upstream -1 C done 18 93d 328d 3/3 60d 46b47d4b06fa wifi: ath6kl: remove WARN on bad firmware input
WARNING in ext4_iomap_begin origin:upstream -1 C done 8 123d 157d 3/3 88d a597a609bfd4 ext4: ensure i_size is smaller than maxbytes
KASAN: use-after-free Write in ext4_insert_dentry origin:upstream 24 C done 4 164d 315d 3/3 130d 2883e9e74f73 ext4: fix off-by-one error in do_split
possible deadlock in j1939_sk_queue_drop_all origin:upstream missing-backport 4 C done 7 187d 804d 3/3 155d 44f48eb9a605 mm: resolve faulty mmap_region() error path behaviour
KASAN: use-after-free Read in __ocfs2_find_path origin:upstream 19 C done 11 193d 370d 3/3 158d 17c99ab3db2b ocfs2: validate l_tree_depth to avoid out-of-bounds access
UBSAN: array-index-out-of-bounds in xtSearch (2) origin:lts-only 15 C done 115 208d 705d 3/3 161d a1166e98d80c jfs: define xtree root and page independently
KASAN: use-after-free Read in ocfs2_search_dirblock 19 C done 8 218d 248d 3/3 182d 03b605ac1e5b ocfs2: check dir i_size in ocfs2_find_entry
possible deadlock in team_port_change_check origin:upstream 4 C done 52 220d 557d 3/3 186d bd099a2fa9be team: prevent adding a device which is already a team device lower
KASAN: use-after-free Read in ocfs2_lock_global_qf origin:lts-only 19 C done 4 270d 271d 3/3 238d f44e6d70c100 ocfs2: fix slab-use-after-free due to dangling pointer dqi_priv
INFO: task hung in do_rmdir origin:lts-only 1 C done 5 289d 312d 3/3 253d 28c21f0ac529 exfat: fix the infinite loop in exfat_readdir()
WARNING in nilfs_rmdir origin:lts-only -1 C done 4 292d 299d 3/3 253d 912188316a8c nilfs2: prevent use of deleted inode
WARNING in netdev_queue_update_kobjects (2) origin:upstream -1 C done 303 300d 343d 3/3 258d a9584c897d1c Bluetooth: fix use-after-free in device_for_each_child()
WARNING: locking bug in ext4_ioctl 4 C done 251 301d 854d 3/3 260d 48c335245371 locking/lockdep: Avoid creating new name string literals in lockdep_set_subclass()
UBSAN: array-index-out-of-bounds in dbAdjTree origin:lts-only 15 C done 7 301d 340d 3/3 261d a3d408870bc1 jfs: add a check to prevent array-index-out-of-bounds in dbAdjTree
possible deadlock in mi_read origin:upstream missing-backport 4 C done 827 336d 941d 3/3 292d 47e8a17491e3 fs/ntfs3: Fix possible deadlock in mi_read
WARNING in cfg80211_wext_siwgenie origin:lts-only -1 C done 316 358d 401d 3/3 317d e0f67494957f Revert "wifi: cfg80211: check wiphy mutex is held for wdev mutex"
WARNING in rcu_sync_dtor origin:upstream -1 C done 157 358d 441d 3/3 318d fbb177bc1d64 ext4: don't set SB_RDONLY after filesystem errors
UBSAN: array-index-out-of-bounds in dbSplit 15 C done 9 360d 372d 3/3 326d 25d2a3ff02f2 jfs: check if leafidx greater than num leaves per dmap tree
UBSAN: array-index-out-of-bounds in dbNextAG origin:upstream 15 C done 4 367d 460d 3/3 330d ead825332785 jfs: fix out-of-bounds in dbNextAG() and diAlloc()
WARNING: bad unlock balance in ocfs2_read_blocks origin:upstream 4 C done 10 368d 388d 3/3 333d f55a33fe0fb5 ocfs2: remove unreasonable unlock in ocfs2_read_blocks
general protection fault in ima_post_path_mknod origin:lts-only 2 C done 5 368d 369d 3/3 333d 4a1d95fc9706 udf: Don't return bh from udf_expand_dir_adinicb()
KASAN: use-after-free Read in ext4_search_dir 19 C done 5 369d 847d 3/3 336d be2e9b111e27 ext4: avoid OOB when system.data xattr changes underneath the filesystem
KASAN: use-after-free Read in try_to_wake_up 19 C done 71 386d 842d 3/3 354d 06afce714d87 nilfs2: fix potential hang in nilfs_detach_log_writer()
WARNING in skb_checksum_help origin:upstream missing-backport -1 C done 3337 412d 855d 3/3 367d 27874ca77bd2 net: missing check virtio
possible deadlock in rds_wake_sk_sleep origin:upstream missing-backport 4 C done 1 416d 858d 3/3 375d 124f20c5f6e5 net:rds: Fix possible deadlock in rds_message_put
possible deadlock in hfsplus_file_extend missing-backport origin:lts-only 4 C done 3439 417d 944d 3/3 382d 603d064d406a hfsplus: fix to avoid false alarm of circular locking
UBSAN: array-index-out-of-bounds in diFree origin:upstream missing-backport 15 C done 13 421d 467d 3/3 386d 63f7fdf733ad jfs: Fix array-index-out-of-bounds in diFree
possible deadlock in local_lock_acquire origin:upstream missing-backport 4 C done 54 419d 561d 3/3 386d d240b789dded mm: mmap_lock: replace get_memcg_path_buf() with on-stack buffer
possible deadlock in __lock_task_sighand origin:upstream 4 C done 108 423d 575d 3/3 391d d240b789dded mm: mmap_lock: replace get_memcg_path_buf() with on-stack buffer
WARNING in perf_event_release_kernel origin:upstream -1 C done 1 426d 655d 3/3 393d 9ad46f1fef42 perf: Fix event leak upon exec and file release
kernel BUG in __block_write_begin_int -1 C done 3 449d 449d 3/3 408d 7000b438dda9 nilfs2: fix kernel bug on rename operation of broken directory
KASAN: use-after-free Read in nilfs_set_link 19 C done 1 449d 449d 3/3 408d 7000b438dda9 nilfs2: fix kernel bug on rename operation of broken directory
kernel BUG in f2fs_vm_page_mkwrite origin:upstream -1 C done 3 453d 495d 3/3 410d 70f5ef5f33c3 f2fs: fix return value of f2fs_convert_inline_inode()
WARNING in ieee80211_check_rate_mask origin:lts-only -1 C done 29 420d 531d 3/3 417d badabac392d3 wifi: mac80211: check basic rates validity
SYZFAIL: clone failed origin:lts-only -1 syz done 1 499d 621d 3/3 424d f0f1bd244a85 perf/core: Fix missing wakeup when waiting for context reference
WARNING in hid_output_report origin:lts-only -1 C done 8 468d 469d 3/3 429d 8bac61934cd5 HID: core: remove unnecessary WARN_ON() in implement()
possible deadlock in sock_hash_update_common origin:upstream 4 C done 1 506d 506d 3/3 466d 11e8ecc5b860 bpf: Allow delete from sockmap/sockhash only if update is allowed
WARNING in sock_hash_delete_elem -1 C done 987 548d 575d 3/3 511d d1e73fb19a4c bpf, sockmap: Prevent lock inversion deadlock in map delete elem
possible deadlock in scheduler_tick 4 C done 162 548d 573d 3/3 512d d1e73fb19a4c bpf, sockmap: Prevent lock inversion deadlock in map delete elem
WARNING in sock_map_delete_elem -1 C done 1015 548d 575d 3/3 513d d1e73fb19a4c bpf, sockmap: Prevent lock inversion deadlock in map delete elem
WARNING in sock_map_unref -1 C done 18 548d 551d 3/3 515d d1e73fb19a4c bpf, sockmap: Prevent lock inversion deadlock in map delete elem
possible deadlock in hrtimer_run_queues 4 C done 20 548d 574d 3/3 517d d1e73fb19a4c bpf, sockmap: Prevent lock inversion deadlock in map delete elem
WARNING: proc registration bug in scsi_host_alloc origin:lts-only -1 C inconclusive 28 556d 921d 3/3 548d cea234bb214b scsi: core: Fix unremoved procfs host directory regression
BUG: unable to handle kernel paging request in bpf_probe_read_kernel_str origin:upstream 8 C done 1 582d 615d 3/3 550d e8a67fe34b76 x86/mm: Disallow vsyscall page read for copy_from_kernel_nofault()
BUG: unable to handle kernel paging request in copy_from_kernel_nofault origin:upstream 8 C done 2 592d 695d 3/3 561d e8a67fe34b76 x86/mm: Disallow vsyscall page read for copy_from_kernel_nofault()
KASAN: use-after-free Read in unix_stream_read_actor origin:lts-only 19 C done 1 698d 699d 3/3 667d 75bcfc188abf af_unix: fix use-after-free in unix_stream_read_actor()
INFO: task hung in xfs_buf_delwri_pushbuf origin:lts-only 1 C done 30 707d 941d 3/3 675d 8d0baec78e8a xfs: fix intermittent hang during quotacheck
general protection fault in inherit_task_group origin:upstream 2 C done 4 708d 714d 3/3 675d 21b07a2e6095 perf/core: Fix potential NULL deref
WARNING in isotp_tx_timer_handler -1 C done 3 709d 913d 3/3 677d e163ad6a8639 can: isotp: add local echo tx processing and tx without FC
UBSAN: shift-out-of-bounds in extAlloc origin:upstream -1 C done 217 754d 946d 3/3 722d 8f994b830dd0 jfs: validate max amount of blocks before allocation.
possible deadlock in exfat_iterate origin:upstream 4 C done 81 792d 925d 3/3 735d 1c33ca1e1974 exfat: release s_lock before calling dir_emit()
KASAN: null-ptr-deref Write in get_block origin:upstream missing-backport 12 C done 2 801d 847d 3/3 739d afd9a31b5aa4 fs/sysv: Null check to prevent null-ptr-deref bug
possible deadlock in hugetlbfs_file_mmap origin:lts-only 4 C done 242 807d 945d 3/3 743d d0eb4917f4d3 sched/cpuset: Bring back cpuset_mutex
INFO: task hung in drop_current_rng origin:lts-only 1 C done 307 811d 944d 3/3 743d f5634d21541e hwrng: virtio - don't wait on cleanup
WARNING in corrupted -1 C done 3 822d 936d 3/3 748d 784a8027b8ac media: usb: siano: Fix warning due to null work_func_t function pointer
WARNING in usbnet_start_xmit/usb_submit_urb -1 C done 2 824d 880d 3/3 748d 27d0f755d649 net: usbnet: Fix WARNING in usbnet_start_xmit/usb_submit_urb
UBSAN: shift-out-of-bounds in dbFree origin:upstream -1 C done 1 833d 894d 3/3 752d de984faecddb jfs: jfs_dmap: Validate db_l2nbperpage while mounting
WARNING in nilfs_btree_assign -1 C done 26 844d 919d 3/3 792d b12011cea56b nilfs2: fix buffer corruption due to concurrent device reads
BUG: unable to handle kernel paging request in ext4_acquire_dquot origin:lts-only 8 C done 2 844d 880d 3/3 798d 32c2f51fffec quota: Properly disable quotas when add_dquot_ref() fails
BUG: unable to handle kernel NULL pointer dereference in hdr_find_e origin:lts-only 10 C done 8 848d 933d 3/3 801d 333feb7ba84f fs/ntfs3: Check fields while reading
WARNING in nilfs_segctor_do_construct -1 C done 2 855d 876d 3/3 813d 4357336192ed nilfs2: fix possible out-of-bounds segment allocation in resize ioctl
possible deadlock in ext4_xattr_set_handle 4 C done 42 855d 948d 3/3 816d bdbfbb7d5057 ext4: add EA_INODE checking to ext4_iget()
general protection fault in gfs2_evict_inode 8 C done 4 860d 911d 3/3 826d fd8b4e28f400 gfs2: Don't deref jdesc in evict
WARNING: bad unlock balance in l2cap_bredr_sig_cmd origin:lts-only 4 C done 5 871d 902d 3/3 837d 116b9c002c89 Bluetooth: L2CAP: fix "bad unlock balance" in l2cap_disconnect_rsp
possible deadlock in sys_quotactl_fd origin:upstream 4 C done 167 870d 920d 3/3 837d 1de53f2223eb ext4: fix lockdep warning when enabling MMP
WARNING: bad unlock balance in l2cap_recv_frame origin:lts-only 4 C done 5 870d 894d 3/3 837d 116b9c002c89 Bluetooth: L2CAP: fix "bad unlock balance" in l2cap_disconnect_rsp
WARNING in hfsplus_cat_write_inode origin:lts-only -1 C done 9 873d 934d 3/3 837d 37cab61a52d6 fs: hfsplus: remove WARN_ON() from hfsplus_cat_{read,write}_inode()
WARNING: ODEBUG bug in __do_softirq origin:lts-only -1 C done 1 878d 880d 3/3 848d cff0af3d1364 net/sched: sch_ingress: Only create under TC_H_INGRESS
kernel BUG in end_page_writeback origin:lts-only -1 C done 6 887d 937d 3/3 856d 9a7f63283af6 f2fs: fix to avoid use-after-free for cached IPU bio
BUG: unable to handle kernel paging request in sctp_outq_tail 8 C done 2 915d 947d 3/3 883d 667eb99cf7c1 sctp: check send stream number after wait_for_sndbuf
BUG: unable to handle kernel paging request in io_arm_poll_handler 8 C done 11 934d 943d 3/3 897d f4ba55411cc8 io_uring: avoid null-ptr-deref in io_arm_poll_handler
WARNING: refcount bug in qrtr_node_lookup 13 C done 1 939d 939d 3/3 907d b9ba5906c420 net: qrtr: Fix a refcount bug in qrtr_recvmsg()
KASAN: use-after-free Read in hfsplus_releasepage 19 C done 1 946d 946d 3/3 913d 05103d88482d fs: hfsplus: fix UAF issue in hfsplus_put_super
possible deadlock in l2tp_tunnel_register 4 C done 41 945d 948d 3/3 913d f6df58aa15f7 l2tp: Avoid possible recursive deadlock in l2tp_tunnel_register()