syzbot

 sign-in | mailing list | source | docs
🐞 Open [852]
🐞 Fixed [87]
🐞 Invalid [1267]
Missing Backports [132]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
💬 Send us feedback

Title Rank 🛈 Repro Cause bisect Fix bisect Count Last Reported Patched Closed Patch
kernel BUG in pskb_expand_head (2) origin:lts-only -1 C done 7 230d 263d 2/3 never 5ca2e29f6834 bpf, sockmap: Fix panic when calling skb_linearize
UBSAN: shift-out-of-bounds in aio_iiro_16_attach origin:lts-only -1 C done 29 226d 260d 2/3 never 66acb1586737 comedi: aio_iiro_16: Fix bit shift out of bounds
WARNING in smsusb_start_streaming/usb_submit_urb origin:upstream -1 C done 3 234d 326d 2/3 never 503bbde34cc3 usb: core: usb_submit_urb: downgrade type check
WARNING in udf_process_sequence origin:lts-only -1 C done 4 225d 232d 2/3 never 1a11201668e8 udf: Verify partition map count
KASAN: use-after-free Read in hdm_disconnect origin:upstream 19 C done 135 160d 589d 2/3 never 4b1270902609 most: usb: Fix use-after-free in hdm_disconnect
possible deadlock in __blockdev_direct_IO origin:upstream 4 C done 24 233d 512d 2/3 never 7375f22495e7 fs/buffer: fix use-after-free when call bh_read() helper
general protection fault in bcsp_recv origin:upstream 8 C done 13 129d 298d 2/3 never ca94b2b036c2 Bluetooth: bcsp: receive data only if registered
UBSAN: shift-out-of-bounds in pcl726_attach origin:upstream -1 C done 19 222d 273d 2/3 never 96cb948408b3 comedi: pcl726: Prevent invalid irq number
KASAN: use-after-free Read in remove_wait_queue 19 C done 25 226d 247d 2/3 never 35b6fc51c666 comedi: fix race between polling and detaching
BUG: unable to handle kernel paging request in preempt_schedule_irq origin:upstream 8 C done 21 223d 344d 2/3 never 7375f22495e7 fs/buffer: fix use-after-free when call bh_read() helper
KASAN: use-after-free Write in xfs_trans_committed_bulk origin:lts-only 22 C done 43 300d 1122d 0/3 never 575689fc0ffa xfs: fix super block buf log item UAF during force shutdown
possible deadlock in try_to_wake_up origin:upstream 4 C done 49 88d 732d 3/3 80d d240b789dded mm: mmap_lock: replace get_memcg_path_buf() with on-stack buffer
KASAN: use-after-free Write in diWrite origin:upstream 22 C done 22 251d 564d 3/3 210d ce6dede912f0 jfs: fix null ptr deref in dtInsertEntry
WARNING in ath6kl_bmi_get_target_info origin:upstream -1 C done 18 272d 507d 3/3 239d e7417421d893 wifi: ath6kl: remove WARN on bad firmware input
WARNING in ext4_iomap_begin origin:upstream -1 C done 8 302d 336d 3/3 267d 1a77a028a392 ext4: ensure i_size is smaller than maxbytes
KASAN: use-after-free Write in ext4_insert_dentry origin:upstream 22 C done 4 343d 494d 3/3 309d 94824ac9a8aa ext4: fix off-by-one error in do_split
possible deadlock in j1939_sk_queue_drop_all origin:upstream missing-backport 4 C done 7 365d 983d 3/3 333d 5de195060b2e mm: resolve faulty mmap_region() error path behaviour
KASAN: use-after-free Read in __ocfs2_find_path origin:upstream 19 C done 11 372d 549d 3/3 337d a406aff8c051 ocfs2: validate l_tree_depth to avoid out-of-bounds access
UBSAN: array-index-out-of-bounds in xtSearch (2) origin:lts-only 15 C done 115 387d 884d 3/3 340d a779ed754e52 jfs: define xtree root and page independently
KASAN: use-after-free Read in ocfs2_search_dirblock 19 C done 8 397d 427d 3/3 361d b0fce54b8c0d ocfs2: check dir i_size in ocfs2_find_entry
possible deadlock in team_port_change_check origin:upstream 4 C done 52 399d 736d 3/3 365d 3fff5da4ca21 team: prevent adding a device which is already a team device lower
KASAN: use-after-free Read in ocfs2_lock_global_qf origin:lts-only 19 C done 4 449d 449d 3/3 417d 5f3fd772d152 ocfs2: fix slab-use-after-free due to dangling pointer dqi_priv
INFO: task hung in do_rmdir origin:lts-only 1 C done 5 468d 491d 3/3 432d fee873761bd9 exfat: fix the infinite loop in exfat_readdir()
WARNING in nilfs_rmdir origin:lts-only -1 C done 4 471d 478d 3/3 432d 901ce9705fbb nilfs2: prevent use of deleted inode
WARNING in netdev_queue_update_kobjects (2) origin:upstream -1 C done 303 479d 522d 3/3 437d 27aabf27fd01 Bluetooth: fix use-after-free in device_for_each_child()
WARNING: locking bug in ext4_ioctl 4 C done 251 480d 1032d 3/3 439d d7fe143cb115 locking/lockdep: Avoid creating new name string literals in lockdep_set_subclass()
UBSAN: array-index-out-of-bounds in dbAdjTree origin:lts-only 15 C done 7 480d 519d 3/3 440d a174706ba4da jfs: add a check to prevent array-index-out-of-bounds in dbAdjTree
possible deadlock in mi_read origin:upstream missing-backport 4 C done 827 515d 1120d 3/3 471d 47e8a17491e3 fs/ntfs3: Fix possible deadlock in mi_read
WARNING in cfg80211_wext_siwgenie origin:lts-only -1 C done 316 537d 580d 3/3 496d e0f67494957f Revert "wifi: cfg80211: check wiphy mutex is held for wdev mutex"
WARNING in rcu_sync_dtor origin:upstream -1 C done 157 537d 619d 3/3 497d d3476f3dad4a ext4: don't set SB_RDONLY after filesystem errors
UBSAN: array-index-out-of-bounds in dbSplit 15 C done 9 539d 551d 3/3 504d 25d2a3ff02f2 jfs: check if leafidx greater than num leaves per dmap tree
UBSAN: array-index-out-of-bounds in dbNextAG origin:upstream 15 C done 4 546d 639d 3/3 509d e63866a47556 jfs: fix out-of-bounds in dbNextAG() and diAlloc()
WARNING: bad unlock balance in ocfs2_read_blocks origin:upstream 4 C done 10 547d 567d 3/3 512d f55a33fe0fb5 ocfs2: remove unreasonable unlock in ocfs2_read_blocks
general protection fault in ima_post_path_mknod origin:lts-only 2 C done 5 547d 547d 3/3 512d f386c802a6fd udf: Don't return bh from udf_expand_dir_adinicb()
KASAN: use-after-free Read in ext4_search_dir 19 C done 5 548d 1026d 3/3 515d be2e9b111e27 ext4: avoid OOB when system.data xattr changes underneath the filesystem
KASAN: use-after-free Read in try_to_wake_up 19 C done 71 565d 1020d 3/3 533d eb85dace897c nilfs2: fix potential hang in nilfs_detach_log_writer()
WARNING in skb_checksum_help origin:upstream missing-backport -1 C done 3337 591d 1034d 3/3 546d e269d79c7d35 net: missing check virtio
possible deadlock in rds_wake_sk_sleep origin:upstream missing-backport 4 C done 1 595d 1037d 3/3 554d 124f20c5f6e5 net:rds: Fix possible deadlock in rds_message_put
possible deadlock in hfsplus_file_extend missing-backport origin:lts-only 4 C done 3439 596d 1123d 3/3 561d 603d064d406a hfsplus: fix to avoid false alarm of circular locking
UBSAN: array-index-out-of-bounds in diFree origin:upstream missing-backport 15 C done 13 600d 646d 3/3 565d 63f7fdf733ad jfs: Fix array-index-out-of-bounds in diFree
possible deadlock in local_lock_acquire origin:upstream missing-backport 4 C done 54 598d 740d 3/3 565d d240b789dded mm: mmap_lock: replace get_memcg_path_buf() with on-stack buffer
possible deadlock in __lock_task_sighand origin:upstream 4 C done 108 602d 754d 3/3 570d d240b789dded mm: mmap_lock: replace get_memcg_path_buf() with on-stack buffer
WARNING in perf_event_release_kernel origin:upstream -1 C done 1 605d 834d 3/3 572d 3a5465418f5f perf: Fix event leak upon exec and file release
kernel BUG in __block_write_begin_int -1 C done 3 628d 628d 3/3 587d a9e1ddc09ca5 nilfs2: fix kernel bug on rename operation of broken directory
KASAN: use-after-free Read in nilfs_set_link 19 C done 1 628d 628d 3/3 587d a9e1ddc09ca5 nilfs2: fix kernel bug on rename operation of broken directory
kernel BUG in f2fs_vm_page_mkwrite origin:upstream -1 C done 3 632d 673d 3/3 589d 70f5ef5f33c3 f2fs: fix return value of f2fs_convert_inline_inode()
WARNING in ieee80211_check_rate_mask origin:lts-only -1 C done 29 599d 710d 3/3 596d badabac392d3 wifi: mac80211: check basic rates validity
SYZFAIL: clone failed origin:lts-only -1 syz done 1 677d 800d 3/3 603d 74751ef5c191 perf/core: Fix missing wakeup when waiting for context reference
WARNING in hid_output_report origin:lts-only -1 C done 8 647d 648d 3/3 608d 4aa2dcfbad53 HID: core: remove unnecessary WARN_ON() in implement()
possible deadlock in sock_hash_update_common origin:upstream 4 C done 1 685d 685d 3/3 645d 98e948fb60d4 bpf: Allow delete from sockmap/sockhash only if update is allowed
WARNING in sock_hash_delete_elem -1 C done 987 727d 754d 3/3 690d ff9105993240 bpf, sockmap: Prevent lock inversion deadlock in map delete elem
possible deadlock in scheduler_tick 4 C done 162 727d 752d 3/3 691d ff9105993240 bpf, sockmap: Prevent lock inversion deadlock in map delete elem
WARNING in sock_map_delete_elem -1 C done 1015 727d 754d 3/3 692d ff9105993240 bpf, sockmap: Prevent lock inversion deadlock in map delete elem
WARNING in sock_map_unref -1 C done 18 727d 729d 3/3 693d ff9105993240 bpf, sockmap: Prevent lock inversion deadlock in map delete elem
possible deadlock in hrtimer_run_queues 4 C done 20 727d 753d 3/3 696d ff9105993240 bpf, sockmap: Prevent lock inversion deadlock in map delete elem
WARNING: proc registration bug in scsi_host_alloc origin:lts-only -1 C inconclusive 28 735d 1100d 3/3 727d f23a4d6e0757 scsi: core: Fix unremoved procfs host directory regression
BUG: unable to handle kernel paging request in bpf_probe_read_kernel_str origin:upstream 8 C done 1 760d 794d 3/3 729d 32019c659ecf x86/mm: Disallow vsyscall page read for copy_from_kernel_nofault()
BUG: unable to handle kernel paging request in copy_from_kernel_nofault origin:upstream 8 C done 2 771d 874d 3/3 740d 32019c659ecf x86/mm: Disallow vsyscall page read for copy_from_kernel_nofault()
KASAN: use-after-free Read in unix_stream_read_actor origin:lts-only 19 C done 1 877d 878d 3/3 846d 4b7b492615cf af_unix: fix use-after-free in unix_stream_read_actor()
INFO: task hung in xfs_buf_delwri_pushbuf origin:lts-only 1 C done 30 886d 1120d 3/3 854d f0c2d7d2abca xfs: fix intermittent hang during quotacheck
general protection fault in inherit_task_group origin:upstream 2 C done 4 887d 893d 3/3 854d a71ef31485bb perf/core: Fix potential NULL deref
WARNING in isotp_tx_timer_handler -1 C done 3 888d 1091d 3/3 856d e163ad6a8639 can: isotp: add local echo tx processing and tx without FC
UBSAN: shift-out-of-bounds in extAlloc origin:upstream -1 C done 217 933d 1125d 3/3 900d 0225e10972fa jfs: validate max amount of blocks before allocation.
possible deadlock in exfat_iterate origin:upstream 4 C done 81 971d 1104d 3/3 914d ff84772fd45d exfat: release s_lock before calling dir_emit()
KASAN: null-ptr-deref Write in get_block origin:upstream missing-backport 12 C done 2 980d 1025d 3/3 917d ea2b62f30589 fs/sysv: Null check to prevent null-ptr-deref bug
possible deadlock in hugetlbfs_file_mmap origin:lts-only 4 C done 242 985d 1124d 3/3 922d 111cd11bbc54 sched/cpuset: Bring back cpuset_mutex
INFO: task hung in drop_current_rng origin:lts-only 1 C done 307 990d 1123d 3/3 922d 2bb31abdbe55 hwrng: virtio - don't wait on cleanup
WARNING in corrupted -1 C done 3 1001d 1115d 3/3 927d 6f489a966fbe media: usb: siano: Fix warning due to null work_func_t function pointer
WARNING in usbnet_start_xmit/usb_submit_urb -1 C done 2 1003d 1058d 3/3 927d 5e1627cb43dd net: usbnet: Fix WARNING in usbnet_start_xmit/usb_submit_urb
UBSAN: shift-out-of-bounds in dbFree origin:upstream -1 C done 1 1012d 1073d 3/3 931d 11509910c599 jfs: jfs_dmap: Validate db_l2nbperpage while mounting
WARNING in nilfs_btree_assign -1 C done 26 1023d 1098d 3/3 971d 679bd7ebdd31 nilfs2: fix buffer corruption due to concurrent device reads
BUG: unable to handle kernel paging request in ext4_acquire_dquot origin:lts-only 8 C done 2 1023d 1059d 3/3 977d 6a4e3363792e quota: Properly disable quotas when add_dquot_ref() fails
BUG: unable to handle kernel NULL pointer dereference in hdr_find_e origin:lts-only 10 C done 8 1027d 1112d 3/3 980d 0e8235d28f3a fs/ntfs3: Check fields while reading
WARNING in nilfs_segctor_do_construct -1 C done 2 1034d 1055d 3/3 992d fee5eaecca86 nilfs2: fix possible out-of-bounds segment allocation in resize ioctl
possible deadlock in ext4_xattr_set_handle 4 C done 42 1034d 1127d 3/3 995d b3e6bcb94590 ext4: add EA_INODE checking to ext4_iget()
general protection fault in gfs2_evict_inode 8 C done 4 1039d 1090d 3/3 1005d 504a10d9e46b gfs2: Don't deref jdesc in evict
WARNING: bad unlock balance in l2cap_bredr_sig_cmd origin:lts-only 4 C done 5 1049d 1081d 3/3 1016d 25e97f7b1866 Bluetooth: L2CAP: fix "bad unlock balance" in l2cap_disconnect_rsp
possible deadlock in sys_quotactl_fd origin:upstream 4 C done 167 1049d 1099d 3/3 1016d 949f95ff39bf ext4: fix lockdep warning when enabling MMP
WARNING: bad unlock balance in l2cap_recv_frame origin:lts-only 4 C done 5 1049d 1073d 3/3 1016d 25e97f7b1866 Bluetooth: L2CAP: fix "bad unlock balance" in l2cap_disconnect_rsp
WARNING in hfsplus_cat_write_inode origin:lts-only -1 C done 9 1052d 1113d 3/3 1016d 81b21c0f0138 fs: hfsplus: remove WARN_ON() from hfsplus_cat_{read,write}_inode()
WARNING: ODEBUG bug in __do_softirq origin:lts-only -1 C done 1 1057d 1059d 3/3 1027d c7cfbd115001 net/sched: sch_ingress: Only create under TC_H_INGRESS
kernel BUG in end_page_writeback origin:lts-only -1 C done 6 1066d 1116d 3/3 1035d 5cdb422c8391 f2fs: fix to avoid use-after-free for cached IPU bio
BUG: unable to handle kernel paging request in sctp_outq_tail 8 C done 2 1094d 1125d 3/3 1062d 2584024b2355 sctp: check send stream number after wait_for_sndbuf
BUG: unable to handle kernel paging request in io_arm_poll_handler 8 C done 11 1113d 1122d 3/3 1076d f4ba55411cc8 io_uring: avoid null-ptr-deref in io_arm_poll_handler
WARNING: refcount bug in qrtr_node_lookup 13 C done 1 1118d 1118d 3/3 1086d 44d807320000 net: qrtr: Fix a refcount bug in qrtr_recvmsg()
KASAN: use-after-free Read in hfsplus_releasepage 19 C done 1 1125d 1125d 3/3 1092d 07db5e247ab5 fs: hfsplus: fix UAF issue in hfsplus_put_super
possible deadlock in l2tp_tunnel_register 4 C done 41 1124d 1127d 3/3 1092d 9ca5e7ecab06 l2tp: Avoid possible recursive deadlock in l2tp_tunnel_register()