syzbot


Title Rank 🛈 Repro Cause bisect Fix bisect Count Last Reported Patched Closed Patch
UBSAN: shift-out-of-bounds in pcl812_attach origin:upstream -1 C done 11 35d 45d 0/3 never 5bfa301e1e59 comedi: pcl812: Fix bit shift out of bounds
WARNING in comedi_unlocked_ioctl origin:upstream -1 C done 13 37d 47d 3/3 1d12h d4c73ce13f5b comedi: Fail COMEDI_INSNLIST ioctl if n_insns is too large
general protection fault in mcp_i2c_xfer origin:upstream missing-backport 2 C done 32 38d 153d 3/3 6d14h 0499d5d579d4 HID: mcp2221: Set driver data before I2C adapter add
WARNING in format_decode origin:upstream -1 C done 314 46d 649d 3/3 15d 61d5fa45ed13 bpf: Reject %p% format string in bprintf-like helpers
general protection fault in htb_qlen_notify origin:lts-only 2 C done 4 46d 48d 3/3 15d 23c165dde88e net/sched: Abort __tc_modify_qdisc if parent class does not exist
WARNING in ath6kl_bmi_get_target_info -1 C done 20 49d 305d 3/3 16d 89bd133529a4 wifi: ath6kl: remove WARN on bad firmware input
WARNING in dib0700_i2c_xfer/usb_submit_urb origin:upstream -1 C done 3 71d 77d 3/3 37d 6039b8798fc1 mm/uffd: fix vma operation where start addr cuts part of vma
WARNING in ext4_iomap_begin (2) origin:upstream -1 C done 10 73d 158d 3/3 42d 74088456b034 ext4: ensure i_size is smaller than maxbytes
INFO: trying to register non-static key in cfg80211_dev_free origin:lts-only -1 C done 5 79d 128d 3/3 44d b679fe84cd5c wifi: cfg80211: init wiphy_work before allocating rfkill fails
possible deadlock in ocfs2_finish_quota_recovery origin:upstream 4 C done 12 114d 208d 3/3 82d 4c3a0b0b23dd ocfs2: stop quota recovery before disabling quotas
KASAN: use-after-free Read in __ocfs2_find_path 19 C done 5 140d 324d 3/3 106d 81aba693b129 ocfs2: remove unreasonable unlock in ocfs2_read_blocks
WARNING in plfxlc_mac_release origin:upstream missing-backport -1 C inconclusive 2 116d 226d 3/3 110d 93d646911be1 wifi: plfxlc: Remove erroneous assert in plfxlc_mac_release
UBSAN: array-index-out-of-bounds in txCommit (2) origin:lts-only 15 C done 152 125d 661d 3/3 117d 63d956acbfe3 jfs: define xtree root and page independently
UBSAN: shift-out-of-bounds in extAlloc origin:upstream missing-backport -1 C done 204 135d 899d 3/3 117d 63d956acbfe3 jfs: define xtree root and page independently
UBSAN: array-index-out-of-bounds in xtSearch (2) origin:lts-only 15 C done 98 182d 661d 3/3 117d 63d956acbfe3 jfs: define xtree root and page independently
UBSAN: array-index-out-of-bounds in xtInsert origin:lts-only 15 C done 1331 124d 895d 3/3 117d 63d956acbfe3 jfs: define xtree root and page independently
BUG: unable to handle kernel NULL pointer dereference in ntfs_sparse_cluster origin:lts-only 10 C done 375 416d 896d 3/3 152d 406a037d93b7 fs/ntfs3: Change new sparse cluster processing
WARNING in ar5523_submit_rx_cmd/usb_submit_urb origin:upstream missing-backport -1 C done 7 198d 850d 3/3 163d 34f7ebff1b96 wifi: ar5523: enable proper endpoint verification
possible deadlock in team_port_change_check origin:upstream 4 C done 61 196d 513d 3/3 163d adff6ac889e1 team: prevent adding a device which is already a team device lower
KASAN: use-after-free Read in ocfs2_get_next_id origin:lts-only 19 C done 4 226d 227d 3/3 193d 2d4311924863 ocfs2: fix slab-use-after-free due to dangling pointer dqi_priv
kernel BUG in close_ctree origin:upstream missing-backport -1 C done 622 232d 899d 3/3 198d 24789601467c drm/bridge: adv7511_audio: Update Audio InfoFrame properly
INFO: task hung in __fdget_pos (3) origin:lts-only 1 C done 1 237d 240d 3/3 203d 31beabd0f47f exfat: fix the infinite loop in exfat_readdir()
divide error in drm_mode_debug_printmodeline origin:upstream 2 C done 1 248d 712d 3/3 210d 69fbb01e8917 drm/modes: Avoid divide by zero harder in drm_mode_vrefresh()
WARNING in nilfs_rmdir -1 C done 42 249d 272d 3/3 211d ef942d233643 nilfs2: prevent use of deleted inode
WARNING in inet_sock_destruct origin:upstream missing-backport -1 C done 631 255d 869d 3/3 212d 456f08d24afa tcp_bpf: Fix the sk_mem_uncharge logic in tcp_bpf_sendmsg
WARNING in netdev_queue_update_kobjects (2) origin:lts-only -1 C done 344 256d 299d 3/3 214d 0f67ca2a80ac Bluetooth: fix use-after-free in device_for_each_child()
WARNING: locking bug in ext4_move_extents origin:upstream missing-backport 4 C done 1248 257d 810d 3/3 217d be063ffa28bc locking/lockdep: Avoid creating new name string literals in lockdep_set_subclass()
KASAN: slab-out-of-bounds Read in ea_get origin:upstream missing-backport 17 C done 5 259d 817d 3/3 218d 9c356fc32a44 jfs: xattr: check invalid xattr size more strictly
INFO: rcu detected stall in sys_newfstatat origin:upstream 1 C done 8 263d 801d 3/3 220d eff23e59b787 devlink: bump the instance index directly when iterating
UBSAN: shift-out-of-bounds in dbSplit -1 C done 18 282d 499d 3/3 230d 51a203470f50 jfs: fix shift-out-of-bounds in dbSplit
INFO: task hung in blkdev_get_by_dev origin:lts-only 1 C done 25 289d 577d 3/3 237d eff23e59b787 devlink: bump the instance index directly when iterating
WARNING in ieee80211_get_max_required_bw origin:lts-only -1 C done 25 291d 305d 3/3 244d 5cf45281a6ee Revert "wifi: mac80211: fix RCU list iterations"
WARNING in media_create_pad_link origin:upstream -1 C error 2 360d 891d 3/3 256d 19464d732252 media: uvcvideo: Require entities to have a non-zero unique ID
kernel BUG in ocfs2_truncate_inline origin:lts-only -1 C done 4 301d 304d 3/3 256d 2fe5d62e122b ocfs2: pass u64 to ocfs2_truncate_inline maybe overflow
BUG: unable to handle kernel NULL pointer dereference in lookup_one_unlocked origin:upstream 10 C 2 284d 284d 3/3 256d ff43d008bbf9 ovl: Filter invalid inodes with missing lookup function
SYZFAIL: tun: can't open /dev/net/tun origin:upstream -1 syz done 1 332d 636d 3/3 299d eff23e59b787 devlink: bump the instance index directly when iterating
kernel BUG in jbd2_cleanup_journal_tail origin:upstream -1 C done 9 333d 345d 3/3 303d 82dfdd1e31e7 ocfs2: fix null-ptr-deref when journal load failed.
INFO: task hung in ext4_quota_write origin:upstream missing-backport 1 C done 9 369d 609d 3/3 324d 0752e7fb549d ext4: do not create EA inode under buffer lock
UBSAN: shift-out-of-bounds in dbDiscardAG (2) origin:lts-only -1 C done 5 374d 379d 3/3 338d bd04a149e3a2 jfs: Fix shift-out-of-bounds in dbDiscardAG
WARNING in cset_cgroup_from_root origin:lts-only -1 C done 139 374d 389d 3/3 338d f5b7a9792041 cgroup: Make operations on the cgroup root_list RCU safe
possible deadlock in hfsplus_file_extend origin:upstream missing-backport 4 C done 2760 389d 898d 3/3 353d c11c3a4524be hfsplus: fix to avoid false alarm of circular locking
WARNING in skb_checksum_help origin:upstream missing-backport -1 C done 2523 393d 811d 3/3 359d 5b1997487a3f net: missing check virtio
possible deadlock in rds_wake_sk_sleep origin:upstream missing-backport 4 C done 1 395d 807d 3/3 359d 2c66293a452c net:rds: Fix possible deadlock in rds_message_put
KASAN: stack-out-of-bounds Read in profile_pc 17 C done 690 418d 836d 3/3 378d 161cef818545 x86: stop playing stack games in profile_pc()
WARNING in __xdp_reg_mem_model origin:upstream -1 C done 2 427d 498d 3/3 387d 4e0c539ee265 xdp: Remove WARN() from __xdp_reg_mem_model()
WARNING in skb_ensure_writable -1 C done 496 426d 501d 3/3 387d dacc15e9cb24 bpf: Avoid splat in pskb_pull_reason
possible deadlock in console_emit_next_record origin:upstream 4 C done 38 428d 631d 3/3 387d a44770fed865 bpf, sockmap: Prevent lock inversion deadlock in map delete elem
WARNING in ieee80211_check_rate_mask origin:lts-only -1 C done 10 391d 653d 3/3 389d 139faad888ef wifi: mac80211: check basic rates validity
BUG: unable to handle kernel paging request in bpf_dispatcher_xdp origin:lts-only 8 C done 16 573d 878d 3/3 389d d0d2df38f5d0 bpf: Synchronize dispatcher update with bpf_dispatcher_xdp_func
WARNING: lock held when returning to user space in f2fs_write_single_data_page origin:upstream missing-backport 4 C done 1 616d 820d 3/3 396d f2ba11ba9325 f2fs: avoid dead loop in f2fs_issue_checkpoint()
kernel BUG in create_pending_snapshot origin:lts-only -1 C done 4 676d 858d 3/3 396d 588df4829d7f btrfs: do not BUG_ON on failure to get dir index for new snapshot
KASAN: use-after-free Read in try_to_wake_up origin:upstream missing-backport 19 C done 44 446d 878d 3/3 401d 1c3844c5f4ea nilfs2: fix potential hang in nilfs_detach_log_writer()
kernel BUG in submit_bh_wbc origin:lts-only -1 C done 19 447d 876d 3/3 403d 46b832e09d43 nilfs2: fix failure to detect DAT corruption in btree and direct mappings
possible deadlock in scheduler_tick origin:upstream missing-backport 4 C done 237 467d 526d 3/3 427d 6693b172f008 bpf: Allow delete from sockmap/sockhash only if update is allowed
kernel BUG in ipgre_header origin:upstream -1 C error 5 489d 649d 3/3 429d 19554aa901b5 bonding: stop the device in bond_setup_by_slave()
WARNING in vmk80xx_write_packet/usb_submit_urb origin:upstream -1 C done 1 493d 527d 3/3 457d ac882d6b21bf comedi: vmk80xx: fix incomplete endpoint checking
WARNING in gre_tap_xmit origin:upstream -1 C done 2 495d 495d 3/3 460d 39a055e607cb net l2tp: drop flow hash on forward
possible deadlock in rcu_report_exp_cpu_mult 4 C done 7 504d 529d 3/3 468d a44770fed865 bpf, sockmap: Prevent lock inversion deadlock in map delete elem
WARNING in sock_map_unref -1 C done 18 504d 507d 3/3 469d a44770fed865 bpf, sockmap: Prevent lock inversion deadlock in map delete elem
BUG: soft lockup in sys_sendmsg (2) origin:upstream 1 C done 1 508d 508d 3/3 469d 3fe79b2c8346 batman-adv: Avoid infinite loop trying to resize local TT
possible deadlock in swake_up_one 4 C done 1 507d 507d 3/3 469d a44770fed865 bpf, sockmap: Prevent lock inversion deadlock in map delete elem
possible deadlock in __hrtimer_run_queues (2) 4 C done 2 505d 512d 3/3 475d a44770fed865 bpf, sockmap: Prevent lock inversion deadlock in map delete elem
possible deadlock in unix_notinflight 4 C done 1 506d 506d 3/3 475d 84a352b7eba1 af_unix: Clear stale u->oob_skb.
WARNING in __mod_timer -1 C done 1 516d 516d 3/3 485d a44770fed865 bpf, sockmap: Prevent lock inversion deadlock in map delete elem
possible deadlock in try_to_wake_up 4 C done 1 518d 518d 3/3 485d a44770fed865 bpf, sockmap: Prevent lock inversion deadlock in map delete elem
BUG: unable to handle kernel paging request in bpf_probe_read_kernel_str origin:upstream 8 C done 1 537d 568d 3/3 506d f175de546a3e x86/mm: Disallow vsyscall page read for copy_from_kernel_nofault()
WARNING in ieee80211_bss_info_change_notify -1 C done 442 541d 903d 3/3 510d 930e826962d9 wifi: nl80211: reject iftype change with mesh ID change
BUG: unable to handle kernel paging request in bit_putcs 8 C done 4 542d 738d 3/3 512d 2f91a96b892f fbcon: always restore the old font data in fbcon_do_set_font()
KASAN: slab-out-of-bounds Read in ntfs_listxattr 17 C done 52 545d 883d 3/3 512d 6ed6cdbe8833 fs/ntfs3: Fix oob in ntfs_listxattr
BUG: unable to handle kernel NULL pointer dereference in sk_psock_verdict_data_ready origin:upstream 10 C done 1 560d 560d 3/3 527d 4588b13abcbd bpf, sockmap: Fix NULL pointer dereference in sk_psock_verdict_data_ready()
UBSAN: array-index-out-of-bounds in diNewExt origin:lts-only 15 C done 2 582d 582d 3/3 541d efdd665ce1a1 drm/amd/display: Implement bounds check for stream encoder creation in DCN301
possible deadlock in hci_rfkill_set_block 4 C done 1032 604d 672d 3/3 566d fc6471510582 Bluetooth: Fix deadlock in vhci_send_frame
UBSAN: shift-out-of-bounds in scalar32_min_max_arsh origin:upstream -1 C done 1 615d 615d 3/3 585d 803fb6109fcf bpf: fix precision backtracking instruction iteration
general protection fault in __unmap_hugepage_range_final origin:upstream 2 C done 13 625d 664d 3/3 594d 574a6db80f3e hugetlb: fix null-ptr-deref in hugetlb_vma_lock_write
WARNING in fib6_add -1 C done 2 625d 792d 3/3 594d a3f5de10b5cf ipv6: fix potential NULL deref in fib6_add()
WARNING in __kernel_write_iter origin:upstream -1 C done 224 633d 891d 3/3 602d 4fc9c61c02c0 btrfs: send: ensure send_fd is writable
WARNING in lookup_inline_extent_backref origin:upstream -1 C done 2 635d 802d 3/3 604d 56f762659a5e btrfs: do not allow non subvolume root targets for snapshot
WARNING in nilfs_sufile_set_segment_usage origin:upstream -1 C done 4 652d 899d 3/3 618d 3907e9cc85ff nilfs2: prevent WARNING in nilfs_sufile_set_segment_usage()
KASAN: use-after-free Read in unix_stream_read_actor origin:lts-only 19 C done 1 651d 655d 3/3 618d d179189eec42 af_unix: fix use-after-free in unix_stream_read_actor()
WARNING in __alloc_skb origin:upstream -1 C done 2 658d 658d 3/3 625d ab3e13b35c1a ppp: limit MRU to 64K
WARNING in imon_probe origin:upstream -1 syz done 2 737d 806d 3/3 631d b083aaf5db2e media: imon: fix access to invalid resource for the second interface
WARNING in inet_csk_get_port origin:upstream -1 C done 11 679d 708d 3/3 646d 8b9c79c0ecd2 tcp: Fix listen() warning with v4-mapped-v6 address.
KASAN: use-after-free Read in diFree origin:lts-only 19 C done 7 700d 860d 3/3 667d 4de3a603010e jfs: fix invalid free of JFS_IP(ipimap)->i_imap in diUnmount
possible deadlock in f2fs_getxattr origin:upstream missing-backport 4 C done 1043 708d 766d 3/3 673d 980b592c6087 f2fs: avoid false alarm of circular locking
UBSAN: array-index-out-of-bounds in f2fs_iget origin:upstream 15 C done 1 738d 738d 3/3 687d 0d545a8e77cb Revert "f2fs: fix to do sanity check on extent cache correctly"
WARNING in bpf_xdp_adjust_tail -1 C done 238 742d 904d 3/3 688d 20acffcdc2b7 net: core: remove unnecessary frame_sz check in bpf_xdp_adjust_tail()
WARNING in sta_info_insert_rcu origin:upstream -1 C done 1 745d 745d 3/3 692d 676a42341013 wifi: cfg80211: reject auth/assoc to AP with our address
KASAN: null-ptr-deref Write in get_block origin:upstream missing-backport 12 C done 4 755d 800d 3/3 695d 1416eebaad80 fs/sysv: Null check to prevent null-ptr-deref bug
UBSAN: shift-out-of-bounds in dbUpdatePMap origin:upstream -1 C done 1 766d 808d 3/3 700d c7feb54b1138 jfs: jfs_dmap: Validate db_l2nbperpage while mounting
WARNING in corrupted -1 C done 3 774d 892d 3/3 700d 8abb53c5167c media: usb: siano: Fix warning due to null work_func_t function pointer
WARNING in usbnet_start_xmit/usb_submit_urb origin:lts-only -1 C done 2 767d 838d 3/3 700d 1bebbd9b8037 net: usbnet: Fix WARNING in usbnet_start_xmit/usb_submit_urb
WARNING in smsusb_start_streaming -1 C done 1 770d 770d 3/3 700d 8abb53c5167c media: usb: siano: Fix warning due to null work_func_t function pointer
WARNING in smsusb_term_device -1 C done 131 771d 892d 3/3 700d 8abb53c5167c media: usb: siano: Fix warning due to null work_func_t function pointer
BUG: unable to handle kernel NULL pointer dereference in indx_find origin:lts-only 10 C done 3 776d 896d 3/3 700d 000a9a72efa4 fs/ntfs3: Check fields while reading
UBSAN: shift-out-of-bounds in dbFree origin:upstream -1 C done 1 784d 848d 3/3 704d c7feb54b1138 jfs: jfs_dmap: Validate db_l2nbperpage while mounting
UBSAN: array-index-out-of-bounds in xtSearch origin:upstream 15 C done 3 781d 858d 3/3 704d f27f759f4cd4 jfs: validate max amount of blocks before allocation.
INFO: rcu detected stall in sock_close origin:upstream 1 C done 1 779d 779d 3/3 704d 0b45af982a4d net/sched: taprio: Limit TCA_TAPRIO_ATTR_SCHED_CYCLE_TIME to INT_MAX.
WARNING in btrfs_remove_chunk origin:lts-only -1 C done 10 790d 881d 3/3 708d 9628d45a0667 btrfs: scrub: reject unsupported scrub flags
KASAN: use-after-free Read in gsm_cleanup_mux 19 C done 4 791d 857d 3/3 716d 31311a9a4baa tty: n_gsm: fix the UAF caused by race condition in gsm_cleanup_mux
BUG: unable to handle kernel NULL pointer dereference in hdr_find_e origin:upstream missing-backport 10 C done 23 793d 889d 3/3 719d 000a9a72efa4 fs/ntfs3: Check fields while reading
BUG: unable to handle kernel paging request in sctp_outq_tail origin:lts-only 8 C done 2 796d 902d 3/3 737d d2128636b303 sctp: check send stream number after wait_for_sndbuf
possible deadlock in static_key_slow_inc 4 C done 1908 791d 904d 3/3 742d 0d7a4e6589a0 cgroup,freezer: hold cpu_hotplug_lock before freezer_mutex in freezer_css_{online,offline}()
kernel BUG in btrfs_global_root_insert -1 C done 5 801d 870d 3/3 751d 4389fb6b6a9d btrfs: do not ASSERT() on duplicated global roots
kernel BUG in btrfs_global_root_delete -1 C done 6 802d 869d 3/3 757d 4389fb6b6a9d btrfs: do not ASSERT() on duplicated global roots
BUG: soft lockup in addrconf_rs_timer 1 C done 26 806d 818d 3/3 759d 1d37434ffc13 net/sched: fq_pie: ensure reasonable TCA_FQ_PIE_QUANTUM values
WARNING in nilfs_segctor_do_construct -1 C done 2 807d 836d 3/3 763d 69caea4eed1c nilfs2: fix possible out-of-bounds segment allocation in resize ioctl
BUG: soft lockup in fq_pie_timer 1 C done 7 809d 817d 3/3 767d 1d37434ffc13 net/sched: fq_pie: ensure reasonable TCA_FQ_PIE_QUANTUM values
possible deadlock in ext4_xattr_set_handle 4 C done 15 812d 900d 3/3 772d b112babc565e ext4: add EA_INODE checking to ext4_iget()
kernel BUG in __phys_addr -1 C done 2 810d 841d 3/3 772d a8eaa9a06add fs/ntfs3: Validate MFT flags before replaying logs
BUG: soft lockup in tc_modify_qdisc origin:upstream 1 C done 1 815d 815d 3/3 779d 1d37434ffc13 net/sched: fq_pie: ensure reasonable TCA_FQ_PIE_QUANTUM values
INFO: task hung in usbdev_open origin:lts-only 1 C done 3 822d 879d 3/3 791d d5dba4b7bf90 USB: sisusbvga: Add endpoint checks
WARNING in hfsplus_cat_write_inode origin:lts-only -1 C done 9 827d 886d 3/3 793d 48960a503fce fs: hfsplus: remove WARN_ON() from hfsplus_cat_{read,write}_inode()
WARNING in hfsplus_cat_read_inode origin:lts-only -1 C done 24 826d 867d 3/3 793d 48960a503fce fs: hfsplus: remove WARN_ON() from hfsplus_cat_{read,write}_inode()
WARNING: bad unlock balance in l2cap_disconnect_rsp origin:lts-only 4 C done 37 826d 860d 3/3 793d fd269a0435f8 Bluetooth: L2CAP: fix "bad unlock balance" in l2cap_disconnect_rsp
WARNING: bad unlock balance in l2cap_recv_frame origin:lts-only 4 C done 22 829d 860d 3/3 793d fd269a0435f8 Bluetooth: L2CAP: fix "bad unlock balance" in l2cap_disconnect_rsp
KASAN: slab-out-of-bounds Read in xfs_btree_lookup_get_block origin:lts-only 17 C done 1 829d 829d 3/3 798d a2961463d74f xfs: verify buffer contents when we skip log replay
possible deadlock in ext4_multi_mount_protect origin:upstream 4 C done 165 833d 876d 3/3 800d 19fb73b8eaef ext4: fix lockdep warning when enabling MMP
WARNING in __virt_to_phys origin:lts-only -1 C done 1 832d 839d 3/3 800d a8eaa9a06add fs/ntfs3: Validate MFT flags before replaying logs
WARNING in kvfree -1 C done 3 843d 880d 3/3 812d c5fa4eedddd1 ext4: fix invalid free tracking in ext4_xattr_move_to_block()
WARNING in ath6kl_htc_pipe_rx_complete -1 C done 1 850d 850d 3/3 818d 644df7e865e7 wifi: ath6kl: reduce WARN to dev_dbg() in callback
WARNING in split_huge_page_to_list -1 C done 140 854d 899d 3/3 820d e8a7bdb6f76c mm/huge_memory.c: warn with pr_warn_ratelimited instead of VM_WARN_ON_ONCE_FOLIO
possible deadlock in blkcg_deactivate_policy 4 C done 168 855d 901d 3/3 820d b5dae1cd0d83 Revert "blk-cgroup: synchronize pd_free_fn() from blkg_free_workfn() and blkcg_deactivate_policy()"
general protection fault in io_poll_remove_entries 11 C done 21 878d 897d 3/3 848d 3eb2138d4693 io_uring/poll: clear single/double poll flags on poll arming
WARNING in ip6erspan_tunnel_xmit -1 C done 1 890d 890d 3/3 860d 9c7d6803689c erspan: do not use skb_mac_header() in ndo_start_xmit()
WARNING: refcount bug in qrtr_node_lookup 13 C done 1 895d 895d 3/3 863d aa95efa187b4 net: qrtr: Fix a refcount bug in qrtr_recvmsg()
possible deadlock in l2tp_tunnel_register 4 C done 44 901d 904d 3/3 869d 4bb736b40475 l2tp: Avoid possible recursive deadlock in l2tp_tunnel_register()
WARNING in fscrypt_destroy_keyring -1 C done 1 900d 900d 3/3 869d d77531fac6a1 fscrypt: destroy keyring after security_sb_delete()
possible deadlock in throtl_pending_timer_fn 4 C done 266 900d 901d 3/3 869d b5dae1cd0d83 Revert "blk-cgroup: synchronize pd_free_fn() from blkg_free_workfn() and blkcg_deactivate_policy()"
KASAN: use-after-free Read in hfsplus_release_folio 19 C done 2 902d 902d 3/3 869d 0c80bef0b7d2 fs: hfsplus: fix UAF issue in hfsplus_put_super