KASAN: use-after-free Write in xfs_trans_committed_bulk
origin:lts-only
|
C |
|
done |
42 |
300d |
771d
|
0/3 |
never |
xfs: fix super block buf log item UAF during force shutdown
|
KASAN: use-after-free Read in ocfs2_search_dirblock
|
C |
|
done |
8 |
46d |
76d
|
3/3 |
10d |
03b605ac1e5b
ocfs2: check dir i_size in ocfs2_find_entry
|
possible deadlock in team_port_change_check
origin:upstream
|
C |
|
done |
52 |
48d |
384d
|
3/3 |
14d |
bd099a2fa9be
team: prevent adding a device which is already a team device lower
|
KASAN: use-after-free Read in ocfs2_lock_global_qf
origin:lts-only
|
C |
|
done |
4 |
98d |
98d
|
3/3 |
66d |
f44e6d70c100
ocfs2: fix slab-use-after-free due to dangling pointer dqi_priv
|
INFO: task hung in do_rmdir
origin:lts-only
|
C |
|
done |
5 |
117d |
140d
|
3/3 |
81d |
28c21f0ac529
exfat: fix the infinite loop in exfat_readdir()
|
WARNING in nilfs_rmdir
origin:lts-only
|
C |
|
done |
4 |
119d |
127d
|
3/3 |
81d |
912188316a8c
nilfs2: prevent use of deleted inode
|
WARNING in netdev_queue_update_kobjects (2)
origin:upstream
|
C |
|
done |
303 |
128d |
171d
|
3/3 |
86d |
a9584c897d1c
Bluetooth: fix use-after-free in device_for_each_child()
|
WARNING: locking bug in ext4_ioctl
|
C |
|
done |
251 |
128d |
681d
|
3/3 |
88d |
48c335245371
locking/lockdep: Avoid creating new name string literals in lockdep_set_subclass()
|
UBSAN: array-index-out-of-bounds in dbAdjTree
origin:lts-only
|
C |
|
done |
7 |
129d |
168d
|
3/3 |
89d |
a3d408870bc1
jfs: add a check to prevent array-index-out-of-bounds in dbAdjTree
|
possible deadlock in mi_read
origin:upstream
missing-backport
|
C |
|
done |
827 |
164d |
769d
|
3/3 |
120d |
47e8a17491e3
fs/ntfs3: Fix possible deadlock in mi_read
|
WARNING in cfg80211_wext_siwgenie
origin:lts-only
|
C |
|
done |
316 |
186d |
229d
|
3/3 |
144d |
e0f67494957f
Revert "wifi: cfg80211: check wiphy mutex is held for wdev mutex"
|
WARNING in rcu_sync_dtor
origin:upstream
|
C |
|
done |
157 |
186d |
268d
|
3/3 |
146d |
fbb177bc1d64
ext4: don't set SB_RDONLY after filesystem errors
|
UBSAN: array-index-out-of-bounds in dbSplit
|
C |
|
done |
9 |
188d |
200d
|
3/3 |
153d |
25d2a3ff02f2
jfs: check if leafidx greater than num leaves per dmap tree
|
UBSAN: array-index-out-of-bounds in dbNextAG
origin:upstream
|
C |
|
done |
4 |
195d |
288d
|
3/3 |
158d |
ead825332785
jfs: fix out-of-bounds in dbNextAG() and diAlloc()
|
WARNING: bad unlock balance in ocfs2_read_blocks
origin:upstream
|
C |
|
done |
10 |
196d |
216d
|
3/3 |
161d |
f55a33fe0fb5
ocfs2: remove unreasonable unlock in ocfs2_read_blocks
|
general protection fault in ima_post_path_mknod
origin:lts-only
|
C |
|
done |
5 |
196d |
196d
|
3/3 |
161d |
4a1d95fc9706
udf: Don't return bh from udf_expand_dir_adinicb()
|
KASAN: use-after-free Read in ext4_search_dir
|
C |
|
done |
5 |
197d |
675d
|
3/3 |
164d |
be2e9b111e27
ext4: avoid OOB when system.data xattr changes underneath the filesystem
|
KASAN: use-after-free Read in try_to_wake_up
|
C |
|
done |
71 |
214d |
669d
|
3/3 |
182d |
06afce714d87
nilfs2: fix potential hang in nilfs_detach_log_writer()
|
WARNING in skb_checksum_help
origin:upstream
missing-backport
|
C |
|
done |
3337 |
239d |
683d
|
3/3 |
195d |
27874ca77bd2
net: missing check virtio
|
possible deadlock in rds_wake_sk_sleep
origin:upstream
missing-backport
|
C |
|
done |
1 |
243d |
686d
|
3/3 |
203d |
124f20c5f6e5
net:rds: Fix possible deadlock in rds_message_put
|
possible deadlock in hfsplus_file_extend
missing-backport
origin:lts-only
|
C |
|
done |
3439 |
245d |
772d
|
3/3 |
210d |
603d064d406a
hfsplus: fix to avoid false alarm of circular locking
|
UBSAN: array-index-out-of-bounds in diFree
origin:upstream
missing-backport
|
C |
|
done |
13 |
249d |
295d
|
3/3 |
213d |
63f7fdf733ad
jfs: Fix array-index-out-of-bounds in diFree
|
possible deadlock in local_lock_acquire
origin:upstream
missing-backport
|
C |
|
done |
54 |
247d |
389d
|
3/3 |
213d |
d240b789dded
mm: mmap_lock: replace get_memcg_path_buf() with on-stack buffer
|
possible deadlock in __lock_task_sighand
origin:upstream
|
C |
|
done |
108 |
251d |
402d
|
3/3 |
219d |
d240b789dded
mm: mmap_lock: replace get_memcg_path_buf() with on-stack buffer
|
WARNING in perf_event_release_kernel
origin:upstream
|
C |
|
done |
1 |
254d |
483d
|
3/3 |
221d |
9ad46f1fef42
perf: Fix event leak upon exec and file release
|
kernel BUG in __block_write_begin_int
|
C |
|
done |
3 |
277d |
277d
|
3/3 |
236d |
7000b438dda9
nilfs2: fix kernel bug on rename operation of broken directory
|
KASAN: use-after-free Read in nilfs_set_link
|
C |
|
done |
1 |
277d |
277d
|
3/3 |
236d |
7000b438dda9
nilfs2: fix kernel bug on rename operation of broken directory
|
kernel BUG in f2fs_vm_page_mkwrite
origin:upstream
|
C |
|
done |
3 |
281d |
322d
|
3/3 |
238d |
70f5ef5f33c3
f2fs: fix return value of f2fs_convert_inline_inode()
|
WARNING in ieee80211_check_rate_mask
origin:lts-only
|
C |
|
done |
29 |
248d |
359d
|
3/3 |
245d |
badabac392d3
wifi: mac80211: check basic rates validity
|
SYZFAIL: clone failed
origin:lts-only
|
syz |
|
done |
1 |
326d |
449d
|
3/3 |
252d |
f0f1bd244a85
perf/core: Fix missing wakeup when waiting for context reference
|
WARNING in hid_output_report
origin:lts-only
|
C |
|
done |
8 |
296d |
296d
|
3/3 |
257d |
8bac61934cd5
HID: core: remove unnecessary WARN_ON() in implement()
|
possible deadlock in sock_hash_update_common
origin:upstream
|
C |
|
done |
1 |
333d |
333d
|
3/3 |
294d |
11e8ecc5b860
bpf: Allow delete from sockmap/sockhash only if update is allowed
|
WARNING in sock_hash_delete_elem
|
C |
|
done |
987 |
376d |
402d
|
3/3 |
339d |
d1e73fb19a4c
bpf, sockmap: Prevent lock inversion deadlock in map delete elem
|
possible deadlock in scheduler_tick
|
C |
|
done |
162 |
376d |
400d
|
3/3 |
340d |
d1e73fb19a4c
bpf, sockmap: Prevent lock inversion deadlock in map delete elem
|
WARNING in sock_map_delete_elem
|
C |
|
done |
1015 |
376d |
402d
|
3/3 |
341d |
d1e73fb19a4c
bpf, sockmap: Prevent lock inversion deadlock in map delete elem
|
WARNING in sock_map_unref
|
C |
|
done |
18 |
376d |
378d
|
3/3 |
342d |
d1e73fb19a4c
bpf, sockmap: Prevent lock inversion deadlock in map delete elem
|
possible deadlock in hrtimer_run_queues
|
C |
|
done |
20 |
376d |
402d
|
3/3 |
345d |
d1e73fb19a4c
bpf, sockmap: Prevent lock inversion deadlock in map delete elem
|
WARNING: proc registration bug in scsi_host_alloc
origin:lts-only
|
C |
|
inconclusive |
28 |
384d |
749d
|
3/3 |
376d |
cea234bb214b
scsi: core: Fix unremoved procfs host directory regression
|
BUG: unable to handle kernel paging request in bpf_probe_read_kernel_str
origin:upstream
|
C |
|
done |
1 |
409d |
443d
|
3/3 |
378d |
e8a67fe34b76
x86/mm: Disallow vsyscall page read for copy_from_kernel_nofault()
|
BUG: unable to handle kernel paging request in copy_from_kernel_nofault
origin:upstream
|
C |
|
done |
2 |
419d |
522d
|
3/3 |
389d |
e8a67fe34b76
x86/mm: Disallow vsyscall page read for copy_from_kernel_nofault()
|
KASAN: use-after-free Read in unix_stream_read_actor
origin:lts-only
|
C |
|
done |
1 |
526d |
527d
|
3/3 |
494d |
75bcfc188abf
af_unix: fix use-after-free in unix_stream_read_actor()
|
INFO: task hung in xfs_buf_delwri_pushbuf
origin:lts-only
|
C |
|
done |
30 |
535d |
768d
|
3/3 |
502d |
8d0baec78e8a
xfs: fix intermittent hang during quotacheck
|
general protection fault in inherit_task_group
origin:upstream
|
C |
|
done |
4 |
536d |
541d
|
3/3 |
502d |
21b07a2e6095
perf/core: Fix potential NULL deref
|
WARNING in isotp_tx_timer_handler
|
C |
|
done |
3 |
536d |
740d
|
3/3 |
505d |
e163ad6a8639
can: isotp: add local echo tx processing and tx without FC
|
UBSAN: shift-out-of-bounds in extAlloc
origin:upstream
|
C |
|
done |
217 |
582d |
774d
|
3/3 |
549d |
8f994b830dd0
jfs: validate max amount of blocks before allocation.
|
possible deadlock in exfat_iterate
origin:upstream
|
C |
|
done |
81 |
620d |
753d
|
3/3 |
563d |
1c33ca1e1974
exfat: release s_lock before calling dir_emit()
|
KASAN: null-ptr-deref Write in get_block
origin:upstream
missing-backport
|
C |
|
done |
2 |
628d |
674d
|
3/3 |
566d |
afd9a31b5aa4
fs/sysv: Null check to prevent null-ptr-deref bug
|
possible deadlock in hugetlbfs_file_mmap
origin:lts-only
|
C |
|
done |
242 |
634d |
773d
|
3/3 |
571d |
d0eb4917f4d3
sched/cpuset: Bring back cpuset_mutex
|
INFO: task hung in drop_current_rng
origin:lts-only
|
C |
|
done |
307 |
638d |
772d
|
3/3 |
571d |
f5634d21541e
hwrng: virtio - don't wait on cleanup
|
WARNING in corrupted
|
C |
|
done |
3 |
649d |
764d
|
3/3 |
576d |
784a8027b8ac
media: usb: siano: Fix warning due to null work_func_t function pointer
|
WARNING in usbnet_start_xmit/usb_submit_urb
|
C |
|
done |
2 |
651d |
707d
|
3/3 |
576d |
27d0f755d649
net: usbnet: Fix WARNING in usbnet_start_xmit/usb_submit_urb
|
UBSAN: shift-out-of-bounds in dbFree
origin:upstream
|
C |
|
done |
1 |
660d |
722d
|
3/3 |
580d |
de984faecddb
jfs: jfs_dmap: Validate db_l2nbperpage while mounting
|
WARNING in nilfs_btree_assign
|
C |
|
done |
26 |
672d |
746d
|
3/3 |
620d |
b12011cea56b
nilfs2: fix buffer corruption due to concurrent device reads
|
BUG: unable to handle kernel paging request in ext4_acquire_dquot
origin:lts-only
|
C |
|
done |
2 |
672d |
707d
|
3/3 |
626d |
32c2f51fffec
quota: Properly disable quotas when add_dquot_ref() fails
|
BUG: unable to handle kernel NULL pointer dereference in hdr_find_e
origin:lts-only
|
C |
|
done |
8 |
676d |
761d
|
3/3 |
629d |
333feb7ba84f
fs/ntfs3: Check fields while reading
|
WARNING in nilfs_segctor_do_construct
|
C |
|
done |
2 |
682d |
704d
|
3/3 |
641d |
4357336192ed
nilfs2: fix possible out-of-bounds segment allocation in resize ioctl
|
possible deadlock in ext4_xattr_set_handle
|
C |
|
done |
42 |
683d |
776d
|
3/3 |
644d |
bdbfbb7d5057
ext4: add EA_INODE checking to ext4_iget()
|
general protection fault in gfs2_evict_inode
|
C |
|
done |
4 |
687d |
738d
|
3/3 |
654d |
fd8b4e28f400
gfs2: Don't deref jdesc in evict
|
WARNING: bad unlock balance in l2cap_bredr_sig_cmd
origin:lts-only
|
C |
|
done |
5 |
698d |
730d
|
3/3 |
665d |
116b9c002c89
Bluetooth: L2CAP: fix "bad unlock balance" in l2cap_disconnect_rsp
|
possible deadlock in sys_quotactl_fd
origin:upstream
|
C |
|
done |
167 |
698d |
747d
|
3/3 |
665d |
1de53f2223eb
ext4: fix lockdep warning when enabling MMP
|
WARNING: bad unlock balance in l2cap_recv_frame
origin:lts-only
|
C |
|
done |
5 |
698d |
722d
|
3/3 |
665d |
116b9c002c89
Bluetooth: L2CAP: fix "bad unlock balance" in l2cap_disconnect_rsp
|
WARNING in hfsplus_cat_write_inode
origin:lts-only
|
C |
|
done |
9 |
701d |
762d
|
3/3 |
665d |
37cab61a52d6
fs: hfsplus: remove WARN_ON() from hfsplus_cat_{read,write}_inode()
|
WARNING: ODEBUG bug in __do_softirq
origin:lts-only
|
C |
|
done |
1 |
706d |
708d
|
3/3 |
675d |
cff0af3d1364
net/sched: sch_ingress: Only create under TC_H_INGRESS
|
kernel BUG in end_page_writeback
origin:lts-only
|
C |
|
done |
6 |
715d |
765d
|
3/3 |
684d |
9a7f63283af6
f2fs: fix to avoid use-after-free for cached IPU bio
|
BUG: unable to handle kernel paging request in sctp_outq_tail
|
C |
|
done |
2 |
743d |
774d
|
3/3 |
711d |
667eb99cf7c1
sctp: check send stream number after wait_for_sndbuf
|
BUG: unable to handle kernel paging request in io_arm_poll_handler
|
C |
|
done |
11 |
762d |
771d
|
3/3 |
725d |
f4ba55411cc8
io_uring: avoid null-ptr-deref in io_arm_poll_handler
|
WARNING: refcount bug in qrtr_node_lookup
|
C |
|
done |
1 |
767d |
767d
|
3/3 |
735d |
b9ba5906c420
net: qrtr: Fix a refcount bug in qrtr_recvmsg()
|
KASAN: use-after-free Read in hfsplus_releasepage
|
C |
|
done |
1 |
774d |
774d
|
3/3 |
741d |
05103d88482d
fs: hfsplus: fix UAF issue in hfsplus_put_super
|
possible deadlock in l2tp_tunnel_register
|
C |
|
done |
41 |
773d |
776d
|
3/3 |
741d |
f6df58aa15f7
l2tp: Avoid possible recursive deadlock in l2tp_tunnel_register()
|