SYZFAIL: tun: can't open /dev/net/tun
origin:upstream
|
syz |
|
done |
1 |
34d |
338d
|
3/3 |
1d10h |
eff23e59b787
devlink: bump the instance index directly when iterating
|
kernel BUG in jbd2_cleanup_journal_tail
origin:upstream
|
C |
|
done |
9 |
35d |
47d
|
3/3 |
5d12h |
82dfdd1e31e7
ocfs2: fix null-ptr-deref when journal load failed.
|
INFO: task hung in ext4_quota_write
origin:upstream
missing-backport
|
C |
|
done |
9 |
71d |
311d
|
3/3 |
26d |
0752e7fb549d
ext4: do not create EA inode under buffer lock
|
UBSAN: shift-out-of-bounds in dbDiscardAG (2)
origin:lts-only
|
C |
|
done |
5 |
76d |
81d
|
3/3 |
40d |
bd04a149e3a2
jfs: Fix shift-out-of-bounds in dbDiscardAG
|
WARNING in cset_cgroup_from_root
origin:lts-only
|
C |
|
done |
139 |
76d |
91d
|
3/3 |
40d |
f5b7a9792041
cgroup: Make operations on the cgroup root_list RCU safe
|
possible deadlock in hfsplus_file_extend
origin:upstream
missing-backport
|
C |
|
done |
2760 |
91d |
600d
|
3/3 |
55d |
c11c3a4524be
hfsplus: fix to avoid false alarm of circular locking
|
WARNING in skb_checksum_help
origin:upstream
missing-backport
|
C |
|
done |
2523 |
95d |
513d
|
3/3 |
61d |
5b1997487a3f
net: missing check virtio
|
possible deadlock in rds_wake_sk_sleep
origin:upstream
missing-backport
|
C |
|
done |
1 |
97d |
509d
|
3/3 |
61d |
2c66293a452c
net:rds: Fix possible deadlock in rds_message_put
|
KASAN: stack-out-of-bounds Read in profile_pc
|
C |
|
done |
690 |
120d |
538d
|
3/3 |
80d |
161cef818545
x86: stop playing stack games in profile_pc()
|
WARNING in __xdp_reg_mem_model
origin:upstream
|
C |
|
done |
2 |
129d |
200d
|
3/3 |
89d |
4e0c539ee265
xdp: Remove WARN() from __xdp_reg_mem_model()
|
WARNING in skb_ensure_writable
|
C |
|
done |
496 |
128d |
203d
|
3/3 |
89d |
dacc15e9cb24
bpf: Avoid splat in pskb_pull_reason
|
possible deadlock in console_emit_next_record
origin:upstream
|
C |
|
done |
38 |
130d |
333d
|
3/3 |
89d |
a44770fed865
bpf, sockmap: Prevent lock inversion deadlock in map delete elem
|
WARNING in ieee80211_check_rate_mask
origin:lts-only
|
C |
|
done |
10 |
93d |
355d
|
3/3 |
91d |
139faad888ef
wifi: mac80211: check basic rates validity
|
BUG: unable to handle kernel paging request in bpf_dispatcher_xdp
origin:lts-only
|
C |
|
done |
16 |
275d |
580d
|
3/3 |
91d |
d0d2df38f5d0
bpf: Synchronize dispatcher update with bpf_dispatcher_xdp_func
|
WARNING: lock held when returning to user space in f2fs_write_single_data_page
origin:upstream
missing-backport
|
C |
|
done |
1 |
318d |
522d
|
3/3 |
98d |
f2ba11ba9325
f2fs: avoid dead loop in f2fs_issue_checkpoint()
|
kernel BUG in create_pending_snapshot
origin:lts-only
|
C |
|
done |
4 |
378d |
560d
|
3/3 |
98d |
588df4829d7f
btrfs: do not BUG_ON on failure to get dir index for new snapshot
|
KASAN: use-after-free Read in try_to_wake_up
origin:upstream
missing-backport
|
C |
|
done |
44 |
148d |
580d
|
3/3 |
103d |
1c3844c5f4ea
nilfs2: fix potential hang in nilfs_detach_log_writer()
|
kernel BUG in submit_bh_wbc
origin:lts-only
|
C |
|
done |
19 |
149d |
578d
|
3/3 |
105d |
46b832e09d43
nilfs2: fix failure to detect DAT corruption in btree and direct mappings
|
possible deadlock in scheduler_tick
origin:upstream
missing-backport
|
C |
|
done |
237 |
169d |
228d
|
3/3 |
129d |
6693b172f008
bpf: Allow delete from sockmap/sockhash only if update is allowed
|
kernel BUG in ipgre_header
origin:upstream
|
C |
|
error |
5 |
191d |
351d
|
3/3 |
131d |
19554aa901b5
bonding: stop the device in bond_setup_by_slave()
|
WARNING in vmk80xx_write_packet/usb_submit_urb
origin:upstream
|
C |
|
done |
1 |
195d |
229d
|
3/3 |
159d |
ac882d6b21bf
comedi: vmk80xx: fix incomplete endpoint checking
|
WARNING in gre_tap_xmit
origin:upstream
|
C |
|
done |
2 |
197d |
197d
|
3/3 |
162d |
39a055e607cb
net l2tp: drop flow hash on forward
|
possible deadlock in rcu_report_exp_cpu_mult
|
C |
|
done |
7 |
206d |
231d
|
3/3 |
170d |
a44770fed865
bpf, sockmap: Prevent lock inversion deadlock in map delete elem
|
WARNING in sock_map_unref
|
C |
|
done |
18 |
206d |
209d
|
3/3 |
171d |
a44770fed865
bpf, sockmap: Prevent lock inversion deadlock in map delete elem
|
BUG: soft lockup in sys_sendmsg (2)
origin:upstream
|
C |
|
done |
1 |
210d |
210d
|
3/3 |
171d |
3fe79b2c8346
batman-adv: Avoid infinite loop trying to resize local TT
|
possible deadlock in swake_up_one
|
C |
|
done |
1 |
209d |
209d
|
3/3 |
171d |
a44770fed865
bpf, sockmap: Prevent lock inversion deadlock in map delete elem
|
possible deadlock in __hrtimer_run_queues (2)
|
C |
|
done |
2 |
207d |
214d
|
3/3 |
177d |
a44770fed865
bpf, sockmap: Prevent lock inversion deadlock in map delete elem
|
possible deadlock in unix_notinflight
|
C |
|
done |
1 |
208d |
208d
|
3/3 |
177d |
84a352b7eba1
af_unix: Clear stale u->oob_skb.
|
WARNING in __mod_timer
|
C |
|
done |
1 |
218d |
218d
|
3/3 |
187d |
a44770fed865
bpf, sockmap: Prevent lock inversion deadlock in map delete elem
|
possible deadlock in try_to_wake_up
|
C |
|
done |
1 |
220d |
220d
|
3/3 |
187d |
a44770fed865
bpf, sockmap: Prevent lock inversion deadlock in map delete elem
|
BUG: unable to handle kernel paging request in bpf_probe_read_kernel_str
origin:upstream
|
C |
|
done |
1 |
239d |
270d
|
3/3 |
208d |
f175de546a3e
x86/mm: Disallow vsyscall page read for copy_from_kernel_nofault()
|
WARNING in ieee80211_bss_info_change_notify
|
C |
|
done |
442 |
243d |
605d
|
3/3 |
212d |
930e826962d9
wifi: nl80211: reject iftype change with mesh ID change
|
BUG: unable to handle kernel paging request in bit_putcs
|
C |
|
done |
4 |
244d |
440d
|
3/3 |
214d |
2f91a96b892f
fbcon: always restore the old font data in fbcon_do_set_font()
|
KASAN: slab-out-of-bounds Read in ntfs_listxattr
|
C |
|
done |
52 |
247d |
585d
|
3/3 |
214d |
6ed6cdbe8833
fs/ntfs3: Fix oob in ntfs_listxattr
|
BUG: unable to handle kernel NULL pointer dereference in sk_psock_verdict_data_ready
origin:upstream
|
C |
|
done |
1 |
262d |
262d
|
3/3 |
229d |
4588b13abcbd
bpf, sockmap: Fix NULL pointer dereference in sk_psock_verdict_data_ready()
|
UBSAN: array-index-out-of-bounds in diNewExt
origin:lts-only
|
C |
|
done |
2 |
284d |
284d
|
3/3 |
243d |
efdd665ce1a1
drm/amd/display: Implement bounds check for stream encoder creation in DCN301
|
possible deadlock in hci_rfkill_set_block
|
C |
|
done |
1032 |
306d |
374d
|
3/3 |
268d |
fc6471510582
Bluetooth: Fix deadlock in vhci_send_frame
|
UBSAN: shift-out-of-bounds in scalar32_min_max_arsh
origin:upstream
|
C |
|
done |
1 |
317d |
317d
|
3/3 |
287d |
803fb6109fcf
bpf: fix precision backtracking instruction iteration
|
general protection fault in __unmap_hugepage_range_final
origin:upstream
|
C |
|
done |
13 |
327d |
366d
|
3/3 |
296d |
574a6db80f3e
hugetlb: fix null-ptr-deref in hugetlb_vma_lock_write
|
WARNING in fib6_add
|
C |
|
done |
2 |
327d |
494d
|
3/3 |
296d |
a3f5de10b5cf
ipv6: fix potential NULL deref in fib6_add()
|
WARNING in __kernel_write_iter
origin:upstream
|
C |
|
done |
224 |
335d |
593d
|
3/3 |
304d |
4fc9c61c02c0
btrfs: send: ensure send_fd is writable
|
WARNING in lookup_inline_extent_backref
origin:upstream
|
C |
|
done |
2 |
337d |
504d
|
3/3 |
306d |
56f762659a5e
btrfs: do not allow non subvolume root targets for snapshot
|
WARNING in nilfs_sufile_set_segment_usage
origin:upstream
|
C |
|
done |
4 |
354d |
601d
|
3/3 |
320d |
3907e9cc85ff
nilfs2: prevent WARNING in nilfs_sufile_set_segment_usage()
|
KASAN: use-after-free Read in unix_stream_read_actor
origin:lts-only
|
C |
|
done |
1 |
353d |
357d
|
3/3 |
320d |
d179189eec42
af_unix: fix use-after-free in unix_stream_read_actor()
|
WARNING in __alloc_skb
origin:upstream
|
C |
|
done |
2 |
360d |
360d
|
3/3 |
327d |
ab3e13b35c1a
ppp: limit MRU to 64K
|
WARNING in imon_probe
origin:upstream
|
syz |
|
done |
2 |
439d |
508d
|
3/3 |
333d |
b083aaf5db2e
media: imon: fix access to invalid resource for the second interface
|
WARNING in inet_csk_get_port
origin:upstream
|
C |
|
done |
11 |
381d |
410d
|
3/3 |
348d |
8b9c79c0ecd2
tcp: Fix listen() warning with v4-mapped-v6 address.
|
KASAN: use-after-free Read in diFree
origin:lts-only
|
C |
|
done |
7 |
402d |
562d
|
3/3 |
369d |
4de3a603010e
jfs: fix invalid free of JFS_IP(ipimap)->i_imap in diUnmount
|
possible deadlock in f2fs_getxattr
origin:upstream
missing-backport
|
C |
|
done |
1043 |
410d |
468d
|
3/3 |
375d |
980b592c6087
f2fs: avoid false alarm of circular locking
|
UBSAN: array-index-out-of-bounds in f2fs_iget
origin:upstream
|
C |
|
done |
1 |
440d |
440d
|
3/3 |
389d |
0d545a8e77cb
Revert "f2fs: fix to do sanity check on extent cache correctly"
|
WARNING in bpf_xdp_adjust_tail
|
C |
|
done |
238 |
444d |
606d
|
3/3 |
390d |
20acffcdc2b7
net: core: remove unnecessary frame_sz check in bpf_xdp_adjust_tail()
|
WARNING in sta_info_insert_rcu
origin:upstream
|
C |
|
done |
1 |
447d |
447d
|
3/3 |
394d |
676a42341013
wifi: cfg80211: reject auth/assoc to AP with our address
|
KASAN: null-ptr-deref Write in get_block
origin:upstream
missing-backport
|
C |
|
done |
4 |
457d |
502d
|
3/3 |
397d |
1416eebaad80
fs/sysv: Null check to prevent null-ptr-deref bug
|
UBSAN: shift-out-of-bounds in dbUpdatePMap
origin:upstream
|
C |
|
done |
1 |
468d |
510d
|
3/3 |
402d |
c7feb54b1138
jfs: jfs_dmap: Validate db_l2nbperpage while mounting
|
WARNING in corrupted
|
C |
|
done |
3 |
476d |
594d
|
3/3 |
402d |
8abb53c5167c
media: usb: siano: Fix warning due to null work_func_t function pointer
|
WARNING in usbnet_start_xmit/usb_submit_urb
origin:lts-only
|
C |
|
done |
2 |
469d |
540d
|
3/3 |
402d |
1bebbd9b8037
net: usbnet: Fix WARNING in usbnet_start_xmit/usb_submit_urb
|
WARNING in smsusb_start_streaming
|
C |
|
done |
1 |
472d |
472d
|
3/3 |
402d |
8abb53c5167c
media: usb: siano: Fix warning due to null work_func_t function pointer
|
WARNING in smsusb_term_device
|
C |
|
done |
131 |
473d |
594d
|
3/3 |
402d |
8abb53c5167c
media: usb: siano: Fix warning due to null work_func_t function pointer
|
BUG: unable to handle kernel NULL pointer dereference in indx_find
origin:lts-only
|
C |
|
done |
3 |
478d |
598d
|
3/3 |
402d |
000a9a72efa4
fs/ntfs3: Check fields while reading
|
UBSAN: shift-out-of-bounds in dbFree
origin:upstream
|
C |
|
done |
1 |
486d |
550d
|
3/3 |
406d |
c7feb54b1138
jfs: jfs_dmap: Validate db_l2nbperpage while mounting
|
UBSAN: array-index-out-of-bounds in xtSearch
origin:upstream
|
C |
|
done |
3 |
483d |
560d
|
3/3 |
406d |
f27f759f4cd4
jfs: validate max amount of blocks before allocation.
|
INFO: rcu detected stall in sock_close
origin:upstream
|
C |
|
done |
1 |
481d |
481d
|
3/3 |
406d |
0b45af982a4d
net/sched: taprio: Limit TCA_TAPRIO_ATTR_SCHED_CYCLE_TIME to INT_MAX.
|
WARNING in btrfs_remove_chunk
origin:lts-only
|
C |
|
done |
10 |
492d |
583d
|
3/3 |
410d |
9628d45a0667
btrfs: scrub: reject unsupported scrub flags
|
KASAN: use-after-free Read in gsm_cleanup_mux
|
C |
|
done |
4 |
493d |
559d
|
3/3 |
418d |
31311a9a4baa
tty: n_gsm: fix the UAF caused by race condition in gsm_cleanup_mux
|
BUG: unable to handle kernel NULL pointer dereference in hdr_find_e
origin:upstream
missing-backport
|
C |
|
done |
23 |
495d |
591d
|
3/3 |
421d |
000a9a72efa4
fs/ntfs3: Check fields while reading
|
BUG: unable to handle kernel paging request in sctp_outq_tail
origin:lts-only
|
C |
|
done |
2 |
498d |
604d
|
3/3 |
439d |
d2128636b303
sctp: check send stream number after wait_for_sndbuf
|
possible deadlock in static_key_slow_inc
|
C |
|
done |
1908 |
493d |
606d
|
3/3 |
444d |
0d7a4e6589a0
cgroup,freezer: hold cpu_hotplug_lock before freezer_mutex in freezer_css_{online,offline}()
|
kernel BUG in btrfs_global_root_insert
|
C |
|
done |
5 |
503d |
572d
|
3/3 |
453d |
4389fb6b6a9d
btrfs: do not ASSERT() on duplicated global roots
|
kernel BUG in btrfs_global_root_delete
|
C |
|
done |
6 |
504d |
571d
|
3/3 |
459d |
4389fb6b6a9d
btrfs: do not ASSERT() on duplicated global roots
|
BUG: soft lockup in addrconf_rs_timer
|
C |
|
done |
26 |
508d |
520d
|
3/3 |
461d |
1d37434ffc13
net/sched: fq_pie: ensure reasonable TCA_FQ_PIE_QUANTUM values
|
WARNING in nilfs_segctor_do_construct
|
C |
|
done |
2 |
509d |
538d
|
3/3 |
465d |
69caea4eed1c
nilfs2: fix possible out-of-bounds segment allocation in resize ioctl
|
BUG: soft lockup in fq_pie_timer
|
C |
|
done |
7 |
511d |
519d
|
3/3 |
469d |
1d37434ffc13
net/sched: fq_pie: ensure reasonable TCA_FQ_PIE_QUANTUM values
|
possible deadlock in ext4_xattr_set_handle
|
C |
|
done |
15 |
514d |
601d
|
3/3 |
474d |
b112babc565e
ext4: add EA_INODE checking to ext4_iget()
|
kernel BUG in __phys_addr
|
C |
|
done |
2 |
512d |
543d
|
3/3 |
474d |
a8eaa9a06add
fs/ntfs3: Validate MFT flags before replaying logs
|
BUG: soft lockup in tc_modify_qdisc
origin:upstream
|
C |
|
done |
1 |
517d |
517d
|
3/3 |
481d |
1d37434ffc13
net/sched: fq_pie: ensure reasonable TCA_FQ_PIE_QUANTUM values
|
INFO: task hung in usbdev_open
origin:lts-only
|
C |
|
done |
3 |
524d |
581d
|
3/3 |
493d |
d5dba4b7bf90
USB: sisusbvga: Add endpoint checks
|
WARNING in hfsplus_cat_write_inode
origin:lts-only
|
C |
|
done |
9 |
529d |
588d
|
3/3 |
495d |
48960a503fce
fs: hfsplus: remove WARN_ON() from hfsplus_cat_{read,write}_inode()
|
WARNING in hfsplus_cat_read_inode
origin:lts-only
|
C |
|
done |
24 |
528d |
569d
|
3/3 |
495d |
48960a503fce
fs: hfsplus: remove WARN_ON() from hfsplus_cat_{read,write}_inode()
|
WARNING: bad unlock balance in l2cap_disconnect_rsp
origin:lts-only
|
C |
|
done |
37 |
528d |
562d
|
3/3 |
495d |
fd269a0435f8
Bluetooth: L2CAP: fix "bad unlock balance" in l2cap_disconnect_rsp
|
WARNING: bad unlock balance in l2cap_recv_frame
origin:lts-only
|
C |
|
done |
22 |
531d |
562d
|
3/3 |
495d |
fd269a0435f8
Bluetooth: L2CAP: fix "bad unlock balance" in l2cap_disconnect_rsp
|
KASAN: slab-out-of-bounds Read in xfs_btree_lookup_get_block
origin:lts-only
|
C |
|
done |
1 |
531d |
531d
|
3/3 |
500d |
a2961463d74f
xfs: verify buffer contents when we skip log replay
|
possible deadlock in ext4_multi_mount_protect
origin:upstream
|
C |
|
done |
165 |
535d |
578d
|
3/3 |
502d |
19fb73b8eaef
ext4: fix lockdep warning when enabling MMP
|
WARNING in __virt_to_phys
origin:lts-only
|
C |
|
done |
1 |
534d |
541d
|
3/3 |
502d |
a8eaa9a06add
fs/ntfs3: Validate MFT flags before replaying logs
|
WARNING in kvfree
|
C |
|
done |
3 |
545d |
582d
|
3/3 |
514d |
c5fa4eedddd1
ext4: fix invalid free tracking in ext4_xattr_move_to_block()
|
WARNING in ath6kl_htc_pipe_rx_complete
|
C |
|
done |
1 |
552d |
552d
|
3/3 |
520d |
644df7e865e7
wifi: ath6kl: reduce WARN to dev_dbg() in callback
|
WARNING in split_huge_page_to_list
|
C |
|
done |
140 |
556d |
601d
|
3/3 |
522d |
e8a7bdb6f76c
mm/huge_memory.c: warn with pr_warn_ratelimited instead of VM_WARN_ON_ONCE_FOLIO
|
possible deadlock in blkcg_deactivate_policy
|
C |
|
done |
168 |
557d |
603d
|
3/3 |
522d |
b5dae1cd0d83
Revert "blk-cgroup: synchronize pd_free_fn() from blkg_free_workfn() and blkcg_deactivate_policy()"
|
general protection fault in io_poll_remove_entries
|
C |
|
done |
21 |
580d |
599d
|
3/3 |
550d |
3eb2138d4693
io_uring/poll: clear single/double poll flags on poll arming
|
WARNING in ip6erspan_tunnel_xmit
|
C |
|
done |
1 |
592d |
592d
|
3/3 |
562d |
9c7d6803689c
erspan: do not use skb_mac_header() in ndo_start_xmit()
|
WARNING: refcount bug in qrtr_node_lookup
|
C |
|
done |
1 |
597d |
597d
|
3/3 |
565d |
aa95efa187b4
net: qrtr: Fix a refcount bug in qrtr_recvmsg()
|
possible deadlock in l2tp_tunnel_register
|
C |
|
done |
44 |
603d |
606d
|
3/3 |
571d |
4bb736b40475
l2tp: Avoid possible recursive deadlock in l2tp_tunnel_register()
|
WARNING in fscrypt_destroy_keyring
|
C |
|
done |
1 |
602d |
602d
|
3/3 |
571d |
d77531fac6a1
fscrypt: destroy keyring after security_sb_delete()
|
possible deadlock in throtl_pending_timer_fn
|
C |
|
done |
266 |
602d |
603d
|
3/3 |
571d |
b5dae1cd0d83
Revert "blk-cgroup: synchronize pd_free_fn() from blkg_free_workfn() and blkcg_deactivate_policy()"
|
KASAN: use-after-free Read in hfsplus_release_folio
|
C |
|
done |
2 |
604d |
604d
|
3/3 |
571d |
0c80bef0b7d2
fs: hfsplus: fix UAF issue in hfsplus_put_super
|