syzbot


Title Repro Bisected Count Last Reported Closed Patch
kernel BUG at lib/string.c:LINE! (5) C cause 558 27d 35d 6d01h 35be8851 btrfs: fix overflow when copying corrupt csums for a message
general protection fault in madvise_cold_or_pageout_pte_range C cause 3 27d 37d 8d02h ce268425 mm: validate pmd after splitting
KASAN: global-out-of-bounds Read in fbcon_resize C cause 673 30d 62d 11d ec0972ad fbcon: Fix user font detection test at fbcon_resize().
WARNING: suspicious RCU usage in fib6_del (2) 1 43d 43d 11d 843d926b ipv6: avoid lockdep issue in fib6_del()
KASAN: use-after-free Read in ieee8NUM_tx 1 44d 44d 11d 0ff4628f mac802154: tx: fix use-after-free
general protection fault in wg_index_hashtable_replace 2 32d 43d 11d 9179ba31 wireguard: noise: take lock when removing handshake entry from table
memory leak in do_seccomp C 6 43d 70d 11d a566a901 seccomp: don't leak memory when filter install races
inconsistent lock state in padata_do_parallel 9 29d 49d 11d 1b0df11f padata: fix possible padata_works_lock deadlock
KASAN: use-after-free Write in skb_queue_tail 1 42d 42d 11d 3ca1a42a net: qrtr: check skb_put_padto() return value
possible deadlock in peernet2id_alloc 12 42d 214d 11d e1f469cd Revert "netns: don't disable BHs when locking "nsid_lock""
KMSAN: uninit-value in __inet_diag_dump C 37 12d 30d 11d d5e4d0a5 inet_diag: validate INET_DIAG_REQ_PROTOCOL attribute
memory leak in do_eventfd C 2 58d 153d 11d f6588660 KVM: fix memory leak in kvm_io_bus_unregister_dev()
KASAN: slab-out-of-bounds Read in read_descriptors (2) 1 61d 57d 11d a18cd6c9 usb: core: fix slab-out-of-bounds Read in read_descriptors
INFO: rcu detected stall in cleanup_net (4) C cause 5 46d 42d 11d b5b73b26 taprio: Fix allowing too small intervals
KASAN: slab-out-of-bounds Read in fbcon_scrolldelta 1 37d 37d 11d 50145474 fbcon: remove soft scrollback code
INFO: task hung in tcf_ife_init C cause 4 43d 48d 11d cc8e58f8 act_ife: load meta modules before tcf_idr_check_alloc()
KASAN: slab-out-of-bounds Read in prism2sta_probe_usb C 8 51d 82d 11d fea22e15 staging: wlan-ng: fix out of bounds read in prism2sta_probe_usb()
KMSAN: uninit-value in inet_diag_cmd_exact C 31 12d 24d 11d d5e4d0a5 inet_diag: validate INET_DIAG_REQ_PROTOCOL attribute
KASAN: global-out-of-bounds Read in vga16fb_imageblit C cause 1071 38d 322d 11d bd018a6a video: fbdev: fix OOB read in vga_8planes_imageblit()
memory leak in tipc_group_create_member C 32 38d 446d 11d bb3a420d tipc: Fix memory leak in tipc_group_create_member()
general protection fault in free_netdev C cause+fix 3605 87d 121d 19d 46ef5b89 ip6_gre: fix null-ptr-deref in ip6gre_init_net()
KASAN: use-after-free Write in page_counter_uncharge 2 58d 63d 19d f1796544 memcg: fix use-after-free in uncharge_batch
KASAN: use-after-free Write in page_counter_cancel 1 67d 63d 19d f1796544 memcg: fix use-after-free in uncharge_batch
KASAN: use-after-free Read in do_madvise syz cause 4 59d 60d 19d 7867fd7c mm: madvise: fix vma user-after-free
KMSAN: kernel-infoleak in move_addr_to_user (3) C 79 34d 68d 23d 38ba8b92 can: j1939: fix kernel-infoleak in j1939_sk_sock2sockaddr_can()
KASAN: slab-out-of-bounds Write in hiddev_ioctl_usage C 279 53d 396d 26d 25a097f5 HID: hiddev: Fix slab-out-of-bounds write in hiddev_ioctl_usage()
WARNING: refcount bug in red_destroy C cause 1 57d 55d 26d 5438dd45 net_sched: fix error path in red_init()
WARNING in slab_pre_alloc_hook C 210 51d 71d 26d f176ede3 USB: yurex: Fix bad gfp argument
WARNING: refcount bug in smc_release (3) 1 54d 43d 26d 5fb8642a net/smc: fix sock refcounting in case of termination
INFO: rcu detected stall in ext4_file_write_iter C cause+fix 93 70d 603d 26d 7e249690 block: allow for_each_bvec to support zero len bvec
WARNING: refcount bug in qdisc_put (2) C cause 7 56d 55d 26d 5438dd45 net_sched: fix error path in red_init()
BUG: corrupted list in mousedev_release syz cause 5 49d 51d 26d 77f4689d fix regression in "epoll: Keep a reference on files added to the check list"
KASAN: use-after-free Read in snd_pcm_oss_release 1 55d 54d 26d 77f4689d fix regression in "epoll: Keep a reference on files added to the check list"
possible deadlock in __lock_task_sighand C cause 12 50d 52d 26d fd7d6de2 io_uring: don't recurse on tsk->sighand->siglock with signalfd
WARNING in snd_pcm_plugin_build_mulaw C cause 4 52d 49d 26d 949a1ebe ALSA: pcm: oss: Remove superfluous WARN_ON() for mulaw sanity check
general protection fault in snd_ctl_release syz cause 4 48d 49d 26d 77f4689d fix regression in "epoll: Keep a reference on files added to the check list"
KMSAN: uninit-value in batadv_tt_hash_find 11 41d 98d 26d 303216e7 batman-adv: Avoid uninitialized chaddr when handling DHCP
KASAN: global-out-of-bounds Read in bit_putcs C cause 262 27d 320d 26d 39b3cffb fbcon: prevent user font height or width change from causing potential out-of-bounds access bc5269ca vt_ioctl: change VT_RESIZEX ioctl to check for error return from vc_resize()
KASAN: use-after-free Read in fbcon_cursor syz cause+fix 10 66d 310d 26d f8d1653d vt: defer kfree() of vc_screenbuf in vc_do_resize()
KASAN: use-after-free Read in rc_dev_uevent 1 75d 75d 26d 4f0835d6 media: rc: uevent sysfs file races with rc_unregister_device()
upstream boot error: KASAN: global-out-of-bounds Read in internal_create_group 273 57d 70d 26d 62c78927 libnvdimm: KASAN: global-out-of-bounds Read in internal_create_group
KMSAN: uninit-value in video_usercopy C 28 91d 91d 26d 4ffb879e media: media/v4l2-core: Fix kernel-infoleak in video_put_user()
INFO: task hung in nbd_ioctl (2) 37 53d 106d 26d 2a63866c tipc: fix shutdown() of connectionless socket
WARNING in restore_regulatory_settings C cause 10414 44d 288d 26d 47caf685 cfg80211: regulatory: reject invalid hints
INFO: task hung in pipe_release (2) syz cause 3 48d 79d 26d 7e249690 block: allow for_each_bvec to support zero len bvec
KMSAN: kernel-infoleak in raw_ioctl C 22 48d 72d 26d a092b723 net: usb: Fix uninit-was-stored issue in asix_read_phy_addr()
KASAN: use-after-free Read in bdev_del_partition C cause 1 50d 50d 26d 08fc1ab6 block: fix locking in bdev_del_partition
KASAN: vmalloc-out-of-bounds Write in bitfill_aligned C 475 86d 321d 29d 033724d6 fbdev: Detect integer underflow at "struct fbcon_ops"->clear_margins.
BUG: unable to handle kernel paging request in vmx_vcpu_run C cause+fix 194 809d 923d 30d kvm: vmx: Nested VM-entry prereqs for event inj.
possible deadlock in __io_queue_deferred C cause 1 73d 71d 34d 7271ef3a io_uring: fix recursive completion locking on oveflow flush
kernel BUG at mm/hugetlb.c:LINE! C cause+fix 10 85d 198d 34d 15568299 hugetlbfs: prevent filesystem stacking of hugetlbfs
WARNING in r871xu_dev_remove C 47375 74d 425d 34d b4383c97 staging: rtl8712: handle firmware load failure
WARNING in ptrace_stop C cause 1413 85d 89d 34d d136122f sched: Fix race against ptrace_freeze_trace()
general protection fault in do_con_write C cause 10703 86d 322d 34d ce684552 vt: Reject zero-sized screen buffer size.
general protection fault in __btf_resolve_helper_id C 17 99d 107d 34d 5b801dfb bpf: Fix NULL pointer dereference in __btf_resolve_helper_id()
KASAN: use-after-free Read in line6_submit_audio_in_all_urbs 2 102d 116d 34d 68359a1a ALSA: line6: Sync the pending work cancel at disconnection
INFO: task hung in ovs_exit_net 65 87d 90d 34d a65878d6 net: openvswitch: fixes potential deadlock in dp cleanup code
memory leak in erase_aeb (2) syz 25 93d 162d 34d 3b185255 ubi: fastmap: Don't produce the initial next anchor PEB when fastmap is disabled
KASAN: use-after-free Write in __linkwatch_run_queue C cause 24 89d 90d 34d c75d1d52 bonding: check return value of register_netdevice() in bond_newlink()
WARNING in fat12_ent_blocknr 2 78d 102d 34d a090a5a7 fat: fix fat_ra_init() for data clusters == 0
general protection fault in x86_fsgsbase_read_task C cause 2 68d 68d 34d 8ab49526 x86/fsgsbase/64: Fix NULL deref in 86_fsgsbase_read_task
WARNING in __kernel_read C cause 60 41d 100d 34d a39c4606 net/9p: validate fds in p9_fd_open
WARNING in inc_nlink C cause 26 100d 203d 34d facb03dd fs/minix: don't allow getting deleted inodes
KASAN: use-after-free Read in delete_and_unsubscribe_port (2) syz cause 4 78d 104d 34d 80982c7e ALSA: seq: oss: Serialize ioctls
KASAN: use-after-free Write in addr_resolve 1 135d 132d 34d f6a9d47a RDMA/cma: Execute rdma_cm destruction from a handler properly
general protection fault in cdev_del C 315 44d 511d 34d e911e99a usb: hso: check for return value in hso_serial_common_create()
general protection fault in afs_dynroot_depopulate 1 62d 61d 34d 5e0b17b0 afs: Fix NULL deref in afs_dynroot_depopulate()
KASAN: use-after-free Read in sock_def_write_space (2) C cause 29 35d 92d 34d af9f691f qrtr: orphan socket in qrtr_release()
kernel BUG at mm/khugepaged.c:LINE! C cause 30 61d 72d 34d f3f99d63 khugepaged: adjust VM_BUG_ON_MM() in __khugepaged_enter()
possible deadlock in shmem_fallocate (4) C cause 81 85d 299d 34d 3e338d3c staging: android: ashmem: Fix lockdep warning for write operation
BUG: unable to handle kernel NULL pointer dereference in loop_rw_iter C cause 24 60d 71d 34d 2dd2111d io_uring: Fix NULL pointer dereference in loop_rw_iter()
kernel BUG at net/rxrpc/recvmsg.c:LINE! C cause 10 81d 109d 34d 65550098 rxrpc: Fix race between recvmsg and sendmsg on immediate call failure
KASAN: use-after-free Read in addr_handler (2) 2 89d 132d 34d f6a9d47a RDMA/cma: Execute rdma_cm destruction from a handler properly
KASAN: use-after-free Read in io_async_task_func syz cause 1 71d 71d 34d 6d816e08 io_uring: hold 'ctx' reference around task_work queue + execute
WARNING in idr_alloc C cause 65 43d 118d 34d 8dfddfb7 net: qrtr: fix usage of idr in port assignment to socket
WARNING in drop_nlink C cause+fix 1 182d 178d 34d facb03dd fs/minix: don't allow getting deleted inodes
KASAN: slab-out-of-bounds Read in vc_do_resize C cause 55 71d 307d 34d d88ca7e1 fbmem: pull fbcon_update_vcs() out of fb_set_var()
general protection fault in fib_dump_info (2) C cause 16 58d 60d 34d eeaac363 net: nexthop: don't allow empty NHA_GROUP
KASAN: slab-out-of-bounds Read in vsscanf (2) C cause 5 77d 90d 34d a6bd4f6d Smack: fix another vsscanf out of bounds
KMSAN: uninit-value in netlink_policy_dump_start C 31 39d 43d 34d d1fb5559 netlink: fix state reallocation in policy export
possible deadlock in uprobe_clear_state (2) 1 101d 97d 34d f867c771 binder: Don't use mmput() from shrinker function.
KASAN: null-ptr-deref Write in media_request_close C cause 17 77d 125d 34d e30cc79c media: media-request: Fix crash if memory allocation fails
KASAN: use-after-free Read in devlink_health_reporter_destroy C cause 1188 98d 99d 34d 5d037b4d devlink: Fix use-after-free when destroying health reporters
kernel BUG at net/core/dev.c:LINE! (3) C cause 979 49d 193d 34d 83270702 bonding: fix a potential double-unregister
KASAN: use-after-free Read in ceph_mdsc_destroy 4 74d 90d 34d a7caa88f ceph: fix use-after-free for fsc->mdsc
KASAN: use-after-free Read in path_init (2) C cause 29 68d 70d 34d 24fb33d4 fix breakage in do_rmdir()
WARNING in __kernel_write C cause 522 83d 103d 34d a39c4606 net/9p: validate fds in p9_fd_open
KMSAN: uninit-value in get_block C 13 150d 153d 34d 270ef410 fs/minix: reject too-large maximum file size
WARNING: suspicious RCU usage in ovs_flow_tbl_masks_cache_size C cause 4093 75d 77d 34d 5845589e net: openvswitch: silence suspicious RCU usage warning
WARNING in submit_rx_urb/usb_submit_urb C 397 86d 510d 34d faaff976 staging: wlan-ng: properly check endpoint types
WARNING in ib_unregister_device_queued 2 166d 177d 34d 0cb42c02 RDMA/core: Fix bogus WARN_ON during ib_unregister_device_queued()
KASAN: use-after-free Read in get_block C cause 23 100d 178d 34d 270ef410 fs/minix: reject too-large maximum file size
WARNING in idtentry_exit_cond_rcu syz 6 108d 104d 34d bce9b042 x86/traps: Disable interrupts in exc_aligment_check()
INFO: task hung in ovs_dp_masks_rebalance 771 47d 90d 34d a65878d6 net: openvswitch: fixes potential deadlock in dp cleanup code
memory leak in nf_tables_addchain C 1 73d 70d 34d 59136aa3 netfilter: nf_tables: free chain context when BINDING flag is missing
KASAN: null-ptr-deref Write in get_block C cause 101 100d 213d 34d da27e0a0 fs/minix: check return value of sb_getblk()
WARNING: suspicious RCU usage in tipc_l2_send_msg syz cause 60 58d 116d 34d f6db9096 tipc: call rcu_read_lock() in tipc_aead_encrypt_done()
WARNING in compat_do_ebt_get_ctl C cause 15 64d 75d 34d 5c04da55 netfilter: ebtables: reject bogus getopt len value
memory leak in io_submit_sqes C 2 51d 70d 34d a36da65c io_uring: fail poll arm on queue proc failure
WARNING in __nf_unregister_net_hook (2) C cause 9 100d 99d 34d 1e9451cb netfilter: nf_tables: fix nat hook table deletion
KCSAN: data-race in page_counter_try_charge / page_counter_try_charge (2) 148 69d 313d 34d 6e4bd50f mm/page_counter: fix various data races at memsw
KASAN: use-after-free Read in j1939_tp_txtimer C cause+fix 5 101d 299d 34d cd3b3636 can: j1939: transport: j1939_session_tx_dat(): fix use-after-free read in j1939_tp_txtimer()
KASAN: use-after-free Write in get_block C cause+fix 12 116d 166d 34d 270ef410 fs/minix: reject too-large maximum file size
KASAN: use-after-free Read in l2cap_chan_close C cause 37 76d 256d 34d f9c70bdc Bluetooth: add a mutex lock to avoid UAF in do_enale_set
KASAN: use-after-free Read in ax88172a_unbind C cause 2723 86d 326d 34d c28d9a28 ax88172a: fix ax88172a_unbind() failures
linux-next boot error: WARNING in mem_cgroup_css_alloc 6 68d 69d 34d 9f457179 mm: memcontrol: fix warning when allocating the root cgroup
KCSAN: data-race in vm_area_dup / vma_interval_tree_remove (2) 70 128d 242d 34d cda099b3 fork: Annotate a data race in vm_area_dup()
general protection fault in vsock_poll syz cause 15 79d 91d 34d 1980c058 vsock: fix potential null pointer dereference in vsock_poll()
BUG: corrupted list in p9_read_work (2) syz cause+fix 38 336d 698d 34d 74d6a5d5 9p/trans_fd: Fix concurrency del of req_list in p9_fd_cancelled/p9_read_work
general protection fault in io_poll_double_wake C cause 8 38d 66d 34d d4e7cd36 io_uring: sanitize double poll handling
KMSAN: uninit-value in geneve_xmit C 163 38d 91d 34d 32818c07 geneve: fix an uninitialized value in geneve_changelink()
general protection fault in syscall_return_slowpath syz cause+fix 1 140d 227d 34d 033724d6 fbdev: Detect integer underflow at "struct fbcon_ops"->clear_margins.
KMSAN: uninit-value in ax25_connect C 15 42d 175d 34d 2f2a7ffa AX.25: Fix out-of-bounds read in ax25_connect()
general protection fault in j1939_netdev_start C cause 8 87d 238d 34d af804b78 can: j1939: socket: j1939_sk_bind(): make sure ml_priv is allocated
KASAN: slab-out-of-bounds Read in hci_extended_inquiry_result_evt C 16 77d 105d 34d 51c19bf3 Bluetooth: Fix slab-out-of-bounds read in hci_extended_inquiry_result_evt()
KASAN: wild-memory-access Read in rawv6_setsockopt 2 75d 75d 34d 519a8a6c net: Revert "net: optimize the sockptr_t for unified kernel/user address spaces"
KASAN: out-of-bounds Read in pebs_update_state syz cause+fix 1 111d 159d 34d 033724d6 fbdev: Detect integer underflow at "struct fbcon_ops"->clear_margins.
WARNING in submit_audio_out_urb/usb_submit_urb syz 2 104d 103d 34d 6e8a914a ALSA: line6: Perform sanity check for each URB creation
KASAN: use-after-free Read in lockref_get 7 138d 238d 34d bad8e64f blktrace: fix debugfs use after free
KASAN: use-after-free Read in io_uring_setup (2) 1 83d 82d 34d d1719f70 io_uring: don't touch 'ctx' after installing file descriptor
KASAN: use-after-free Read in __xfrm6_tunnel_spi_lookup C cause 12 92d 97d 34d 8b404f46 xfrm: interface: not xfrmi_ipv6/ipip_handler twice
general protection fault in khugepaged C cause 3 91d 104d 34d 594cced1 khugepaged: fix null-pointer dereference due to race
KASAN: invalid-free in snd_seq_port_disconnect syz cause 9 78d 83d 34d 80982c7e ALSA: seq: oss: Serialize ioctls
KASAN: slab-out-of-bounds Write in sctp_setsockopt C cause 590 85d 90d 34d dfd3d526 sctp: fix slab-out-of-bounds in SCTP_DELAYED_SACK processing
possible deadlock in io_timeout_fn C cause 4 69d 71d 34d 51a4cc11 io_uring: defer file table grabbing request cleanup for locked requests
KMSAN: uninit-value in ucma_connect C 138 39d 91d 34d 31142a4b RDMA/cm: Add min length checks to user structure copies
WARNING in snd_usbmidi_submit_urb/usb_submit_urb C cause 42 117d 142d 34d 9b7e5208 ALSA: usb-audio: Fix race against the error recovery URB submission
WARNING in snd_info_get_line C cause 36 90d 96d 34d 60379ba0 ALSA: info: Drop WARN_ON() from buffer NULL sanity check
WARNING: suspicious RCU usage in ovs_flow_tbl_destroy C cause 658 75d 77d 34d 5845589e net: openvswitch: silence suspicious RCU usage warning
INFO: task hung in __do_sys_reboot 1554 51d 106d 34d b292b50b driver core: Fix probe_count imbalance in really_probe()
INFO: trying to register non-static key in red_destroy C cause 318 86d 107d 34d 608b4ada net_sched: initialize timer earlier in red_init()
general protection fault in go7007_usb_probe C 2103 74d 182d 34d 13764128 go7007: add sanity checking for endpoints
KASAN: slab-out-of-bounds Read in hci_inquiry_result_with_rssi_evt C cause 9 79d 99d 34d 629b49c8 Bluetooth: Prevent out-of-bounds read in hci_inquiry_result_with_rssi_evt()
KMSAN: uninit-value in __tipc_nl_compat_dumpit (3) C 6181 35d 99d 34d 47733f9d tipc: fix uninit skb->data in tipc_nl_compat_dumpit()
KASAN: wild-memory-access Read in ip_setsockopt C 2 68d 68d 34d 519a8a6c net: Revert "net: optimize the sockptr_t for unified kernel/user address spaces"
WARNING: suspicious RCU usage in bond_ipsec_add_sa 214 35d 106d 34d f548a476 bonding: don't need RTNL for ipsec helpers
KASAN: wild-memory-access Read in sctp_setsockopt C 2 68d 68d 34d 519a8a6c net: Revert "net: optimize the sockptr_t for unified kernel/user address spaces"
KMSAN: uninit-value in xa_load C 208 35d 91d 34d 31142a4b RDMA/cm: Add min length checks to user structure copies
WARNING in vkms_vblank_simulate C cause 12903 41d 617d 34d 51f644b4 drm/atomic-helper: reset vblank on crtc reset
WARNING in snd_usbmidi_input_start/usb_submit_urb C cause 231 95d 137d 34d 9b7e5208 ALSA: usb-audio: Fix race against the error recovery URB submission
KASAN: use-after-free Read in smk_write_relabel_self C cause 2 138d 134d 34d beb4ee67 Smack: fix use-after-free in smk_write_relabel_self()
possible deadlock in pipe_lock (3) C cause+fix 4 262d 299d 63d 1a980b8c ovl: add splice file read write helper
possible deadlock in dev_mc_unsync C cause+fix 78 101d 116d 63d be74294f net: get rid of lockdep_set_class_and_subclass()
possible deadlock in lock_trace (3) syz cause+fix 69 202d 336d 63d 2db9dbf7 proc: Use new infrastructure to fix deadlocks in execve
possible deadlock in do_io_accounting (3) C cause+fix 39 209d 299d 63d 76518d37 proc: io_accounting: Use new infrastructure to fix deadlocks in execve
possible deadlock in proc_pid_personality syz cause+fix 3 218d 228d 63d 2db9dbf7 proc: Use new infrastructure to fix deadlocks in execve
WARNING: bad unlock balance in rcu_lock_release C cause+fix 1433 204d 485d 63d 10476e63 locking/lockdep: Fix bad recursion pattern
WARNING in hsr_addr_subst_dest C cause+fix 8639 200d 657d 63d 4b793acd hsr: use netdev_err() instead of WARN_ONCE()
WARNING: locking bug in try_to_grab_pending syz cause+fix 1 153d 615d 63d 13788174 tipc: block BH before using dst_cache
KASAN: stack-out-of-bounds Read in update_stack_state C cause+fix 388 278d 972d 63d init, tracing: Add initcall trace events
WARNING: bad unlock balance in rcu_core C cause+fix 3578 200d 556d 63d 10476e63 locking/lockdep: Fix bad recursion pattern
general protection fault in qrtr_endpoint_post C cause+fix 54 101d 119d 70d 8ff41cc2 net: qrtr: Fix an out of bounds read qrtr_endpoint_post()
invalid opcode in __phys_addr (2) 1 114d 114d 77d c4e8fa90 netfilter: ipset: call ip_set_free() instead of kfree()
PANIC: double fault in fixup_bad_iret C cause 11753 104d 144d 81d 5144f8a8 compiler_types.h: Add __no_sanitize_{address,undefined} to noinstr
general protection fault in __apic_accept_irq (2) C cause 9 118d 114d 81d 9d3c447c KVM: X86: Fix async pf caused null-ptr-deref
KCSAN: data-race in copy_process / release_task 154 110d 239d 81d c17d1a3a fork: annotate data race in copy_process()
KASAN: use-after-free Read in dmabuffs_dname 1 232d 228d 81d 4ab59c3c dma-buf: Move dma_buf_release() from fops to dentry_ops
WARNING in enqueue_task_dl C cause 13 125d 702d 81d 740797ce sched/core: Fix PI boosting between RT and DEADLINE tasks
KCSAN: data-race in copy_process / copy_process (2) 294 111d 288d 81d c17d1a3a fork: annotate data race in copy_process()
PANIC: double fault in check_preemption_disabled C 2181 112d 117d 81d c7aadc09 x86/entry: Increase entry_stack size to a full page
memory leak in nbd_add_socket C 1 203d 203d 81d 579dd91a nbd: Fix memory leak in nbd_add_socket
WARNING in xfrm_policy_insert C cause+fix 6 127d 980d 84d ed17b8d3 xfrm: fix a warning in xfrm_policy_insert_list
BUG: unable to handle kernel paging request in netif_receive_generic_xdp C cause+fix 160 139d 275d 85d 96aa1b22 tun: correct header offsets in napi frags mode
WARNING in iomap_apply C cause 25 153d 193d 92d 175efa81 ext4: fix EXT4_MAX_LOGICAL_BLOCK macro ext4: fix EXT4_MAX_LOGICAL_BLOCK macro
KASAN: use-after-free Read in sock_def_write_space C cause 67 93d 458d 93d a9b11101 llc: make sure applications use ARPHRD_ETHER
KASAN: slab-out-of-bounds Read in qrtr_endpoint_post C 8 115d 116d 93d 8ff41cc2 net: qrtr: Fix an out of bounds read qrtr_endpoint_post()
memory leak in qdisc_create_dflt C 1 112d 108d 93d 306381ae net_sched: fix a memory leak in atm_tc_init()
KASAN: vmalloc-out-of-bounds Read in netdev_name_node_lookup_rcu 1 114d 113d 93d bf64ff4c genetlink: get rid of family->attrbuf
WARNING in hsr_dev_finalize C cause 1546 101d 116d 93d ccfc9df1 hsr: fix interface leak in error path of hsr_dev_finalize()
kernel BUG at net/l2tp/l2tp_core.c:LINE! C 10 117d 113d 93d c9a368f1 bpf: net: Avoid incorrect bpf_sk_reuseport_detach call
KASAN: vmalloc-out-of-bounds Read in tipc_nl_publ_dump C 22 98d 116d 93d bf64ff4c genetlink: get rid of family->attrbuf
KASAN: use-after-free Read in netdev_name_node_lookup_rcu C cause 17 102d 113d 93d bf64ff4c genetlink: get rid of family->attrbuf
KASAN: use-after-free Read in nl8NUM_dump_wpan_phy (2) C 18 103d 116d 93d bf64ff4c genetlink: get rid of family->attrbuf
possible deadlock in dev_uc_sync_multiple (2) 26 103d 114d 93d be74294f net: get rid of lockdep_set_class_and_subclass()
KASAN: vmalloc-out-of-bounds Read in __nla_validate_parse 7 99d 116d 93d bf64ff4c genetlink: get rid of family->attrbuf
KASAN: use-after-free Read in tipc_nl_publ_dump (2) C 14 102d 113d 93d bf64ff4c genetlink: get rid of family->attrbuf
KASAN: use-after-free Read in tipc_nl_node_dump_monitor_peer (2) C 54 101d 116d 93d bf64ff4c genetlink: get rid of family->attrbuf
KASAN: use-after-free Read in tipc_udp_nl_dump_remoteip (2) C 9 101d 120d 93d bf64ff4c genetlink: get rid of family->attrbuf
KASAN: use-after-free Read in devlink_get_from_attrs C 25 101d 113d 93d bf64ff4c genetlink: get rid of family->attrbuf
WARNING in warn_bad_map 1 125d 121d 93d 9c29e361 mptcp: fix DSS map generation on fin retransmission
KASAN: vmalloc-out-of-bounds Read in nl8NUM_dump_wpan_phy C 145 98d 119d 93d bf64ff4c genetlink: get rid of family->attrbuf
KASAN: vmalloc-out-of-bounds Read in __cfg8NUM_wpan_dev_from_attrs 4 102d 116d 93d bf64ff4c genetlink: get rid of family->attrbuf
KASAN: use-after-free Read in tipc_nl_node_dump_link C cause 10 107d 116d 93d bf64ff4c genetlink: get rid of family->attrbuf
KASAN: use-after-free Read in dev_get_by_name C 4 108d 113d 93d bf64ff4c genetlink: get rid of family->attrbuf
KASAN: vmalloc-out-of-bounds Read in tipc_nl_node_dump_monitor_peer C cause 9 101d 119d 93d bf64ff4c genetlink: get rid of family->attrbuf
BUG: unable to handle kernel NULL pointer dereference in tomoyo_domain_quota_is_ok (2) 7 117d 131d 95d 3021e692 kcov: check kcov_softirq in kcov_remote_stop()
general protection fault in unpin_user_pages C cause 13 153d 153d 95d f78cdbd7 rds: fix crash in rds_info_getsockopt()
KASAN: use-after-free Write in bpf_link_put 2 172d 174d 95d 138c6767 bpf: Fix use-after-free of bpf_link when priming half-fails
KASAN: use-after-free Write in fsnotify_detach_connector_from_object C cause 4 126d 131d 95d ef1548ad proc: Use new_inode not new_inode_pseudo
KASAN: use-after-free Read in ip_icmp_error C cause 14 147d 147d 95d 23917494 tcp: tcp_v4_err() icmp skb is named icmp_skb
BUG: unable to handle kernel NULL pointer dereference in schedule_timeout 1 116d 116d 95d 3021e692 kcov: check kcov_softirq in kcov_remote_stop()
KASAN: use-after-free Write in ath9k_htc_rx_msg C 93 131d 208d 95d e4ff08a4 ath9k: Fix use-after-free Write in ath9k_htc_rx_msg
BUG: using smp_processor_id() in preemptible [ADDR] code: syz-executor C cause 22297 141d 479d 95d 13788174 tipc: block BH before using dst_cache
KASAN: slab-out-of-bounds Read in vsscanf C cause 61 105d 208d 95d 84e99e58 Smack: slab-out-of-bounds in vsscanf
KASAN: slab-out-of-bounds Read in ip_icmp_error C cause 13 147d 147d 95d 23917494 tcp: tcp_v4_err() icmp skb is named icmp_skb
WARNING: proc registration bug in snmp6_register_dev C cause 14 123d 189d 95d de0083c7 hsr: avoid to create proc file after unregister
KASAN: null-ptr-deref Write in choke_reset C cause 1441 151d 185d 95d 8738c85c sch_choke: avoid potential panic in choke_reset()
KASAN: slab-out-of-bounds Write in snd_usb_mixer_notify_id C cause 39 114d 119d 95d 220345e9 ALSA: usb-audio: Fix OOB access of mixer element list
BUG: unable to handle kernel NULL pointer dereference in number 1 125d 121d 95d 3021e692 kcov: check kcov_softirq in kcov_remote_stop()
KASAN: slab-out-of-bounds Write in snd_usb_mixer_interrupt C cause 5 117d 119d 95d 220345e9 ALSA: usb-audio: Fix OOB access of mixer element list
KASAN: use-after-free Read in vkms_dumb_create syz cause 2 181d 177d 95d 0ea2ea42 drm/vkms: Hold gem object while still in-use
BUG: unable to handle kernel NULL pointer dereference in check_preemption_disabled (3) 3 125d 126d 95d 3021e692 kcov: check kcov_softirq in kcov_remote_stop()
KASAN: use-after-free Read in inet_diag_bc_sk C cause 30 170d 172d 95d ee1bd483 inet_diag: bc: read cgroup id only for full sockets
memory leak in ctnetlink_del_conntrack C 1 136d 133d 95d 6c2d2176 netfilter: ctnetlink: memleak in filter initialization error path
INFO: rcu detected stall in inet_sendmsg (2) 13 97d 181d 95d df4953e4 sch_sfq: validate silly quantum values
linux-next boot error: WARNING: suspicious RCU usage in ipmr_get_table 60 167d 176d 95d 7013908c ipmr: Add lockdep expression to ipmr_for_each_table macro
BUG: unable to handle kernel NULL pointer dereference in dev_ifconf 1 126d 126d 95d 3021e692 kcov: check kcov_softirq in kcov_remote_stop()
BUG: using smp_processor_id() in preemptible [ADDR] code: /NUM 1 153d 153d 95d 13788174 tipc: block BH before using dst_cache
BUG: MAX_LOCKDEP_CHAINS too low! C cause 17240 95d 754d 95d e7511f56 bonding: remove useless stats_lock_key 1a33e10e net: partially revert dynamic lockdep key changes
INFO: task hung in locks_remove_posix syz 2231 130d 153d 95d 187b96db x86/unwind/orc: Fix unwind_get_return_address_ptr() for inactive tasks
WARNING: refcount bug in crypto_mod_get C cause 2 161d 172d 95d 6603523b crypto: api - Fix use-after-free and race in crypto_spawn_alg
BUG: unable to handle kernel NULL pointer dereference in mpihelp_addmul_1 1 126d 126d 95d 3021e692 kcov: check kcov_softirq in kcov_remote_stop()
KASAN: slab-out-of-bounds Write in setup_udp_tunnel_sock (3) 1 145d 145d 95d d9a81a22 l2tp: add sk_family checks to l2tp_validate_socket
linux-next test error: BUG: using smp_processor_id() in preemptible [ADDR] code: syz-fuzzer/6792 1 140d 140d 95d 81198536 ext4: mballoc: Use this_cpu_read instead of this_cpu_ptr
KCSAN: data-race in __fat_write_inode / fat12_ent_get 2 207d 200d 95d b1b65750 fat: don't allow to mount if the FAT length == 0
KASAN: stack-out-of-bounds Write in ath9k_hif_usb_rx_cb C 57 131d 204d 95d 19d6c375 ath9x: Fix stack-out-of-bounds Write in ath9k_hif_usb_rx_cb
KASAN: slab-out-of-bounds Read in ovl_check_fb_len syz cause 3 152d 151d 95d 522f6e6c ovl: fix out of bounds access warning in ovl_check_fb_len()
KASAN: use-after-free Read in usblp_bulk_read 7 105d 182d 95d 296a193b usblp: poison URBs upon disconnect
BUG: unable to handle kernel NULL pointer dereference in alloc_pages_vma 1 125d 121d 95d 3021e692 kcov: check kcov_softirq in kcov_remote_stop()
linux-next boot error: general protection fault in tomoyo_get_local_path 18 152d 158d 95d 9d78edea proc: proc_pid_ns takes super_block as an argument
KASAN: use-after-free Read in htc_connect_service C 41041 130d 208d 95d ced21a4c ath9k: Fix use-after-free Read in htc_connect_service
KMSAN: uninit-value in tbf_enqueue 21 95d 182d 95d 9274124f net: stricter validation of untrusted gso packets
general protection fault in ima_free_template_entry C cause 3 118d 138d 95d 42413b49 ima: Directly free *entry in ima_alloc_init_template() if digests is NULL
WARNING in kvm_inject_emulated_page_fault C cause 20 119d 139d 95d 7a35e515 KVM: VMX: Properly handle kvm_read/write_guest_virt*() result
general protection fault in kobject_get (2) 2 125d 154d 95d 11a0ae4c RDMA: Allow ib_client's to fail when add() is called
general protection fault in fq_codel_enqueue C cause 25 100d 185d 95d 9274124f net: stricter validation of untrusted gso packets
BUG: unable to handle kernel NULL pointer dereference in create_empty_buffers 1 137d 133d 95d 3021e692 kcov: check kcov_softirq in kcov_remote_stop()
memory leak in crypto_create_tfm C 14 123d 140d 95d 819966c0 crypto: drbg - always try to free Jitter RNG instance
WARNING in memtype_reserve C cause 600 156d 165d 95d a0e710a7 USB: usbfs: fix mmap dma mismatch
general protection fault in put_cmsg C cause 3 161d 161d 95d 1b2f08df ipv6: set msg_control_is_user in do_ipv6_getsockopt
WARNING in usbhid_raw_request/usb_submit_urb (3) syz 18 174d 280d 95d ac854131 USB: core: Fix misleading driver bug report
memory leak in nf_tables_parse_netdev_hooks (3) C 1 136d 133d 95d 3003055f netfilter: nf_tables: hook list memleak in flowtable deletion
general protection fault in proc_kill_sb 8 121d 132d 95d 058f2e4d proc: s_fs_info may be NULL when proc_kill_sb is called
INFO: trying to register non-static key in io_cqring_ev_posted (3) C cause 3 154d 157d 95d 583863ed io_uring: initialize ctx->sqo_wait earlier
BUG: unable to handle kernel paging request in do_xdp_generic C cause+fix 7444 169d 276d 95d 96aa1b22 tun: correct header offsets in napi frags mode
KASAN: slab-out-of-bounds Read in inet_diag_bc_sk C cause 45 170d 172d 95d ee1bd483 inet_diag: bc: read cgroup id only for full sockets
BUG: stack guard page was hit in deref_stack_reg 2 160d 220d 95d dd912306 net: fix a potential recursive NETDEV_FEAT_CHANGE
INFO: task syz-executor can't die for more than 143 seconds. (2) C cause 2512 96d 364d 95d 566d1362 pipe: Fix pipe_full() test in opipe_prep().
BUG: unable to handle kernel NULL pointer dereference in debug_smp_processor_id (2) 3 117d 125d 95d 3021e692 kcov: check kcov_softirq in kcov_remote_stop()
net-next test error: KASAN: use-after-free Write in afs_wake_up_async_call 60 117d 125d 95d 0041cd5a rxrpc: Fix notification call on completion of discarded calls
BUG: unable to handle kernel NULL pointer dereference in net_rx_queue_update_kobjects 1 125d 125d 95d 3021e692 kcov: check kcov_softirq in kcov_remote_stop()
general protection fault in erspan_validate C cause 520 161d 168d 95d 51fa960d erspan: Check IFLA_GRE_ERSPAN_VER is set.
bpf test error: BUG: using smp_processor_id() in preemptible code in ext4_mb_new_blocks 48 125d 127d 95d 81198536 ext4: mballoc: Use this_cpu_read instead of this_cpu_ptr
kernel BUG at arch/x86/mm/physaddr.c:LINE! (5) C cause 241 100d 173d 95d 57d38f26 vt: fix unicode console freeing with a common interface
WARNING: refcount bug in crypto_destroy_tfm C cause 4 175d 197d 95d 6603523b crypto: api - Fix use-after-free and race in crypto_spawn_alg
general protection fault in inet_unhash C cause 40 117d 145d 95d 02c71b14 l2tp: do not use inet_hash()/inet_unhash()
BUG: unable to handle kernel NULL pointer dereference in direct_page_fault 1 125d 121d 95d 3021e692 kcov: check kcov_softirq in kcov_remote_stop()
linux-next boot error: WARNING: suspicious RCU usage in bpq_device_event 6 158d 159d 95d 95f59bf8 drivers: net: hamradio: Fix suspicious RCU usage warning in bpqether.c
BUG: unable to handle kernel NULL pointer dereference in try_async_pf 1 125d 121d 95d 3021e692 kcov: check kcov_softirq in kcov_remote_stop()
BUG: unable to handle kernel NULL pointer dereference in unlock_page 1 127d 127d 95d 3021e692 kcov: check kcov_softirq in kcov_remote_stop()
KASAN: use-after-free Read in rpc_net_ns syz cause 10 161d 167d 95d 31e9a7f3 SUNRPC: fix use-after-free in rpc_free_client_work()
WARNING in tipc_msg_append C cause 107 122d 136d 95d c9aa81fa tipc: fix kernel WARNING in tipc_msg_append()
BUG: unable to handle kernel NULL pointer dereference in __es_insert_extent 1 128d 128d 95d 3021e692 kcov: check kcov_softirq in kcov_remote_stop()
bpf-next test error: BUG: using smp_processor_id() in preemptible code in ext4_mb_new_blocks 90 126d 132d 95d 81198536 ext4: mballoc: Use this_cpu_read instead of this_cpu_ptr
general protection fault in cfg80211_dev_rename 1 165d 161d 95d 0bbab5f0 cfg80211: fix debugfs rename crash
KASAN: slab-out-of-bounds Read in garmin_read_process C 1 213d 213d 95d e9b3c610 USB: serial: garmin_gps: add sanity checking for data length
net-next test error: BUG: using smp_processor_id() in preemptible code in corrupted 4 129d 130d 95d 81198536 ext4: mballoc: Use this_cpu_read instead of this_cpu_ptr
KASAN: use-after-free Read in usbhid_close (3) C 6 169d 196d 95d 0ed08fad HID: usbhid: Fix race between usbhid_close() and usbhid_stop()
BUG: unable to handle kernel NULL pointer dereference in kvm_vm_ioctl 1 125d 125d 95d 3021e692 kcov: check kcov_softirq in kcov_remote_stop()
general protection fault in skb_clone (3) 44 146d 148d 95d 23917494 tcp: tcp_v4_err() icmp skb is named icmp_skb
kernel BUG at arch/x86/kvm/mmu/mmu.c:LINE! (2) C cause 46328 116d 147d 95d 7d2e8748 KVM: x86: Initialize tdp_level during vCPU creation
KMSAN: uninit-value in do_tcp_getsockopt 5 108d 160d 95d e776af60 net-backports: tcp: fix error recovery in tcp_zerocopy_receive()
linux-next test error: WARNING: suspicious RCU usage in ipmr_device_event 24 177d 182d 95d a14fbcd4 ipmr: Fix RCU list debugging warning
net test error: KASAN: null-ptr-deref Write in x25_disconnect 12 175d 176d 95d 8999dc89 net/x25: Fix null-ptr-deref in x25_disconnect
BUG: unable to handle kernel NULL pointer dereference in kvm_vcpu_gfn_to_memslot 1 125d 125d 95d 3021e692 kcov: check kcov_softirq in kcov_remote_stop()
memory leak in genl_rcv_msg C 116 131d 321d 95d c36f0555 genetlink: fix memory leaks in genl_family_rcv_msg_dumpit()
KMSAN: uninit-value in __dev_get_by_name C 2 157d 157d 95d 687775ce ax25: fix setsockopt(SO_BINDTODEVICE)
general protection fault in start_creating C cause 106 117d 147d 95d d56f5136 KVM: let kvm_destroy_vm_debugfs clean up vCPU debugfs directories
BUG: unable to handle kernel NULL pointer dereference in udc_bind_to_driver 1 124d 123d 95d 3021e692 kcov: check kcov_softirq in kcov_remote_stop()
KCSAN: data-race in __rcu_read_unlock / sync_rcu_exp_select_node_cpus (2) 9 163d 330d 95d 314eeb43 rcu: Add *_ONCE() and data_race() to rcu_node ->exp_tasks plus locking
bpf test error: KASAN: null-ptr-deref Write in x25_disconnect 78 163d 176d 95d 8999dc89 net/x25: Fix null-ptr-deref in x25_disconnect
KASAN: slab-out-of-bounds Read in fl6_update_dst C cause 43 117d 162d 95d bb986a50 seg6: fix seg6_validate_srh() to avoid slab-out-of-bounds
general protection fault in __tipc_sendstream C cause 444 116d 146d 95d 4c21daae tipc: Fix NULL pointer dereference in __tipc_sendstream() 5e9eeccc tipc: fix NULL pointer dereference in streaming
net test error: BUG: using smp_processor_id() in preemptible code in corrupted 3 126d 128d 95d 81198536 ext4: mballoc: Use this_cpu_read instead of this_cpu_ptr
KASAN: use-after-free Read in ath9k_wmi_ctrl_rx C 1 208d 207d 95d abeaa850 ath9k: Fix use-after-free Read in ath9k_wmi_ctrl_rx
upstream test error: BUG: using smp_processor_id() in preemptible code in ext4_map_blocks 1 129d 129d 95d 81198536 ext4: mballoc: Use this_cpu_read instead of this_cpu_ptr
general protection fault in sock_hash_free 1 140d 140d 95d 75e68e5b bpf, sockhash: Synchronize delete from bucket list on map free
KASAN: slab-out-of-bounds Read in skb_gso_transport_seglen C cause 4 165d 184d 95d 9274124f net: stricter validation of untrusted gso packets
BUG: unable to handle kernel NULL pointer dereference in local_bh_disable 1 126d 126d 95d 3021e692 kcov: check kcov_softirq in kcov_remote_stop()
BUG: unable to handle kernel NULL pointer dereference in generic_perform_write (2) C cause 3 192d 190d 95d 829b37b8 ext4: avoid race conditions when remounting with options that change dax
BUG: stack guard page was hit in update_stack_state 5 246d 260d 95d dd912306 net: fix a potential recursive NETDEV_FEAT_CHANGE
WARNING: locking bug in dev_mc_seq_show C cause 3 136d 147d 95d 845e0ebb net: change addr_list_lock back to static key
general protection fault in inet_diag_bc_sk 12 170d 173d 95d ee1bd483 inet_diag: bc: read cgroup id only for full sockets
general protection fault in selinux_socket_recvmsg C cause 4 151d 151d 95d 0a82e230 mptcp: avoid NULL-ptr derefence on fallback
KMSAN: uninit-value in skbprio_enqueue syz 11 110d 173d 95d 2761121a net_sched: sch_skbprio: add message validation to skbprio_change()
general protection fault in ath9k_hif_usb_rx_cb C 913 95d 208d 95d 2bbcaaee ath9k: Fix general protection fault in ath9k_hif_usb_rx_cb
BUG: soft lockup in wg_packet_tx_worker 1 167d 167d 95d df4953e4 sch_sfq: validate silly quantum values
INFO: rcu detected stall in wg_packet_tx_worker C cause 24 124d 177d 95d df4953e4 sch_sfq: validate silly quantum values
linux-next test error: KASAN: use-after-free Write in afs_wake_up_async_call 111 121d 130d 95d 0041cd5a rxrpc: Fix notification call on completion of discarded calls
BUG: unable to handle kernel NULL pointer dereference in smp_call_function_many_cond (2) 1 119d 119d 95d 3021e692 kcov: check kcov_softirq in kcov_remote_stop()
KASAN: slab-out-of-bounds Read in br_mrp_parse C cause 5 152d 153d 95d 617504c6 bridge: mrp: Fix out-of-bounds read in br_mrp_parse
BUG: unable to handle kernel NULL pointer dereference in __ext4_journal_start_sb 1 125d 125d 95d 3021e692 kcov: check kcov_softirq in kcov_remote_stop()
INFO: task hung in blkdev_issue_flush (2) C cause+fix 3 318d 476d 112d 2b5c8f00 nbd: replace kill_bdev() with __invalidate_device() again
KASAN: use-after-free Read in blkdev_direct_IO C cause+fix 8 440d 445d 112d 0eb6ddfb block: Fix __blkdev_direct_IO() for bio fragments
KASAN: use-after-free Read in blkdev_bio_end_io C cause+fix 13 431d 442d 112d 7b6620d7 block: remove REQ_NOWAIT_INLINE
KCSAN: data-race in tcp_add_backlog / tcp_try_rmem_schedule 3 374d 379d 112d ebb3b78d tcp: annotate sk->sk_rcvbuf lockless reads
memory leak in bio_clone_fast C 1 434d 434d 112d 7b6620d7 block: remove REQ_NOWAIT_INLINE
WARNING: refcount bug in blk_mq_free_request (2) C cause+fix 5 442d 442d 112d de6346ec nbd: protect cmd->status with cmd->lock
memory leak in bio_copy_user_iov C cause 34 305d 490d 112d 3b7995a9 block: fix memleak when __blk_rq_map_user_iov() is failed
WARNING in sk_stream_kill_queues (4) C cause+fix 6 235d 239d 112d b6f61189 ipv6: restrict IPV6_ADDRFORM operation
WARNING: bad unlock balance in get_user_pages_unlocked 1 200d 195d 114d c7b6a566 mm/gup: Mark lock taken only after a successful retake
WARNING in __mmdrop syz cause 14 450d 460d 114d 3d2c7d37 Revert "vhost: access vq metadata through kernel virtual address"
WARNING in wa_nep_create/usb_submit_urb C 114 184d 468d 114d caa6772d Staging: remove wusbcore and UWB from the kernel tree.
upstream boot error: KASAN: slab-out-of-bounds Write in virtio_gpu_object_create 6 189d 198d 114d b513b0d4 drm/virtio: fix OOB in virtio_gpu_object_create
WARNING in kfree (2) syz cause+fix 1 225d 224d 114d 0d1c3530 net_sched: keep alloc_hash updated after hash allocation
WARNING in hwarc_neep_init/usb_submit_urb C 1 219d 218d 114d caa6772d Staging: remove wusbcore and UWB from the kernel tree.
BUG: corrupted list in __uwb_rc_neh_rm C 9 190d 225d 114d caa6772d Staging: remove wusbcore and UWB from the kernel tree.
KASAN: null-ptr-deref Write in blk_mq_map_swqueue C cause 3 208d 208d 117d d0930bb8 blk-mq: Fix a recently introduced regression in blk_mq_realloc_hw_ctxs()
KASAN: use-after-free Read in chaoskey_disconnect C 44 328d 356d 124d 93ddb1f5 USB: chaoskey: fix use-after-free on release
KMSAN: uninit-value in etf_enqueue_timesortedlist 3 166d 173d 124d a1211bf9 sched: etf: do not assume all sockets are full blown
KMSAN: uninit-value in audit_log_vformat (2) C 104 164d 184d 124d 763dafc5 audit: check the length of userspace generated audit records
general protection fault in macvlan_device_event 86 173d 187d 124d 4dee15b4 macvlan: fix null dereference in macvlan_device_event()
WARNING in __vm_enough_memory (2) syz cause 6 185d 189d 124d dadbd85f mm: Fix MREMAP_DONTUNMAP accounting on VMA merge
WARNING in hwsim_new_radio_nl C cause 3 191d 193d 124d 7ea86204 mac80211_hwsim: Use kstrndup() in place of kasprintf()
KASAN: invalid-free in nf_tables_newset C cause 21 187d 203d 124d 7fb6f78d netfilter: nf_tables: do not leave dangling pointer in nf_tables_set_alloc_name
WARNING: bad unlock balance in mptcp_poll C cause 10 189d 192d 124d e154659b mptcp: fix double-unlock in mptcp_poll
KASAN: use-after-free Read in dput (2) syz cause 4 188d 188d 124d 4fa3b1c4 proc: Handle umounts cleanly
possible deadlock in user_shm_lock 12 152d 190d 124d ea0dfeb4 shmem: fix possible deadlocks on shmlock_user_lock
possible deadlock in shmem_mfill_atomic_pte C cause 82 152d 203d 124d 94b7cc01 mm: shmem: disable interrupt when acquiring info->lock in userfaultfd_copy path
KASAN: slab-out-of-bounds Read in __kvm_gfn_to_hva_cache_init C cause 1537 151d 196d 124d b6467ab1 KVM: Check validity of resolved slot when searching memslots
WARNING in set_precision (2) C cause 117 186d 284d 124d 7ea86204 mac80211_hwsim: Use kstrndup() in place of kasprintf()
INFO: rcu detected stall in io_uring_release syz 15 144d 185d 124d 3fd44c86 io_uring: use cond_resched() in io_ring_ctx_wait_and_kill()
KASAN: use-after-free Read in report_sock_error 2 178d 182d 124d a1211bf9 sched: etf: do not assume all sockets are full blown
linux-next test error: WARNING: suspicious RCU usage in ovs_ct_exit 132 183d 221d 124d 27de77ce net: openvswitch: ovs_ct_exit to be done under ovs_lock
WARNING in nf_nat_unregister_fn 1 187d 187d 124d b4faef17 netfilter: nat: fix error handling upon registering inet hook
possible deadlock in shmem_uncharge C cause 101 153d 191d 124d ea0dfeb4 shmem: fix possible deadlocks on shmlock_user_lock
possible deadlock in ext4_evict_inode syz cause+fix 38 737d 775d 151d e5bfad3d smack: use GFP_NOFS while holding inode_smack::smk_lock
general protection fault in kobject_get 4 167d 233d 163d 5bdfa854 RDMA/mad: Do not crash if the rdma device does not have a umad interface
KASAN: use-after-free Write in tcindex_set_parms C cause 13 204d 224d 163d 0d1c3530 net_sched: keep alloc_hash updated after hash allocation
WARNING: kobject bug in add_one_compat_dev 2 235d 237d 163d f2f2b3bb RDMA/core: Fix missing error check on dev_set_name()
possible deadlock in io_submit_one (3) syz cause 45 193d 201d 163d 63f818f4 proc: Use a dedicated lock in struct pid
INFO: task hung in io_queue_file_removal C cause 16 206d 214d 163d 4afdb733 io-uring: drop completion when removing file
KASAN: slab-out-of-bounds Write in tcindex_set_parms C cause 10 205d 226d 163d 0d1c3530 net_sched: keep alloc_hash updated after hash allocation
KASAN: use-after-free Read in tcindex_dump syz 1 226d 224d 163d b1be2e8c net_sched: hold rtnl lock in tcindex_partial_destroy_work()
KMSAN: uninit-value in simple_attr_read C 6 167d 237d 163d a65cab7d libfs: fix infoleak in simple_attr_read()
general protection fault in macsec_upd_offload C cause 5 202d 201d 163d aa81700c macsec: fix NULL dereference in macsec_upd_offload()
general protection fault in hfsc_unbind_tcf 1 215d 211d 163d ef299cc3 net_sched: cls_route: remove the right filter from hashtable
memory leak in erase_aeb C 109 164d 317d 163d c16f39d1 ubi: fastmap: Free unused fastmap anchor peb during detach
BUG: unable to handle kernel NULL pointer dereference in handle_external_interrupt_irqoff C cause 6404 208d 213d 163d 428b8f1d KVM: VMX: don't allow memory operands for inline asm that modifies SP
possible deadlock in send_sigurg C cause 65 187d 201d 163d 63f818f4 proc: Use a dedicated lock in struct pid
WARNING: bad unlock balance in ucma_event_handler C cause 143 196d 860d 163d 7c119107 RDMA/ucma: Put a lock around every call to the rdma_cm layer
WARNING in geneve_exit_batch_net (2) C cause 9 211d 235d 163d 0fda7600 geneve: move debug check after netdev unregister
general protection fault in fbcon_switch 1 208d 207d 163d b139f8b0 fbcon: fix null-ptr-deref in fbcon_switch
KASAN: invalid-free in tcf_exts_destroy C cause 1 227d 226d 163d 0d1c3530 net_sched: keep alloc_hash updated after hash allocation
KASAN: use-after-free Read in __hrtimer_run_queues C cause 299 196d 203d 163d 73d20564 hrtimer: Don't dereference the hrtimer pointer after the callback
WARNING: bad unlock balance in ucma_destroy_id syz cause 44 231d 784d 163d 7c119107 RDMA/ucma: Put a lock around every call to the rdma_cm layer
WARNING: bad unlock balance in __get_user_pages_remote C cause 15 196d 196d 163d c7b6a566 mm/gup: Mark lock taken only after a successful retake
INFO: trying to register non-static key in __io_uring_register C cause 39 195d 197d 163d f7fe9346 io_uring: initialize fixed_file_data lock
KASAN: slab-out-of-bounds Read in selinux_xfrm_alloc_user C cause 1 205d 204d 163d a1a7e3a3 xfrm: add the missing verify_sec_ctx_len check in xfrm_add_acquire
KASAN: stack-out-of-bounds Write in mpol_to_str C cause 23 205d 209d 163d aa9f7d51 mm: mempolicy: require at least one nodeid for MPOL_PREFERRED
general protection fault in do_tcp_getsockopt (2) C cause 1 216d 216d 163d 6cd6cbf5 net-backports: tcp: repair: fix TCP_QUEUE_SEQ implementation
KASAN: use-after-free Read in addr_handler syz cause 12 195d 677d 163d 7c119107 RDMA/ucma: Put a lock around every call to the rdma_cm layer
INFO: trying to register non-static key in io_cqring_ev_posted (2) C cause 42 167d 204d 163d 10bea96d io_uring: add missing finish_wait() in io_sq_thread()
KASAN: use-after-free Read in cma_cancel_operation C cause 617 251d 932d 163d 7c119107 RDMA/ucma: Put a lock around every call to the rdma_cm layer
BUG: unable to handle kernel paging request in kernel_get_mempolicy C cause 1 200d 197d 163d ba841078 mm/mempolicy: Allow lookup_node() to handle fatal signal
WARNING: ODEBUG bug in rfcomm_dev_ioctl 1 228d 228d 163d 71811cac Bluetooth: RFCOMM: fix ODEBUG bug in rfcomm_dev_ioctl
KASAN: slab-out-of-bounds Read in cgroup_file_notify C cause 1 228d 224d 163d 726b7bbe hugetlb_cgroup: fix illegal access to memory
WARNING: refcount bug in __tcf_action_put syz 1 225d 224d 163d 0d1c3530 net_sched: keep alloc_hash updated after hash allocation
KASAN: use-after-free Read in rdma_listen (2) C cause 354 202d 571d 163d 7c119107 RDMA/ucma: Put a lock around every call to the rdma_cm layer
WARNING: kobject bug in ib_register_device C cause 14 201d 240d 163d 7aefa623 RDMA/nl: Do not permit empty devices names during RDMA_NLDEV_CMD_NEWLINK/SET
general protection fault in ethnl_parse_header C cause 9 210d 215d 163d 55b474c4 netlink: check for null extack in cookie helpers
WARNING in vcpu_enter_guest syz cause 19 213d 327d 163d d3329454 KVM: x86: remove bogus user-triggerable WARN_ON
general protection fault in hsr_addr_is_self (2) 1 215d 215d 163d 3a303cfd hsr: fix general protection fault in hsr_addr_is_self()
linux-next test error: KASAN: use-after-free Read in l2cap_sock_release 12 258d 260d 163d 2a154903 Bluetooth: prefetch channel before killing sock
possible deadlock in send_sigio C cause 7 191d 200d 163d 63f818f4 proc: Use a dedicated lock in struct pid
WARNING: ODEBUG bug in __init_work syz cause 1 212d 211d 163d ef299cc3 net_sched: cls_route: remove the right filter from hashtable
WARNING in call_rcu C cause 8 217d 224d 163d ef299cc3 net_sched: cls_route: remove the right filter from hashtable
WARNING: ODEBUG bug in prism2sta_disconnect_usb 1 213d 211d 163d a1f165a6 staging: wlan-ng: fix ODEBUG bug in prism2sta_disconnect_usb
WARNING: ODEBUG bug in tcf_queue_work C cause 30 229d 229d 163d ef299cc3 net_sched: cls_route: remove the right filter from hashtable
WARNING in __blk_mq_delay_run_hw_queue C cause+fix 6 277d 382d 163d 6e66b493 blk-mq: Keep set->nr_hw_queues and set->map[].nr_queues in sync
general protection fault in qdisc_hash_add C cause 47 222d 223d 163d 7c4046b1 Revert "net: sched: make newly activated qdiscs visible"
WARNING: refcount bug in tcindex_data_put C cause 27 200d 201d 163d a8eab6d3 net_sched: fix a missing refcnt in tcindex_init()
KASAN: use-after-free Read in route4_get C 8 192d 222d 163d ef299cc3 net_sched: cls_route: remove the right filter from hashtable
KASAN: use-after-free Read in __list_del_entry_valid (4) C cause 16 252d 940d 163d 7c119107 RDMA/ucma: Put a lock around every call to the rdma_cm layer
general protection fault in erspan_netlink_parms C cause 5 219d 219d 163d 32ca98fe net: ip_gre: Accept IFLA_INFO_DATA-less configuration
WARNING in kernfs_create_dir_ns C cause+fix 3 218d 479d 163d 810507fe locking/lockdep: Reuse freed chain_hlocks entries
WARNING in af_alg_make_sg C cause 13 195d 196d 163d ae46d2aa mm/gup: Let __get_user_pages_locked() return -EINTR for fatal signal
general protection fault in rdma_listen (2) syz cause 104 202d 713d 163d 7c119107 RDMA/ucma: Put a lock around every call to the rdma_cm layer
WARNING in kernfs_new_node C cause+fix 2 218d 442d 163d 810507fe locking/lockdep: Reuse freed chain_hlocks entries
possible deadlock in cma_netdev_callback C cause 1399 196d 238d 163d 33fb27fd RDMA/siw: Fix passive connection establishment
WARNING: refcount bug in sctp_wfree C cause 20 204d 225d 163d 5c3e82fe sctp: fix refcount bug in sctp_wfree
WARNING in ext4_write_inode 13 231d 238d 163d 10a98cb1 xfs: clear PF_MEMALLOC before exiting xfsaild thread
BUG: corrupted list in rdma_listen C 202 336d 915d 163d 7c119107 RDMA/ucma: Put a lock around every call to the rdma_cm layer
possible deadlock in free_ioctx_users (2) C cause 44 193d 201d 163d 63f818f4 proc: Use a dedicated lock in struct pid
WARNING: ODEBUG bug in route4_change C cause 68 200d 224d 163d ef299cc3 net_sched: cls_route: remove the right filter from hashtable
KASAN: use-after-free Read in tty_open C cause+fix 8 210d 322d 163d ca4463bf vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console
KASAN: slab-out-of-bounds Read in edge_interrupt_callback C 1 212d 211d 163d 57aa9f29 USB: serial: io_edgeport: fix slab-out-of-bounds read in edge_interrupt_callback
KMSAN: uninit-value in tcf_exts_change C 5 215d 224d 163d 0d1c3530 net_sched: keep alloc_hash updated after hash allocation
BUG: sleeping function called from invalid context in kmem_cache_alloc_node_trace C cause 364 225d 227d 163d 138470a9 net/sched: act_ct: fix lockdep splat in tcf_ct_flow_table_get
KASAN: use-after-free Write in release_tty C cause 591 200d 322d 163d ca4463bf vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console
WARNING: ODEBUG bug in tcindex_destroy_work (3) syz cause 13 203d 239d 163d 304e0242 net_sched: add a temporary refcnt for struct tcindex_data
KASAN: slab-out-of-bounds Read in hfa384x_usbin_callback C 1 214d 214d 163d 1165dd73 staging: wlan-ng: fix use-after-free Read in hfa384x_usbin_callback
KMSAN: uninit-value in macsec_handle_frame 1 213d 213d 163d b06d072c macsec: restrict to ethernet devices
WARNING: refcount bug in igmp_start_timer syz cause+fix 19 429d 794d 186d 323ebb61 net: use listified RX for handling GRO_NORMAL skbs
possible deadlock in sch_direct_xmit C cause+fix 1548 330d 1008d 186d 323ebb61 net: use listified RX for handling GRO_NORMAL skbs
KASAN: use-after-free Read in alloc_netdev_mqs 1 250d 250d 188d e08ad805 net: add strict checks in netdev_name_node_alt_destroy()
KMSAN: uninit-value in __iptunnel_pull_header C 12 220d 228d 188d 17c25caf gre: fix uninit-value in __iptunnel_pull_header
KASAN: use-after-free Read in inet_gifconf 24 242d 248d 188d 44bfa9c5 net: rtnetlink: fix bugs in rtnl_alt_ifname()
INFO: task hung in hashlimit_mt_check_common C cause 20 245d 284d 188d 8d0015a7 netfilter: xt_hashlimit: limit the max size of hashtable c4a3922d netfilter: xt_hashlimit: reduce hashlimit_mutex scope for htable_put()
divide error in wg_packet_encrypt_worker C cause 12 242d 250d 188d 175f1ca9 wireguard: send: account for mtu=0 devices
WARNING in idr_destroy C cause 5 217d 232d 188d b216a8e7 drm/lease: fix WARNING in idr_destroy
BUG: soft lockup in sys_exit_group C 6 213d 236d 188d d683469b ALSA: line6: Fix endless MIDI read loop
KASAN: use-after-free Read in ipv6_get_ifaddr 1 246d 246d 188d e08ad805 net: add strict checks in netdev_name_node_alt_destroy()
KASAN: use-after-free Read in inet_lookup_ifaddr_rcu 2 242d 244d 188d e08ad805 net: add strict checks in netdev_name_node_alt_destroy()
KASAN: use-after-free Write in hiddev_disconnect 20 216d 280d 188d 5c02c447 HID: hiddev: Fix race in in hiddev_disconnect()
KMSAN: use-after-free in netdev_state_change 2 232d 232d 188d 44bfa9c5 net: rtnetlink: fix bugs in rtnl_alt_ifname()
KMSAN: uninit-value in audit_receive C 4 239d 240d 188d 75612528 audit: always check the netlink payload length in audit_receive_msg()
WARNING: lock held when returning to user space in ovl_write_iter C cause 6 218d 233d 188d c8536804 ovl: fix lockdep warning for async write
general protection fault in vt_ioctl 1 254d 254d 188d 6cd1ed50 net-backports: vt: vt_ioctl: fix race in VT_RESIZEX
KASAN: use-after-free Read in percpu_ref_switch_to_atomic_rcu 5 234d 257d 188d c1e2148f io_uring: free fixed_file_data after RCU grace period
KASAN: use-after-free Read in rtnl_fill_ifinfo (2) 2 247d 248d 188d 44bfa9c5 net: rtnetlink: fix bugs in rtnl_alt_ifname()
INFO: task hung in hashlimit_net_exit syz cause 53 242d 251d 188d 8d0015a7 netfilter: xt_hashlimit: limit the max size of hashtable
kernel BUG at arch/x86/mm/physaddr.c:LINE! (4) C 18 207d 242d 188d 2ad3e17e audit: fix error handling in audit_data_to_entry()
KMSAN: uninit-value in slhc_compress C 3 231d 231d 188d 110a40df slip: make slhc_compress() more robust against malicious packets
WARNING: proc registration bug in hashlimit_mt_check_common C cause 320 228d 253d 188d 99b79c39 netfilter: xt_hashlimit: unregister proc file before releasing mutex
linux-next test error: WARNING in snd_pcm_plug_alloc 3 222d 222d 188d 5461e053 ALSA: pcm: oss: Remove WARNING from snd_pcm_plug_alloc() checks
WARNING: ODEBUG bug in smc_ib_remove_dev 52 219d 233d 188d ece0d7bd net/smc: cancel event worker during device removal
memory leak in dma_buf_ioctl C cause 129 239d 455d 188d d1f37226 dma-buf: free dmabuf->name in dma_buf_release()
KASAN: use-after-free Read in netdev_state_change 2 247d 248d 188d 44bfa9c5 net: rtnetlink: fix bugs in rtnl_alt_ifname()
KCSAN: data-race in snd_seq_check_queue / snd_seq_control_queue 97 189d 287d 188d bb51e669 ALSA: seq: Avoid concurrent access to queue flags
INFO: trying to register non-static key in xa_destroy C cause 46 211d 239d 188d 12e5eef0 RDMA/siw: Fix failure handling during device creation
BUG: unable to handle kernel NULL pointer dereference in inet_release syz 3 238d 239d 188d b6f61189 ipv6: restrict IPV6_ADDRFORM operation
INFO: rcu detected stall in ip_set_uadd C cause 11 233d 270d 188d f66ee041 netfilter: ipset: Fix "INFO: rcu detected stall in hash_xxx" reports
general protection fault in batadv_iv_ogm_schedule 2 242d 255d 188d 8e8ce081 batman-adv: Don't schedule OGM for disabled interface
INFO: task hung in paste_selection C cause+fix 8 255d 320d 188d e8c75a30 vt: selection, push sel_lock up
BUG: unable to handle kernel paging request in ethnl_update_bitset32 C 168 228d 240d 188d e34f1753 ethtool: limit bitset size
KASAN: use-after-free Read in ipv6_chk_addr_and_flags 1 247d 247d 188d e08ad805 net: add strict checks in netdev_name_node_alt_destroy()
KMSAN: use-after-free in find_match C 52 218d 248d 188d e08ad805 net-backports: net: add strict checks in netdev_name_node_alt_destroy()
KASAN: use-after-free Read in vgem_gem_dumb_create C cause 15 251d 263d 188d 4b848f20 drm/vgem: Close use-after-free race in vgem_gem_create
KMSAN: uninit-value in bpf_skb_load_helper_32_no_cache 2 258d 257d 188d 457fed77 net/smc: fix leak of kernel memory to user space
memory leak in nf_tables_parse_netdev_hooks (2) C 2 228d 232d 188d 2d285f26 netfilter: nf_tables: free flowtable hooks on hook register error
KMSAN: uninit-value in bond_alb_xmit syz 3 229d 231d 188d b7469e83 bonding/alb: make sure arp header is pulled before accessing it
divide error in encrypt_packet C cause 89 241d 250d 188d 175f1ca9 wireguard: send: account for mtu=0 devices
general protection fault in smc_ib_remove_dev C cause 98 228d 240d 188d a2f2ef4a net/smc: check for valid ib_client_data
possible deadlock in htab_lru_map_delete_node C cause 264 241d 247d 188d b9aff38d bpf: Fix a potential deadlock with bpf_map_do_batch
KMSAN: use-after-free in inet_gifconf 10 219d 242d 188d e08ad805 net-backports: net: add strict checks in netdev_name_node_alt_destroy()
KMSAN: use-after-free in ip6_dst_destroy C 2 221d 233d 188d 44bfa9c5 net: rtnetlink: fix bugs in rtnl_alt_ifname()
KASAN: use-after-free Read in raw_notifier 3 247d 248d 188d 44bfa9c5 net: rtnetlink: fix bugs in rtnl_alt_ifname()
memory leak in fasync_helper C 14 257d 318d 188d 67f562e3 net/smc: transfer fasync_list in case of fallback
possible deadlock in tty_unthrottle 3 212d 237d 188d e8c75a30 vt: selection, push sel_lock up
possible deadlock in inet_csk_accept C cause 992 223d 224d 188d 06669ea3 net: memcg: fix lockdep splat in inet_csk_accept()
KASAN: slab-out-of-bounds Read in ethnl_update_bitset32 syz 2 234d 240d 188d e34f1753 ethtool: limit bitset size
KMSAN: uninit-value in audit_log_vformat C 220 188d 240d 188d 75612528 audit: always check the netlink payload length in audit_receive_msg()
KASAN: use-after-free Read in dev_get_by_index_rcu 1 243d 243d 188d e08ad805 net: add strict checks in netdev_name_node_alt_destroy()
INFO: rcu detected stall in hash_ip4_gc C cause 1 270d 268d 188d f66ee041 netfilter: ipset: Fix "INFO: rcu detected stall in hash_xxx" reports
KCSAN: data-race in queue_access_lock / snd_seq_check_queue 58 228d 270d 188d bb51e669 ALSA: seq: Avoid concurrent access to queue flags
KMSAN: kernel-infoleak in tty_compat_ioctl C 162 210d 240d 188d 17329563 tty: fix compat TIOCGSERIAL leaking uninitialized memory
BUG: sleeping function called from invalid context in __kmalloc C cause 5 250d 256d 188d b27a939e ceph: canonicalize server path in place
INFO: rcu detected stall in ip_set_udel C cause 12 248d 270d 188d f66ee041 netfilter: ipset: Fix "INFO: rcu detected stall in hash_xxx" reports
general protection fault in ip_set_comment_free C cause 19 231d 268d 188d 8af1c6fb netfilter: ipset: Fix forceadd evaluation path
possible deadlock in bond_get_stats (3) syz cause 2 243d 243d 188d b3e80d44 bonding: fix lockdep warning in bond_get_stats()
general protection fault in batadv_iv_ogm_schedule_buff 24 225d 247d 188d 8e8ce081 batman-adv: Don't schedule OGM for disabled interface
KMSAN: use-after-free in veth_xmit 8 219d 234d 188d e08ad805 net-backports: net: add strict checks in netdev_name_node_alt_destroy()
KMSAN: uninit-value in kstrdup C 8 224d 251d 188d 44bfa9c5 net: rtnetlink: fix bugs in rtnl_alt_ifname()
possible deadlock in sidtab_sid2str_put C cause 1382 250d 267d 188d 39a706fb selinux: fix sidtab string cache locking
KCSAN: data-race in __snd_rawmidi_transmit_ack / snd_rawmidi_write 168 189d 315d 188d dfa9a5ef ALSA: rawmidi: Avoid bit fields for state flags
KASAN: use-after-free Read in vsscanf 2 245d 247d 188d e08ad805 net: add strict checks in netdev_name_node_alt_destroy()
KASAN: use-after-free Read in n_tty_receive_buf_common C cause 68 243d 319d 188d 07e6124a vt: selection, close sel_buffer race
KASAN: use-after-free Read in ethnl_update_bitset32 C cause 6 232d 240d 188d e34f1753 ethtool: limit bitset size
KASAN: use-after-free Read in fib_nexthop_info 1 247d 247d 188d 44bfa9c5 net: rtnetlink: fix bugs in rtnl_alt_ifname()
general protection fault in nf_flow_table_offload_setup C cause+fix 835 242d 275d 188d a7da92c2 netfilter: flowtable: skip offload setup if disabled
memory leak in nfs_fs_context_parse_monolithic C 18 223d 249d 188d 75a9b917 NFS: Fix leak of ctx->nfs_server.hostname
KASAN: slab-out-of-bounds Read in inet_gifconf 2 248d 248d 188d 44bfa9c5 net: rtnetlink: fix bugs in rtnl_alt_ifname()
KASAN: use-after-free Read in find_match C cause 142 242d 248d 188d 44bfa9c5 net: rtnetlink: fix bugs in rtnl_alt_ifname()
KMSAN: uninit-value in fat_evict_inode C 256 218d 242d 188d bc87302a fat: fix uninit-memory access for partial initialized inode
KASAN: use-after-free Read in br_dev_xmit 1 238d 238d 188d 823d81b0 net: bridge: fix stale eth hdr pointer in br_dev_xmit
KASAN: use-after-free Read in ip6_dst_destroy C cause 1 248d 248d 188d 44bfa9c5 net: rtnetlink: fix bugs in rtnl_alt_ifname()
WARNING: bad unlock balance in ovl_llseek C cause 4 220d 233d 188d 531d3040 ovl: fix lock in ovl_llseek()
KASAN: use-after-free Read in l3mdev_master_ifindex_rcu C cause+fix 13 244d 250d 188d e08ad805 net: add strict checks in netdev_name_node_alt_destroy()
KASAN: slab-out-of-bounds Read in resample_shrink C cause 5 210d 229d 188d f2ecf903 ALSA: pcm: oss: Avoid plugin buffer overflow
general protection fault in nldev_stat_set_doit C cause 8 222d 239d 188d 78f34a16 RDMA/nldev: Fix crash when set a QP to a new counter but QPN is missing
kernel panic: stack is corrupted in vhost_net_ioctl C cause 2 248d 335d 188d 42d84c84 vhost: Check docket sk_family instead of call getname
KASAN: use-after-free Read in __neigh_notify 2 247d 248d 188d 44bfa9c5 net: rtnetlink: fix bugs in rtnl_alt_ifname()
BUG: unable to handle kernel NULL pointer dereference in cipso_v4_sock_setattr C cause 8 229d 239d 188d dc24f8b4 mptcp: add dummy icsk_sync_mss()
INFO: task hung in lock_sock_nested (2) C cause 418 228d 241d 188d 3f74957f vsock: fix potential deadlock in transport->release()
KMSAN: use-after-free in l3mdev_master_ifindex_rcu C 5 219d 242d 188d e08ad805 net: add strict checks in netdev_name_node_alt_destroy()
unregister_netdevice: waiting for DEV to become free (3) C 1864 188d 250d 188d e34f1753 ethtool: limit bitset size
KMSAN: use-after-free in dev_alloc_name_ns 3 219d 232d 188d e08ad805 net: add strict checks in netdev_name_node_alt_destroy()
KCSAN: data-race in snd_seq_prioq_cell_out / snd_seq_timer_interrupt 118 189d 283d 188d dc749779 ALSA: seq: Fix concurrent access to queue current tick/time
KASAN: use-after-free Read in mld_in_v1_mode C cause 3 247d 250d 188d e08ad805 net-backports: net: add strict checks in netdev_name_node_alt_destroy()
possible deadlock in bpf_lru_push_free C cause 609 241d 247d 188d b9aff38d bpf: Fix a potential deadlock with bpf_map_do_batch
WARNING in switch_fpu_return syz cause+fix 11 260d 293d 209d 2620fe26 KVM: x86: Revert "KVM: X86: Fix fpu state crash in kvm guest"
KMSAN: use-after-free in rdma_listen C 26 229d 375d 209d 5fc01fb8 RDMA/cma: Rollback source IP address if failing to acquire device
KMSAN: uninit-value in rdma_listen C 28 386d 751d 209d 5fc01fb8 RDMA/cma: Rollback source IP address if failing to acquire device
KASAN: slab-out-of-bounds Read in bitmap_ip_add syz cause+fix 7 265d 276d 209d 32c72165 netfilter: ipset: use bitmap infrastructure completely
general protection fault in __nf_tables_chain_type_lookup 1 274d 274d 215d 82603549 netfilter: nf_tables: add __nft_chain_type_get()
KASAN: slab-out-of-bounds Read in bitmap_ip_ext_cleanup C cause+fix 8 259d 275d 217d 32c72165 netfilter: ipset: use bitmap infrastructure completely
KASAN: slab-out-of-bounds Read in bitmap_port_ext_cleanup C cause+fix 10 267d 276d 217d 32c72165 netfilter: ipset: use bitmap infrastructure completely
BUG: corrupted list in __nf_tables_abort C cause+fix 29 269d 277d 217d eb014de4 netfilter: nf_tables: autoload modules from the abort path
KASAN: slab-out-of-bounds Read in bitmap_ipmac_destroy C cause+fix 2 270d 270d 217d 32c72165 netfilter: ipset: use bitmap infrastructure completely
KASAN: slab-out-of-bounds Read in bitmap_ipmac_gc C cause+fix 70 258d 274d 217d 32c72165 netfilter: ipset: use bitmap infrastructure completely
BUG: unable to handle kernel paging request in ion_heap_sglist_zero 1 323d 323d 217d d98c9e83 kasan: fix crashes on access to memory mapped by vm_map_ram()
KASAN: slab-out-of-bounds Read in bitmap_ipmac_ext_cleanup C cause+fix 15 259d 275d 217d 32c72165 netfilter: ipset: use bitmap infrastructure completely
KASAN: slab-out-of-bounds Read in bitmap_port_destroy C cause+fix 2 271d 271d 217d 32c72165 netfilter: ipset: use bitmap infrastructure completely
general protection fault in gcmaes_crypt_by_sg (2) C cause+fix 28 275d 322d 223d db885e66 net/tls: fix async operation
possible deadlock in wg_noise_handshake_create_initiation C cause 11 257d 260d 223d ec31c267 wireguard: noise: reject peers with low order public keys
KASAN: use-after-free Read in slcan_open C cause 2 324d 323d 223d 9ebd796e can: slcan: Fix use-after-free Read in slcan_open
kernel BUG at fs/btrfs/volumes.c:LINE! 130 329d 867d 223d 321f69f8 btrfs: reset device back to allocation state when removing
BUG: unable to handle kernel paging request in slhc_free C cause+fix 177 544d 662d 223d baf76f0c slip: make slhc_free() silently accept an error pointer
WARNING in _chaoskey_fill/usb_submit_urb C 15 340d 393d 223d 92aa5986 USB: chaoskey: fix error case of a timeout
KASAN: slab-out-of-bounds Read in iov_iter_alignment C cause+fix 79 323d 320d 223d e0ff126e pipe: Fix bogus dereference in iov_iter_alignment()
possible deadlock in wg_set_device C cause 33 255d 260d 223d ec31c267 wireguard: noise: reject peers with low order public keys
WARNING: ODEBUG bug in io_sqe_files_unregister C cause 964 258d 305d 223d 2faf852d io_uring: cleanup fixed file data table references
WARNING in flexcop_usb_probe/usb_submit_urb C 4 389d 426d 223d 1b976fc6 media: b2c2-flexcop-usb: add sanity checking
linux-next build error (7) 7 268d 272d 223d ac6119e7 efi/x86: Disable instrumentation in the EFI runtime handling code
BUG: unable to handle kernel paging request in xfs_sb_read_verify 69 306d 326d 228d d98c9e83 kasan: fix crashes on access to memory mapped by vm_map_ram()
BUG: unable to handle kernel paging request in ion_heap_clear_pages C 4378 306d 326d 228d d98c9e83 kasan: fix crashes on access to memory mapped by vm_map_ram()
KASAN: use-after-free Read in bitmap_ip_ext_cleanup C cause+fix 2 275d 275d 241d 32c72165 netfilter: ipset: use bitmap infrastructure completely
KASAN: use-after-free Read in bitmap_ipmac_ext_cleanup C cause+fix 2 275d 275d 241d 32c72165 netfilter: ipset: use bitmap infrastructure completely
KASAN: slab-out-of-bounds Write in bitmap_ip_del C cause+fix 7 273d 275d 241d 32c72165 netfilter: ipset: use bitmap infrastructure completely
KASAN: use-after-free Read in bitmap_ip_destroy C cause+fix 1 275d 275d 244d 32c72165 netfilter: ipset: use bitmap infrastructure completely
upstream boot error: KASAN: slab-out-of-bounds Write in hpet_alloc 33 263d 264d 245d 98c49f17 char: hpet: Fix out-of-bounds read bug
KMSAN: uninit-value in setup_udp_tunnel_sock C 1 274d 273d 245d 940ba149 net-backports: gtp: make sure only SOCK_DGRAM UDP sockets are accepted
WARNING in nft_request_module C cause 7 279d 279d 245d 9332d27d netfilter: nf_tables: remove WARN and add NLA_STRING upper limits
memory leak in reiserfs_fill_super C 20 264d 314d 245d 5474ca7d reiserfs: Fix memory leak of journal device string
WARNING: lock held when returning to user space in tun_get_user (2) 7 261d 272d 245d 1efba987 net-backports: tun: add mutex_unlock() call and napi.skb clearing in tun_get_user()
memory leak in kobject_set_name_vargs (2) C cause 47 271d 455d 245d cb626bf5 net-sysfs: Fix reference count leak
KCSAN: data-race in __rcu_read_unlock / sync_rcu_exp_select_cpus 7 257d 351d 245d c51f83c3 rcu: Use READ_ONCE() for ->expmask in rcu_read_unlock_special()
KASAN: slab-out-of-bounds Read in bitmap_port_gc C cause 197 259d 276d 245d 32c72165 netfilter: ipset: use bitmap infrastructure completely
KMSAN: uninit-value in can_receive C 14 248d 337d 245d e7153bf7 can: can_dropped_invalid_skb(): ensure an initialized headroom in outgoing CAN sk_buffs
memory leak in _sctp_make_chunk C 1 309d 309d 245d be7a7729 sctp: free cmd->obj.chunk for the unprocessed SCTP_CMD_REPLY
WARNING in devlink_port_type_warn 2340 276d 348d 245d 4c582234 devlink: Wait longer before warning about unset port type
BUG: unable to handle kernel NULL pointer dereference in x25_connect 1 319d 319d 245d e21dba7a net/x25: fix nonblocking connect
KASAN: user-memory-access Write in video_usercopy 3 286d 287d 245d 1dc8b65c media: v4l2-core: only zero-out ioctl-read buffers
BUG: unable to handle kernel NULL pointer dereference in cfg80211_wext_siwrts 3 275d 284d 245d 24953de0 cfg80211: check for set_wiphy_params
KASAN: null-ptr-deref Write in x25_connect 1 324d 320d 245d e21dba7a net/x25: fix nonblocking connect
KASAN: slab-out-of-bounds Read in bitmap_ip_list C 85 260d 277d 245d 32c72165 netfilter: ipset: use bitmap infrastructure completely
kernel BUG at fs/namei.c:LINE! 3593 281d 281d 245d c64cd6e3 reimplement path_mountpoint() with less magic
KASAN: use-after-free Read in bitmap_port_ext_cleanup C cause 11 275d 284d 245d c1209593 netfilter: fix a use-after-free in mtype_destroy()
KMSAN: uninit-value in sd_init (2) C 94 351d 347d 245d de89d086 media: gspca: zero usb_buf
KMSAN: uninit-value in __request_module (3) C 58 246d 274d 245d 36d79af7 net-backports: net_sched: use validated TCA_KIND attribute in tc_new_tfilter()
KMSAN: uninit-value in rsvp_change C 4 266d 267d 245d cb3c0e6b cls_rsvp: fix rsvp_policy
BUG: unable to handle kernel paging request in rhashtable_replace_fast 2 271d 279d 245d 41cdc741 netdevsim: fix nsim_fib6_rt_create() error path
KASAN: use-after-free Read in __nf_tables_abort C cause 3 272d 274d 245d eb014de4 netfilter: nf_tables: autoload modules from the abort path
KASAN: use-after-free Read in rsi_rx_done_handler 8 284d 413d 245d e93cd351 rsi: fix use-after-free on failed probe and unbind
general protection fault in hsr_addr_is_self 3 247d 263d 245d 2b5b8251 net: hsr: fix possible NULL deref in hsr_handle_frame()
WARNING: suspicious RCU usage in find_set_and_id syz cause 6 270d 273d 245d 50385171 netfilter: ipset: fix suspicious RCU usage in find_set_and_id
BUG: corrupted list in nft_obj_del C cause 7 277d 279d 245d 335178d5 netfilter: nf_tables: fix flowtable list del corruption
BUG: corrupted list in nf_tables_commit C cause 8 279d 279d 245d 335178d5 netfilter: nf_tables: fix flowtable list del corruption
kernel panic: stack is corrupted in __lock_acquire (4) syz cause+fix 75 341d 499d 245d 4da6a196 bpf: Sockmap/tls, during free we may call tcp_bpf_unhash() in loop
INFO: rcu detected stall in addrconf_rs_timer (3) C cause+fix 81 306d 302d 245d d9e15a27 pkt_sched: fq: do not accept silly TCA_FQ_QUANTUM
KASAN: slab-out-of-bounds Read in bitmap_ipmac_list C cause 108 261d 277d 245d 32c72165 netfilter: ipset: use bitmap infrastructure completely
BUG: corrupted list in __dentry_kill (2) C cause 4945 314d 314d 245d a3d1e7eb simple_recursive_removal(): kernel-side rm -rf for ramfs-style filesystems
KASAN: slab-out-of-bounds Write in setup_udp_tunnel_sock (2) C cause 8 272d 274d 245d 940ba149 net-backports: gtp: make sure only SOCK_DGRAM UDP sockets are accepted
BUG: sleeping function called from invalid context in lock_sock_nested C 1232 245d 321d 245d 37f96694 crypto: af_alg - Use bh_lock_sock in sk_destruct
general protection fault in dccp_timeout_nlattr_to_obj C cause 7 285d 288d 245d 1d9a7acd netfilter: conntrack: dccp, sctp: handle null timeout argument
memory leak in vlan_dev_set_egress_priority C 1 288d 288d 245d 9bbd917e vlan: fix memory leak in vlan_dev_set_egress_priority
general protection fault in nft_parse_register 1 277d 277d 245d 7eaecf79 netfilter: nft_osf: add missing check for DREG attribute
WARNING in sk_psock_drop 157 268d 277d 245d 58c8db92 net, sk_msg: Don't check if sock is locked when tearing down psock
KCSAN: data-race in __rcu_read_unlock / rcu_report_exp_cpu_mult 21 261d 321d 245d c51f83c3 rcu: Use READ_ONCE() for ->expmask in rcu_read_unlock_special()
KCSAN: data-race in tomoyo_supervisor / tomoyo_supervisor (3) 142 250d 302d 245d a8772fad tomoyo: Use atomic_t for statistics counter
KMSAN: uninit-value in macvlan_broadcast C 2 288d 288d 245d 96cc4b69 macvlan: do not assume mac_header is set in macvlan_broadcast()
general protection fault in xt_rateest_tg_checkentry C cause 12 289d 299d 245d 1b789577 netfilter: arp_tables: init netns pointer in xt_tgchk_param struct
general protection fault in hash_netiface6_uadt 1 285d 285d 245d 22dad713 netfilter: ipset: avoid null deref when IPSET_ATTR_LINENO is present
WARNING in tcp_ack C cause 3 286d 287d 245d 90d72256 gtp: fix bad unlock balance in gtp_encap_enable_socket
memory leak in em_nbyte_change C 1 270d 270d 245d 55cd9f67 net_sched: ematch: reject invalid TCF_EM_SIMPLE
KCSAN: data-race in __skb_try_recv_from_queue / unix_dgram_sendmsg 61 261d 279d 245d 86b18aaa skbuff: fix a data race in skb_queue_len()
KMSAN: uninit-value in digitv_rc_query C 4 364d 347d 245d eecc70d2 media: digitv: don't continue if remote control state can't be read 569bc8d6 media: dvb-usb/dvb-usb-urb.c: initialize actlen to 0
general protection fault in xt_rateest_put C cause 97 276d 283d 245d 212e7f56 netfilter: arp_tables: init netns pointer in xt_tgdtor_param struct
KCSAN: data-race in rcu_gp_fqs_check_wake / rcu_preempt_deferred_qs_irqrestore 99 257d 378d 245d 6935c398 rcu: Avoid data-race in rcu_gp_fqs_check_wake()
BUG: sleeping function called from invalid context in tpk_write C cause 12 277d 318d 245d 9a655c77 ttyprintk: fix a potential deadlock in interrupt context issue
KCSAN: data-race in rcu_gp_fqs_check_wake / rcu_note_context_switch 51 257d 370d 245d 6935c398 rcu: Avoid data-race in rcu_gp_fqs_check_wake()
memory leak in snd_pcm_hw_params C 25 258d 265d 245d 66f2d19f ALSA: pcm: Fix memory leak at closing a stream without hw_free
KASAN: slab-out-of-bounds Read in macvlan_broadcast C cause 10 286d 288d 245d 96cc4b69 macvlan: do not assume mac_header is set in macvlan_broadcast()
KMSAN: uninit-value in number C 190 250d 347d 245d 51d0c99b media: af9005: uninitialized variable printked
KCSAN: data-race in find_next_bit / rcu_report_exp_cpu_mult 203 257d 380d 245d 15c7c972 rcu: Use *_ONCE() to protect lockless ->expmask accesses
KMSAN: uninit-value in __tipc_nl_compat_dumpit C 4428 245d 314d 245d a7869e5f tipc: eliminate KMSAN: uninit-value in __tipc_nl_compat_dumpit error
KASAN: slab-out-of-bounds Read in nla_put_nohdr C cause 1 273d 273d 245d 61678d28 net_sched: fix datalen for ematch
general protection fault in path_openat C cause 7 263d 263d 245d 6404674a vfs: fix do_last() regression
general protection fault in free_verifier_state (3) C 5 273d 280d 245d f59bbfc2 bpf: Fix error path under memory pressure
WARNING: bad unlock balance in release_sock 1 287d 287d 245d 90d72256 gtp: fix bad unlock balance in gtp_encap_enable_socket
KASAN: use-after-free Read in tcp_fastretrans_alert C cause 1 276d 276d 245d 2bec445f net-backports: tcp: do not leave dangling pointers in tp->highest_sack
KASAN: use-after-free Read in root_remove_peer_lists C cause 2 262d 262d 245d 9981159f wireguard: allowedips: fix use-after-free in root_remove_peer_lists
KASAN: use-after-free Read in snd_timer_resolution C 5 261d 279d 245d 60adcfde ALSA: seq: Fix racy access for queue timer in proc read
KMSAN: uninit-value in i2c_w (2) C 3 359d 347d 245d de89d086 media: gspca: zero usb_buf
KCSAN: data-race in tick_do_update_jiffies64 / tick_do_update_jiffies64 (4) 394 250d 321d 245d de95a991 net-backports: tick/sched: Annotate lockless access to last_jiffies_update
general protection fault in hash_netnet6_uadt 1 286d 286d 245d 22dad713 netfilter: ipset: avoid null deref when IPSET_ATTR_LINENO is present
BUG: unable to handle kernel paging request in rhashtable_jhash2 C cause 6 278d 279d 245d 41cdc741 netdevsim: fix nsim_fib6_rt_create() error path
memory leak in tcf_ctinfo_init C 2 275d 276d 245d 09d4f10a net: sched: act_ctinfo: fix memory leak
WARNING in do_dentry_open (2) C cause 17 265d 263d 245d a37f4958 debugfs: Return -EPERM when locked down
KASAN: slab-out-of-bounds Read in __nla_put_nohdr C cause 4 273d 273d 245d 61678d28 net_sched: fix datalen for ematch
INFO: rcu detected stall in br_handle_frame (2) C cause 2 305d 301d 245d d9e15a27 pkt_sched: fq: do not accept silly TCA_FQ_QUANTUM
memory leak in nf_tables_parse_netdev_hooks C 6 249d 279d 245d cd77e75b netfilter: nf_tables: fix memory leak in nf_tables_parse_netdev_hooks()
KCSAN: data-race in process_srcu / synchronize_srcu 112 257d 351d 245d 844a378d srcu: Apply *_ONCE() to ->srcu_last_gp_end
WARNING in __proc_create (2) C cause 4 273d 273d 245d a45ea48e afs: Fix characters allowed into cell names
INFO: rcu detected stall in netlink_sendmsg (3) C cause 6 253d 306d 245d d9e15a27 pkt_sched: fq: do not accept silly TCA_FQ_QUANTUM
general protection fault in timer_is_static_object C 2 329d 326d 245d cb222aed Input: add safety guards to input_set_keycode()
KASAN: null-ptr-deref Write in queue_work_on C cause+fix 5 430d 426d 245d 0ace17d5 can, slip: Protect tty->disc_data in write_wakeup and close with RCU
WARNING in cbq_destroy_class C cause 7 250d 273d 245d 2e24cd75 net_sched: fix ops->bind_class() implementations
WARNING in tracepoint_probe_register_prio (3) syz cause 979 249d 886d 245d 64ae572b tracing: Fix sched switch start/stop refcount racy updates
kernel BUG at arch/x86/kvm/mmu/mmu.c:LINE! C cause 6 302d 309d 245d 005ba37c mm: thp: KVM: Explicitly check for THP when populating secondary MMU
BUG: spinlock already unlocked in input_set_keycode C 2 339d 337d 245d cb222aed Input: add safety guards to input_set_keycode()
WARNING: refcount bug in cdev_get C cause 105 287d 427d 245d 68faa679 chardev: Avoid potential use-after-free in 'chrdev_open()'
KMSAN: uninit-value in read_sensor_register (2) C 44 353d 370d 245d de89d086 media: gspca: zero usb_buf
inconsistent lock state in rxrpc_put_client_conn C cause 18198 254d 260d 245d 963485d4 rxrpc: Fix call RCU cleanup using non-bh-safe locks
general protection fault in hash_ipmark6_uadt 2 285d 285d 245d 22dad713 netfilter: ipset: avoid null deref when IPSET_ATTR_LINENO is present
WARNING in cbq_destroy C cause 1 273d 273d 245d 2e24cd75 net_sched: fix ops->bind_class() implementations
WARNING in dln2_start_rx_urbs/usb_submit_urb C 44 261d 349d 245d 2b8bd606 mfd: dln2: More sanity checking for endpoints
KASAN: use-after-free Read in tcp_check_sack_reordering C cause 2 268d 276d 245d 2bec445f net-backports: tcp: do not leave dangling pointers in tp->highest_sack
BUG: unable to handle kernel NULL pointer dereference in cfg80211_wext_siwfrag C cause 8 275d 288d 245d 24953de0 cfg80211: check for set_wiphy_params
WARNING in cgroup_apply_control_enable C cause 178 282d 834d 245d 3bc0bb36 cgroup: Prevent double killing of css when enabling threaded cgroup
KASAN: slab-out-of-bounds Read in hid_field_extract C 6 286d 319d 245d 8ec321e9 HID: Fix slab-out-of-bounds read in hid_field_extract
general protection fault in nft_chain_parse_hook C cause 48 264d 279d 245d 82603549 netfilter: nf_tables: add __nft_chain_type_get()
WARNING in nf_tables_table_destroy C cause+fix 1 277d 277d 245d eb014de4 netfilter: nf_tables: autoload modules from the abort path
KASAN: slab-out-of-bounds Write in mpol_parse_str C cause 3 284d 280d 245d c7a91bc7 mm/mempolicy.c: fix out of bounds write in mpol_parse_str()
KASAN: slab-out-of-bounds Read in bitmap_ip_gc C cause 15 258d 276d 245d 32c72165 netfilter: ipset: use bitmap infrastructure completely
WARNING: ODEBUG bug in rsi_probe C 10487 259d 555d 245d 92aafe77 rsi: fix use-after-free on probe errors
KASAN: use-after-free Read in macvlan_broadcast C cause 12 286d 288d 245d 96cc4b69 macvlan: do not assume mac_header is set in macvlan_broadcast()
general protection fault in nft_tunnel_get_init C cause 7 279d 279d 245d 1c702bf9 netfilter: nft_tunnel: fix null-attribute check
KASAN: slab-out-of-bounds Read in bitmap_port_add syz cause 9 270d 277d 245d 32c72165 netfilter: ipset: use bitmap infrastructure completely
WARNING: bad unlock balance in gtp_encap_enable_socket C cause 8 285d 289d 245d 90d72256 net-backports: gtp: fix bad unlock balance in gtp_encap_enable_socket
WARNING: bad unlock balance in sch_direct_xmit C cause 35 275d 322d 245d 53d37497 net: avoid updating qdisc_xmit_lock_key in netdev_update_lockdep_key()
general protection fault in inet6_set_link_af C cause 8 255d 259d 245d db3fa271 ipv6/addrconf: fix potential NULL deref in inet6_set_link_af()
general protection fault in tcf_ife_cleanup C cause 111 260d 284d 245d 44c23d71 net/sched: act_ife: initalize ife->metalist earlier
BUG: unable to handle kernel paging request in do_csum (2) C cause 6 269d 270d 245d 6cd021a5 udp: segment looped gso packets correctly
KASAN: use-after-free Write in hci_sock_bind 4 247d 280d 245d 11eb85ec Bluetooth: Fix race condition in hci_release_sock()
KASAN: use-after-free Write in __alloc_skb (2) C cause 7 296d 313d 245d d836f5c6 net-backports: net: rtnetlink: validate IFLA_MTU attribute in rtnl_create_link()
KASAN: slab-out-of-bounds Read in bitmap_ip_test syz 10 266d 276d 245d 32c72165 netfilter: ipset: use bitmap infrastructure completely
WARNING in geneve_exit_batch_net 15 245d 271d 245d 760d228e net_sched: walk through all child classes in tc_bind_tclass()
KASAN: slab-out-of-bounds Read in tcf_exts_destroy C cause+fix 8 368d 271d 245d 599be01e net_sched: fix an OOB access in cls_tcindex
general protection fault in hash_ipportnet4_uadt C cause 13 285d 287d 245d 22dad713 netfilter: ipset: avoid null deref when IPSET_ATTR_LINENO is present
KASAN: use-after-free Write in percpu_ref_switch_to_percpu 1 260d 259d 245d 2faf852d io_uring: cleanup fixed file data table references
KASAN: slab-out-of-bounds Read in bitmap_port_list C 152 268d 277d 245d 32c72165 netfilter: ipset: use bitmap infrastructure completely
WARNING in uvc_scan_chain_forward C 6 285d 309d 245d 68035c80 media: uvcvideo: Avoid cyclic entity chains due to malformed USB descriptors
WARNING: ODEBUG bug in tcindex_destroy_work (2) 5 250d 261d 245d 599be01e net_sched: fix an OOB access in cls_tcindex
inconsistent lock state in rxrpc_put_client_connection_id C cause 473 254d 260d 245d 963485d4 rxrpc: Fix call RCU cleanup using non-bh-safe locks
INFO: task hung in aead_recvmsg C cause 11991 272d 1045d 245d bbefa1dd crypto: pcrypt - Avoid deadlock by using per-instance padata queues
KASAN: use-after-free Read in bitmap_port_destroy C 1 276d 276d 245d c1209593 netfilter: fix a use-after-free in mtype_destroy()
KASAN: null-ptr-deref Read in tcf_generic_walker C cause 6 249d 268d 245d 760d228e net_sched: walk through all child classes in tc_bind_tclass()
WARNING: refcount bug in chrdev_open C cause+fix 15 325d 427d 245d 68faa679 chardev: Avoid potential use-after-free in 'chrdev_open()'
KMSAN: uninit-value in dvb_usb_adapter_dvb_init 1 355d 347d 245d 26cff637 media: vp7045: do not read uninitialized values if usb transfer fails
INFO: task hung in __generic_file_fsync (2) C cause+fix 28 292d 293d 245d 85a8ce62 block: add bio_truncate to fix guard_bio_eod
WARNING in tcp_enter_loss (2) C cause+fix 4 903d 953d 245d 16ae6aa1 tcp: ignore Fast Open on repair mode
KASAN: null-ptr-deref Read in refcount_sub_and_test_checked (2) C cause+fix 916 505d 707d 245d 62dcb4f4 media: vb2: check memory model for VIDIOC_CREATE_BUFS
BUG: unable to handle kernel paging request in xfs_sb_quiet_read_verify C cause 6 306d 306d 250d d98c9e83 kasan: fix crashes on access to memory mapped by vm_map_ram()
KASAN: vmalloc-out-of-bounds Write in pcpu_alloc C cause 31 298d 322d 250d 253a496d kasan: don't assume percpu shadow allocations will succeed
KASAN: use-after-free Read in iov_iter_alignment C cause 3 324d 323d 250d e0ff126e pipe: Fix bogus dereference in iov_iter_alignment()
memory leak in sctp_stream_init C 1 311d 310d 250d 951c6db9 sctp: fix memleak on err handling of stream initialization
general protection fault in gigaset_probe C 6 334d 453d 250d 53f35a39 staging: gigaset: fix general protection fault on probe
KASAN: use-after-free Read in ext4_xattr_set_entry (2) C cause 19 309d 718d 250d 9803387c ext4: validate the debug_want_extra_isize mount option at parse time
KMSAN: uninit-value in __crc32c_le_base syz 567 286d 332d 250d b6f3320b sctp: fully initialize v4 addr in some functions
unregister_netdevice: waiting for DEV to become free (2) C cause 385621 250d 797d 250d ddd9b5e3 net-sysfs: Call dev_hold always in rx_queue_add_kobject
KMSAN: uninit-value in br_nf_forward_arp (3) 2 326d 318d 250d 56042858 net-backports: netfilter: bridge: make sure to pull arp header in br_nf_forward_arp()
KCSAN: data-race in taskstats_exit / taskstats_exit 157 250d 382d 250d 0b8d616f taskstats: fix data-race
WARNING in azx_rirb_get_response 4 308d 310d 250d 475feec0 ALSA: hda - Downgrade error message for single-cmd fallback
INFO: task hung in sync_inodes_sb (3) C cause 6 291d 299d 250d 85a8ce62 block: add bio_truncate to fix guard_bio_eod
linux-next boot error: general protection fault in do_mount_root 9 309d 309d 250d 7de7de7c Fix root mounting with no mount options
upstream boot error: general protection fault in do_mount_root 12 310d 310d 250d 7de7de7c Fix root mounting with no mount options
KMSAN: uninit-value in bond_neigh_setup 64 294d 318d 250d f394722f net-backports: neighbour: remove neigh_cleanup() method
KASAN: use-after-free Read in tomoyo_realpath_from_path syz cause+fix 7 310d 503d 250d 6f7c4137 tomoyo: Don't use nifty names on sockets.
KASAN: slab-out-of-bounds Read in hsr_debugfs_rename C cause 18 289d 298d 250d 04b69426 hsr: fix slab-out-of-bounds Read in hsr_debugfs_rename()
general protection fault in j1939_sk_bind syz cause+fix 22 325d 351d 250d 00d4e14d can: j1939: j1939_sk_bind(): take priv after lock is held
BUG: unable to handle kernel paging request in pcpu_alloc C cause 24 303d 322d 250d 253a496d kasan: don't assume percpu shadow allocations will succeed
general protection fault in sctp_stream_free (2) C cause 25 295d 306d 250d 61d5d406 sctp: fix err handling of stream initialization
inconsistent lock state in sp_get C cause 2 313d 313d 250d 5c9934b6 6pack,mkiss: fix possible deadlock
general protection fault in j1939_jsk_del (2) syz 21 309d 326d 250d 00d4e14d can: j1939: j1939_sk_bind(): take priv after lock is held
KASAN: vmalloc-out-of-bounds Read in compat_copy_entries C cause 3 311d 311d 250d e608f631 netfilter: ebtables: compat: reject all padding in matches/watchers
WARNING in ovl_rename C cause+fix 5 542d 538d 250d 6889ee5a ovl: relax WARN_ON() on rename to self
possible deadlock in mon_bin_vma_fault C cause 11427 312d 778d 250d 19e6317d usb: mon: Fix a deadlock in usbmon between mmap and read
WARNING: refcount bug in smc_release (2) C cause 9 307d 331d 250d 86434744 net/smc: add fallback check to connect()
BUG: corrupted list in hsr_add_node 1 352d 351d 250d 92a35678 hsr: fix a race condition in node list insertion and deletion
BUG: Bad rss-counter state (3) C cause+fix 438 450d 916d 263d 173d9d9f mm/huge_memory: splitting set mapping+index before unfreeze
possible deadlock in flush_workqueue (2) C cause+fix 256 298d 731d 263d e7c58097 hugetlbfs: revert "Use i_mmap_rwsem to fix page fault/truncate race"
KASAN: slab-out-of-bounds Read in build_audio_procunit (2) C 1 349d 348d 271d 976a68f0 ALSA: usb-audio: Fix incorrect size check for processing/extension units
KASAN: use-after-free Read in j1939_xtp_rx_abort_one C cause+fix 11 343d 351d 276d ddeeb7d4 can: j1939: j1939_can_recv(): add priv refcounting
memory leak in fdb_create (2) C 1 323d 323d 287d c4b4c421 net: bridge: deny dev_set_mac_address() when unregistering
KMSAN: uninit-value in __request_module (2) 3 306d 318d 287d 2dd5616e net-backports: net_sched: validate TCA_KIND attribute in tc_chain_tmplt_add()
KASAN: vmalloc-out-of-bounds Write in kvm_dev_ioctl_get_cpuid C 41 321d 322d 287d 433f4ba1 KVM: x86: fix out-of-bounds write in KVM_GET_EMULATED_CPUID (CVE-2019-19332)
kernel BUG at include/linux/mm.h:LINE! (5) C cause+fix 129 526d 596d 287d 9354544c net/tls: fix page double free on TX cleanup
KASAN: use-after-free Read in __queue_work (2) C cause+fix 577 481d 835d 287d 430ac66e net/9p/trans_fd.c: fix race-condition by flushing workqueue before the kfree()
KASAN: slab-out-of-bounds Read in bpf_prog_create C cause 447 317d 399d 287d 0033b34a ppp: fix out-of-bounds access in bpf_prog_create()
memory leak in register_netdevice C 19 318d 323d 287d 42c17fa6 net: fix a leak in register_netdevice()
KASAN: slab-out-of-bounds Read in vcs_scr_readw C cause+fix 16 322d 322d 287d 0c9acb1a vcs: prevent write access to vcsu devices
kernel BUG at fs/pipe.c:LINE! C cause 693 317d 324d 287d 8c7b8c34 pipe: Remove assertion from pipe_poll()
KMSAN: uninit-value in usbnet_probe C 1 503d 503d 287d 78226f6e net: usb: asix: init MAC address buffers
KMSAN: uninit-value in nf_conntrack_tcp_packet syz 3 321d 324d 287d 9424e2e7 net-backports: tcp: md5: fix potential overestimation of TCP option space
KASAN: slab-out-of-bounds Read in linear_transfer (3) C cause 5 320d 322d 287d 4cc8d650 ALSA: pcm: oss: Avoid potential buffer overflows
KCSAN: data-race in mod_timer / run_timer_softirq 4 303d 369d 287d 56144737 net-backports: hrtimer: Annotate lockless access to timer->state
KASAN: slab-out-of-bounds Write in pipe_write C cause 40 319d 324d 287d 8f868d68 pipe: Fix missing mask update after pipe_wait()
WARNING in tty_set_termios C cause+fix 1997 447d 647d 287d b36a1552 Bluetooth: hci_uart: check for missing tty operations
general protection fault in override_creds C cause 6 320d 324d 287d 0b8c0ec7 io_uring: use current task creds instead of allocating a new one
WARNING in drm_mode_createblob_ioctl C cause 7 349d 373d 287d 5bf8bec3 drm: limit to INT_MAX in create_blob ioctl
WARNING: refcount bug in skb_set_owner_w C cause 2 323d 324d 287d 501a90c9 net-backports: inet: protect against too small mtu values.
KASAN: use-after-free Read in xlog_alloc_log (2) 55 318d 326d 287d 798a9cad xfs: fix mount failure crash on invalid iclog memory access
KMSAN: use-after-free in netlink_recvmsg C 1 343d 343d 313d cf94da6f Bluetooth: Fix invalid-free in bcsp_close()
KMSAN: use-after-free in kfree_skb syz 34 330d 378d 313d cf94da6f Bluetooth: Fix invalid-free in bcsp_close()
general protection fault in io_commit_cqring C cause 3 342d 342d 313d 15dff286 io_uring: check for validity of ->rings in teardown
general protection fault in ext4_writepages C cause 18 336d 345d 313d 4d06bfb9 ext4: Add error handling for io_end_vec struct allocation
KMSAN: use-after-free in __skb_try_recv_from_queue C 4 342d 365d 313d cf94da6f Bluetooth: Fix invalid-free in bcsp_close()
general protection fault in ip_sublist_rcv C cause 287 356d 366d 313d 51210ad5 inet: do not call sublist_rcv on empty list
kernel BUG at include/linux/scatterlist.h:LINE! C cause 307 324d 517d 313d d10523d0 net/tls: free the record on encryption error
KASAN: use-after-free Read in snd_timer_open C cause 87 344d 344d 313d 0c4f09ce ALSA: timer: Fix the breakage of slave link open
linux-next boot error: general protection fault in __x64_sys_settimeofday 6 341d 341d 313d 5e0fb1b5 y2038: time: avoid timespec usage in settimeofday()
INFO: task hung in io_wq_destroy C cause 20 327d 358d 313d b60fda60 io-wq: wait for io_wq_create() to setup necessary workers
INFO: trying to register non-static key in io_cqring_ev_posted C cause 6 328d 340d 313d eb065d30 io_uring: io_allocate_scq_urings() should return a sane state
KASAN: global-out-of-bounds Write in kbd_event C 6 327d 349d 313d b2b2dd71 tty: vt: keyboard: reject invalid keycodes
KCSAN: data-race in __ip4_datagram_connect / raw_bind 1 361d 361d 313d 25c7a6d1 net: avoid potential false sharing in neighbor related code
KASAN: slab-out-of-bounds Write in __ext4_expand_extra_isize 16 436d 779d 313d 4ea99936 ext4: add more paranoia checking in ext4_expand_extra_isize handling
KASAN: use-after-free Read in tipc_nl_node_dump_monitor_peer C cause 3 378d 378d 313d ab5b526d net: genetlink: always allocate separate attrs for dumpit ops
KCSAN: data-race in __dev_queue_xmit / __dev_queue_xmit 40 313d 363d 313d 90b2be27 net/sched: annotate lockless accesses to qdisc->empty
general protection fault in tss_update_io_bitmap C cause 65 329d 335d 313d e3cb0c71 x86/ioperm: Fix use of deprecated config option
general protection fault in ip6_sublist_rcv C cause 327 356d 358d 313d 51210ad5 inet: do not call sublist_rcv on empty list
KCSAN: data-race in inet_putpeer / inet_putpeer 20 346d 363d 313d 71685eb4 inetpeer: fix data-race in inet_putpeer / inet_putpeer
KASAN: use-after-free Write in __ext4_expand_extra_isize (2) 14 348d 366d 313d 4ea99936 ext4: add more paranoia checking in ext4_expand_extra_isize handling
general protection fault in flexcop_usb_probe C 403 327d 557d 313d 1b976fc6 media: b2c2-flexcop-usb: add sanity checking
KCSAN: data-race in __remove_hrtimer / __tcp_ack_snd_check 4 328d 349d 313d 56144737 hrtimer: Annotate lockless access to timer->state
KCSAN: data-race in eth_header_cache / neigh_resolve_output 1 350d 350d 313d c305c6ae net-backports: net: add annotations on hh->hh_len lockless accesses
KMSAN: use-after-free in sk_forced_mem_schedule 2 336d 344d 313d cf94da6f Bluetooth: Fix invalid-free in bcsp_close()
WARNING in iov_iter_pipe C cause 1117 331d 348d 313d 419e9c38 iomap: Fix pipe page leakage during splicing
kernel BUG at kernel/time/timer.c:LINE! (4) syz 1 383d 379d 313d f3f5ba42 media: imon: invalid dereference in imon_touch_event
general protection fault in devlink_get_from_attrs C 7 380d 379d 313d 82a843de net: devlink: fix reporter dump dumpit
KASAN: use-after-free Read in appledisplay_bl_get_brightness C 1 396d 393d 313d 91feb015 appledisplay: fix error handling in the scheduled work
general protection fault in vti6_ioctl 1 371d 371d 313d 9077f052 net: propagate errors correctly in register_netdevice()
INFO: trying to register non-static key in ida_destroy C 4272 326d 449d 313d 8c279e93 media: uvcvideo: Fix error path in control parsing failure
KCSAN: data-race in tun_get_user / tun_net_get_stats64 1 358d 358d 313d de7d5084 net-backports: net: provide dev_lstats_read() helper
KCSAN: data-race in sk_wait_data / tcp_queue_rcv 4 352d 349d 313d f8cc62ca net: add a READ_ONCE() in skb_peek_tail()
KCSAN: data-race in __remove_hrtimer / tcp_pacing_check 1 352d 349d 313d 56144737 hrtimer: Annotate lockless access to timer->state
KMSAN: use-after-free in __netif_receive_skb_core 1 343d 343d 313d cf94da6f Bluetooth: Fix invalid-free in bcsp_close()
KCSAN: data-race in tcp_add_backlog / tcp_recvmsg (2) 47 313d 349d 313d 9ed498c6 net-backports: net: silence data-races on sk_backlog.tail
KCSAN: data-race in sk_wait_data / skb_queue_tail 3 360d 361d 313d f8cc62ca net-backports: net: add a READ_ONCE() in skb_peek_tail()
KMSAN: use-after-free in skb_dequeue C 1 373d 373d 313d cf94da6f Bluetooth: Fix invalid-free in bcsp_close()
KASAN: use-after-free Read in tipc_nl_publ_dump C 2 380d 379d 313d ab5b526d net: genetlink: always allocate separate attrs for dumpit ops
KCSAN: data-race in ip_finish_output2 / ip_finish_output2 26 317d 362d 313d 25c7a6d1 net: avoid potential false sharing in neighbor related code
general protection fault in snd_usb_create_mixer C 1 336d 334d 313d 9435f2bb ALSA: usb-audio: Fix NULL dereference at parsing BADD
general protection fault in tipc_nl_publ_dump C 135 377d 379d 313d 6ea67769 net: tipc: prepare attrs in __tipc_nl_compat_dumpit()
KASAN: use-after-free Read in nf_ct_deliver_cached_events C cause 169 358d 364d 313d ad88b7a6 netfilter: ecache: don't look for ecache extension on dying/unconfirmed conntracks
general protection fault in veth_get_stats64 C cause 2 384d 384d 313d 9077f052 net: propagate errors correctly in register_netdevice()
KCSAN: data-race in icmp_global_allow / icmp_global_allow 29 313d 364d 313d bbab7ef2 net-backports: net: icmp: fix data-race in cmp_global_allow()
general protection fault in usb_set_interface C 3 398d 400d 313d c7a19146 media: usbvision: Fix invalid accesses after device disconnect
KCSAN: data-race in __dev_queue_xmit / pfifo_fast_dequeue 6 327d 364d 313d 90b2be27 net/sched: annotate lockless accesses to qdisc->empty
KCSAN: data-race in tcp_chrono_stop / tcp_recvmsg 3 348d 349d 313d a5a7daa5 net-backports: tcp: fix data-race in tcp_recvmsg()
KCSAN: data-race in gro_normal_list.part.0 / napi_busy_loop 1 346d 346d 313d c39e342a net-backports: tun: fix data-race in gro_normal_list()
KASAN: use-after-free Read in slip_open C cause 3 331d 333d 313d e58c1912 slip: Fix use-after-free Read in slip_open
KCSAN: data-race in fanout_demux_rollover / fanout_demux_rollover 1 348d 347d 313d b756ad92 net-backports: packet: fix data-race in fanout_flow_is_huge()
WARNING in __rtnl_newlink C cause 2 383d 383d 313d 9077f052 net: propagate errors correctly in register_netdevice()
BUG: unable to handle kernel paging request in __ext4_expand_extra_isize 6 386d 366d 313d 4ea99936 ext4: add more paranoia checking in ext4_expand_extra_isize handling
KASAN: use-after-free Read in shmem_fault (2) 5 357d 417d 313d 8897c1b1 shmem: pin the file in shmem_fault() if mmap_sem is dropped
BUG: unable to handle kernel paging request in io_wq_cancel_all C cause 2 357d 357d 313d 975c99a5 io_uring: io_wq_create() returns an error pointer, not NULL
KASAN: invalid-free in io_sqe_files_unregister C cause 3 345d 346d 313d 46568e9b io_uring: fix error clear of ->file_table in io_sqe_files_register()
KASAN: invalid-free in skb_free_head C cause 1 354d 354d 313d cf94da6f Bluetooth: Fix invalid-free in bcsp_close()
general protection fault in ovs_vport_add C cause 5 375d 383d 313d 9077f052 net: propagate errors correctly in register_netdevice()
KASAN: use-after-free Read in nl8NUM_dump_wpan_phy C cause 6 378d 379d 313d ab5b526d net: genetlink: always allocate separate attrs for dumpit ops
KASAN: use-after-free Read in tipc_udp_nl_dump_remoteip C cause 3 378d 379d 313d ab5b526d net: genetlink: always allocate separate attrs for dumpit ops
KASAN: use-after-free Read in __cfg8NUM_wpan_dev_from_attrs C cause 3 380d 379d 313d ab5b526d net: genetlink: always allocate separate attrs for dumpit ops
WARNING: ODEBUG bug in free_netdev C cause 2 382d 382d 313d 11fc7d5a tun: fix memory leak in error path
KCSAN: data-race in sctp_assoc_migrate / sctp_hash_obj 12 321d 348d 313d 31243461 sctp: cache netns in sctp_ep_common
general protection fault in ip6_tnl_ioctl C cause 7 372d 383d 313d 9077f052 net: propagate errors correctly in register_netdevice()
KCSAN: data-race in __dev_queue_xmit / net_tx_action 1 348d 348d 313d 90b2be27 net/sched: annotate lockless accesses to qdisc->empty
KMSAN: use-after-free in copyout C 1 378d 378d 313d cf94da6f Bluetooth: Fix invalid-free in bcsp_close()
general protection fault in virtio_transport_release C cause 7 335d 336d 313d 039fccca vsock: avoid to assign transport if its initialization fails
BUG: workqueue lockup (4) C 47 338d 744d 313d 7e7c005b rtc: disable uie before setting time and enable after
WARNING in port100_send_cmd_async/usb_submit_urb C 83 328d 468d 315d 5f9f0b11 nfc: port100: handle command failure cleanly
general protection fault in kvm_coalesced_mmio_init syz cause 48 343d 352d 326d 8a44119a KVM: Fix NULL-ptr deref after kvm_create_vm fails
general protection fault in j1939_netdev_notify syz cause 11 339d 351d 326d c48c8c1e can: j1939: main: j1939_ndev_to_priv(): avoid crash if can_ml_priv is NULL
KASAN: use-after-free Read in j1939_sk_recv C cause 2 345d 345d 326d ddeeb7d4 can: j1939: j1939_can_recv(): add priv refcounting
KASAN: use-after-free Read in j1939_session_deactivate syz cause 1 347d 347d 326d ddeeb7d4 can: j1939: j1939_can_recv(): add priv refcounting
WARNING in smc_unhash_sk (3) C cause 362 330d 420d 326d 8204df72 net/smc: fix fastopen for non-blocking connect()
KASAN: use-after-free Read in do_mount syz cause 6 371d 379d 326d 0ecee669 fs/namespace.c: fix use-after-free of mount in mnt_warn_timestamp_expiry()
general protection fault in j1939_jsk_del syz cause 132 327d 351d 326d fd81ebfe can: j1939: socket: rework socket locking for j1939_sk_release() and j1939_sk_sendmsg()
memory leak in smc_create C 19 339d 352d 326d 6d6dd528 net/smc: fix refcount non-blocking connect() -part 2
KASAN: use-after-free Read in j1939_session_get_by_addr_locked C cause 1 345d 345d 326d ddeeb7d4 can: j1939: j1939_can_recv(): add priv refcounting
INFO: task hung in synchronize_rcu syz cause 1206 326d 353d 326d 8a44119a KVM: Fix NULL-ptr deref after kvm_create_vm fails
KMSAN: uninit-value in ax88172a_bind C 5 358d 372d 326d a9a51bd7 ax88172a: fix information leak on short answers
KMSAN: uninit-value in gf128mul_4k_lle (3) C 2958 332d 697d 326d 683916f6 net/tls: fix sk_msg trim on fallback to copy mode
KMSAN: uninit-value in aesti_encrypt C 54 380d 481d 326d 683916f6 net/tls: fix sk_msg trim on fallback to copy mode
WARNING: suspicious RCU usage in kvm_dev_ioctl C cause 333 343d 353d 326d e2d3fcaf KVM: fix placement of refcount initialization
KMSAN: use-after-free in build_audio_procunit C 2 364d 364d 326d 976a68f0 ALSA: usb-audio: Fix incorrect size check for processing/extension units
WARNING: refcount bug in j1939_netdev_start syz cause 6 329d 350d 326d fd81ebfe can: j1939: socket: rework socket locking for j1939_sk_release() and j1939_sk_sendmsg()
KMSAN: uninit-value in get_min_max_with_quirks C 11 359d 347d 326d 167beb17 ALSA: usb-audio: Fix missing error check at mixer resolution test
WARNING: ODEBUG bug in input_ff_destroy C 6 335d 342d 326d fa3a5a18 Input: ff-memless - kill timer in destroy()
general protection fault in memcg_flush_percpu_vmstats C cause 19 356d 419d 326d 7961eee3 mm: memcontrol: fix NULL-ptr deref in percpu stats flush
KCSAN: data-race in neigh_resolve_output / neigh_resolve_output 4 348d 362d 326d 1b53d644 net-backports: net: fix data-race in neigh_event_send()
KCSAN: data-race in find_match / find_match 2 349d 352d 326d 1bef4c22 net-backports: ipv6: fixes rt6_probe() and fib6_nh->last_probe init
INFO: task hung in mpage_prepare_extent_to_map syz cause 18606 350d 358d 326d 4655e5e5 mm,thp: recheck each page before collapsing file THP
KMSAN: uninit-value in cdc_ncm_set_dgram_size C 4 357d 356d 326d 332f989a CDC-NCM: handle incomplete transfer of MTU
KASAN: use-after-free Read in mcba_usb_disconnect C 2 353d 386d 326d 4d663649 can: mcba_usb: fix use-after-free on disconnect
KMSAN: kernel-usb-infoleak in pcan_usb_wait_rsp C 2 370d 370d 326d f7a1337f can: peak_usb: fix slab info leak
KASAN: invalid-free in rsi_91x_deinit C 109 399d 546d 327d 8b51dc72 rsi: fix a double free bug in rsi_91x_deinit()
WARNING in generic_make_request_checks C cause 7760 328d 804d 327d 8b2ded1c block: don't warn when doing fsync on read-only devices
BUG: spinlock recursion in release_sock C cause 116 453d 454d 328d 5d92e631 net/tls: partially revert fix transition through disconnect with close
KMSAN: use-after-free in adu_disconnect C 16 372d 378d 329d 44efc269 USB: adutux: fix use-after-free on disconnect
KMSAN: use-after-free in mutex_spin_on_owner C 1 378d 378d 329d edc4746f USB: iowarrior: fix use-after-free on disconnect
KMSAN: use-after-free in iowarrior_disconnect C 21 372d 378d 329d edc4746f USB: iowarrior: fix use-after-free on disconnect
KMSAN: use-after-free in usb_autopm_put_interface C 63 358d 372d 329d 7a759197 USB: usblp: fix use-after-free on disconnect
KMSAN: use-after-free in __pm_runtime_resume 1 378d 378d 329d 5f924277 HID: logitech: Fix general protection fault caused by Logitech driver
KMSAN: use-after-free in hidraw_ioctl 1 378d 378d 329d 416dacb8 HID: hidraw: Fix invalid read in hidraw_ioctl
KMSAN: use-after-free in rxrpc_put_peer 1 369d 369d 329d 91fcfbe8 rxrpc: Fix call crypto state cleanup
KMSAN: uninit-value in lg4ff_set_autocenter_default C 1 359d 358d 329d d9d4b1e4 HID: Fix assumption that devices have inputs
WARNING in sk_stream_kill_queues (3) C cause 622 500d 859d 329d 9354544c net/tls: fix page double free on TX cleanup
KCSAN: data-race in udp_set_dev_scratch / udpv6_recvmsg 5 352d 363d 333d a793183c udp: fix data-race in udp_set_dev_scratch()
KCSAN: data-race in __skb_wait_for_more_packets / skb_queue_tail 1 356d 356d 333d 7c422d0c net: add READ_ONCE() annotation in __skb_wait_for_more_packets()
KASAN: use-after-free Read in batadv_iv_ogm_queue_add 3 355d 386d 333d 40e220b4 batman-adv: Avoid free/alloc race when handling OGM buffer
WARNING: refcount bug in smc_release C cause 8 339d 363d 333d 301428ea net/smc: fix refcounting for non-blocking connect()
INFO: trying to register non-static key in bond_3ad_update_lacp_rate C cause 26 356d 358d 333d ad9bd8da bonding: fix using uninitialized mode_lock
KCSAN: data-race in datagram_poll / skb_queue_tail 5 352d 361d 333d 3ef7cf57 net-backports: net: use skb_queue_empty_lockless() in poll() handlers
general protection fault in process_one_work 2 358d 358d 333d 6d6f0383 netdevsim: Fix use-after-free during device dismantle
KASAN: use-after-free Read in fuse_request_end syz cause 6 364d 368d 333d 2b319d1f fuse: don't dereference req->args on finished request
KCSAN: data-race in udp6_lib_lookup2 / udpv6_queue_rcv_one_skb 1 362d 362d 333d 7170a977 net: annotate accesses to sk->sk_incoming_cpu
KCSAN: data-race in tcp_v4_rcv / tcp_v4_rcv 4 352d 356d 333d 7170a977 net-backports: net: annotate accesses to sk->sk_incoming_cpu
memory leak in internal_dev_create C 88 355d 442d 333d 9464cc37 net: openvswitch: free vport unless register_netdevice() succeeds
divide error in dummy_timer C 3 357d 362d 333d 54f83b8c USB: gadget: Reject endpoints with 0 maxpacket value
KCSAN: data-race in __skb_recv_udp / __udp_enqueue_schedule_skb 7 351d 364d 333d 137a0dbe net-backports: udp: use skb_queue_empty_lockless()
KCSAN: data-race in first_packet_length / udp_poll 2 355d 361d 333d 137a0dbe net-backports: udp: use skb_queue_empty_lockless()
memory leak in copy_net_ns C cause 422 354d 392d 333d 82ecff65 keys: Fix memory leak in copy_net_ns
KCSAN: data-race in update_defense_level / update_defense_level (2) 20 351d 364d 333d c24b75e0 ipvs: move old_secure_tcp into struct netns_ipvs
INFO: trying to register non-static key in bond_3ad_update_ad_actor_settings C cause 69 356d 358d 333d ad9bd8da bonding: fix using uninitialized mode_lock
KASAN: use-after-free Read in bpf_prog_kallsyms_find (2) C cause 9 362d 373d 333d cd7455f1 bpf: Fix use after free in subprog's jited symbol removal
KASAN: use-after-free Read in is_bpf_text_address C cause 3 363d 364d 333d cd7455f1 bpf: Fix use after free in subprog's jited symbol removal
KCSAN: data-race in __skb_wait_for_more_packets / __sock_queue_rcv_skb 10 352d 362d 333d 7c422d0c net: add READ_ONCE() annotation in __skb_wait_for_more_packets()
KASAN: use-after-free Read in io_uring_setup syz cause 1 359d 359d 333d 044c1ab3 io_uring: don't touch ctx in setup after ring fd install
KCSAN: data-race in udpv6_queue_rcv_one_skb / udpv6_queue_rcv_one_skb 1 359d 358d 333d ee8d153d net-backports: net: annotate lockless accesses to sk->sk_napi_id
BUG: unable to handle kernel paging request in is_bpf_text_address C cause 2 369d 369d 333d cd7455f1 bpf: Fix use after free in subprog's jited symbol removal
INFO: task hung in ld_usb_write C 831 351d 364d 333d 52403cfb USB: ldusb: fix control-message timeout
KCSAN: data-race in __skb_recv_udp / datagram_poll 1 352d 352d 333d 3f926af3 net: use skb_queue_empty_lockless() in busy poll contexts
KCSAN: data-race in __skb_wait_for_more_packets / __udp_enqueue_schedule_skb 2 356d 363d 333d 7c422d0c net-backports: net: add READ_ONCE() annotation in __skb_wait_for_more_packets()
general protection fault in kernfs_add_one C cause 98 442d 765d 333d ac43432c driver core: Fix use-after-free and double free on glue directory
KASAN: use-after-free Read in ep_scan_ready_list C fix 39 797d 832d 335d 430ac66e net/9p/trans_fd.c: fix race-condition by flushing workqueue before the kfree()
KASAN: use-after-free Read in iowarrior_disconnect C 3056 372d 428d 335d edc4746f USB: iowarrior: fix use-after-free on disconnect
WARNING in kernfs_get C cause 316 443d 772d 335d ac43432c driver core: Fix use-after-free and double free on glue directory
KASAN: use-after-free Read in __schedule (2) C fix 961 592d 810d 335d 26b471c7 KVM: nVMX: Fix bad cleanup on error of get/set nested state IOCTLs
divide error in usbtmc_generic_read C 2 434d 433d 335d de7b9aa6 usbtmc: more sanity checking for packet size
KASAN: use-after-free Read in p9_fd_poll C fix 8 800d 832d 335d 430ac66e net/9p/trans_fd.c: fix race-condition by flushing workqueue before the kfree()
KASAN: use-after-free Read in vhci_hub_control C fix 41 733d 779d 335d 81f7567c usb: usbip: Fix BUG: KASAN: slab-out-of-bounds in vhci_hub_control()
INFO: task hung in vivid_stop_generating_vid_cap C cause+fix 81 719d 723d 344d d65842f7 media: vb2: add waiting_in_dqbuf flag
WARNING in event_function_local C fix 15451 741d 997d 344d 214ff83d KVM: x86: hyperv: implement PV IPI send hypercalls
BUG: MAX_LOCK_DEPTH too low! (2) C fix 5 831d 861d 344d bab2c80e nsh: set mac len based on inner packet
inconsistent lock state in ila_xlat_nl_cmd_del_mapping C fix 2496 793d 799d 344d 7494de04 mfd: da9063: Replace regmap_add_irq_chip with devm counterpart
INFO: task hung in fuse_reverse_inval_entry C fix 23 808d 821d 344d c59fd85e fuse: change interrupt requests allocation algorithm
BUG: corrupted list in p9_conn_cancel C fix 18 734d 834d 344d 9f476d7c net/9p/trans_fd.c: fix race by holding the lock
general protection fault in p9_conn_cancel C fix 2 814d 832d 344d 9f476d7c net/9p/trans_fd.c: fix race by holding the lock
WARNING: ODEBUG bug in p9_fd_close C fix 82 795d 835d 344d 430ac66e net/9p/trans_fd.c: fix race-condition by flushing workqueue before the kfree()
general protection fault in vb2_mmap C cause+fix 21 665d 710d 344d cd26d1c4 media: vb2: vb2_mmap: move lock up
KASAN: stack-out-of-bounds Read in xfrm_state_find (5) C fix 654 631d 933d 344d 32bf94fb xfrm: validate template mode
KASAN: slab-out-of-bounds Write in end_requests C fix 2 809d 813d 344d 45ff350b fuse: fix unlocked access to processing queue
KASAN: use-after-free Read in uprobe_perf_close C fix 54 613d 932d 344d 621b6d2e perf/core: Fix use-after-free in uprobe_perf_close()
KASAN: use-after-free Read in _decode_session4 C fix 3 935d 935d 344d c6741fbe vti6: Properly adjust vti6 MTU from MTU of lower device
general protection fault in tcp_cleanup_ulp syz cause+fix 6 760d 776d 344d 5607fff3 bpf: sockmap only allow ESTABLISHED sock state
WARNING in request_end C cause+fix 14 721d 757d 344d 4c316f2f fuse: set FR_SENT while locked
WARNING in dma_buf_vunmap C cause+fix 17 670d 708d 344d 62dcb4f4 media: vb2: check memory model for VIDIOC_CREATE_BUFS
BUG: corrupted list in p9_write_work C fix 5 757d 803d 344d 728356de 9p: Add refcount to p9_req_t
KASAN: use-after-free Read in tick_sched_handle (3) C fix 12 646d 701d 346d bc6e019b fou: Prevent unbounded recursion in GUE error handler also with UDP-Lite
general protection fault in qca_setup C cause+fix 6 617d 617d 346d b36a1552 Bluetooth: hci_uart: check for missing tty operations
general protection fault in tcp_splice_read C cause+fix 23 561d 670d 346d 07603b23 net/smc: propagate file from SMC to TCP socket
KASAN: use-after-free Read in crypto_gcm_init_common C cause+fix 14 649d 714d 348d 9354544c net/tls: fix page double free on TX cleanup
KASAN: slab-out-of-bounds Read in find_first_zero_bit C fix 1 934d 934d 348d d1877155 bfs: extra sanity checking and static inode bitmap
kernel BUG at net/ipv4/ip_output.c:LINE! C fix 28225 640d 831d 348d e7c87bd6 bpf: in __bpf_redirect_no_mac pull mac only if present
general protection fault in put_pid syz cause+fix 3 669d 679d 348d a8e911d1 x86_64: increase stack size for KASAN_EXTRA
suspicious RCU usage at ./include/net/inet_sock.h:LINE C fix 171 990d 1081d 348d 3f32d0be tipc: lock wakeup & inputq at tipc_link_reset()
KASAN: use-after-free Read in _decode_session6 C fix 4 707d 775d 348d e7c87bd6 bpf: in __bpf_redirect_no_mac pull mac only if present
general protection fault in propagate_entity_cfs_rq C fix 1 831d 831d 348d bab2c80e nsh: set mac len based on inner packet
KASAN: use-after-free Write in __vb2_cleanup_fileio C cause+fix 2 720d 722d 348d d65842f7 media: vb2: add waiting_in_dqbuf flag
KCSAN: data-race in sk_stream_wait_memory / tcp_shifted_skb 1 361d 349d 349d ab4e846a tcp: annotate sk->sk_wmem_queued lockless reads
KCSAN: data-race in sk_stream_wait_memory / tcp_fragment 1 352d 349d 349d ab4e846a tcp: annotate sk->sk_wmem_queued lockless reads
KCSAN: data-race in tcp_sendmsg_locked / tcp_stream_memory_free 2 360d 349d 349d 0f317464 tcp: annotate tp->write_seq lockless reads
KCSAN: data-race in tcp_event_new_data_sent / tcp_stream_memory_free 3 353d 349d 349d e0d694d6 tcp: annotate tp->snd_nxt lockless reads
KCSAN: data-race in tcp_ack / tcp_poll (2) 5 357d 349d 349d ab4e846a tcp: annotate sk->sk_wmem_queued lockless reads
KCSAN: data-race in sk_stream_wait_memory / tcp_ack 2 354d 349d 349d ab4e846a tcp: annotate sk->sk_wmem_queued lockless reads
KASAN: slab-out-of-bounds Read in ld_usb_read (3) C 74 359d 370d 349d 7a6f22d7 USB: ldusb: fix read info leaks
KASAN: slab-out-of-bounds Read in build_audio_procunit C 6 355d 364d 349d ba8bf096 ALSA: usb-audio: Fix copy&paste error in the validator
KASAN: slab-out-of-bounds Write in ga_probe C 5 378d 400d 349d d9d4b1e4 HID: Fix assumption that devices have inputs
INFO: task hung in nbd_ioctl C cause 71 351d 386d 349d cf1b2326 nbd: verify socket is supported during setup
KASAN: use-after-free Read in usb_autopm_put_interface C 2373 358d 371d 349d 7a759197 USB: usblp: fix use-after-free on disconnect
memory leak in gfs2_init_fs_context C 13 362d 384d 349d 30aecae8 gfs2: Fix memory leak when gfs2meta's fs_context is freed
KMSAN: uninit-value in sr9800_bind C 27 361d 384d 351d 77b6d09f net: usb: sr9800: fix uninitialized local variable
WARNING in filldir64 76 369d 379d 351d b9959c7a filldir[64]: remove WARN_ON_ONCE() for bad directory entries
memory leak in llc_ui_create (2) C cause 19 368d 487d 351d c6ee11c3 llc: fix sk_buff leak in llc_sap_state_process()
KCSAN: data-race in tcp_add_backlog / tcp_rcv_space_adjust (2) 18 364d 370d 351d ebb3b78d tcp: annotate sk->sk_rcvbuf lockless reads
KCSAN: data-race in __nf_ct_refresh_acct / __nf_ct_refresh_acct 2460 351d 382d 351d e37542ba net-backports: netfilter: conntrack: avoid possible false sharing
BUG: unable to handle kernel NULL pointer dereference in xsk_poll C cause 10 369d 387d 351d df551058 xsk: Fix crash in poll when device does not support ndo_xsk_wakeup
KASAN: use-after-free Read in rxrpc_release_call syz cause 13 369d 424d 351d 91fcfbe8 rxrpc: Fix call crypto state cleanup
KASAN: use-after-free Read in rxrpc_send_keepalive C cause 694 366d 438d 351d c48fc11b rxrpc: Fix call ref leak
KCSAN: data-race in __tcp_select_window / tcp_add_backlog 23502 351d 382d 351d 70c26558 net: silence KCSAN warnings about sk->sk_backlog.len reads
memory leak in sctp_get_port_local (3) C 4 367d 373d 351d 63dfb793 sctp: change sctp_prot .no_autobind with true
memory leak in llc_ui_sendmsg C 125 367d 518d 351d c6ee11c3 llc: fix sk_buff leak in llc_sap_state_process()
KCSAN: data-race in tcp_add_backlog / tcp_recvmsg 17719 352d 382d 351d 8265792b net-backports: net: silence KCSAN warnings around sk_add_backlog() calls
INFO: task hung in addrconf_verify_work (2) C 22 373d 373d 351d 39f13ea2 net: avoid potential infinite loop in tc_ctl_action()
KASAN: use-after-free Read in pn533_send_complete C 4 359d 379d 351d 6af3aa57 NFC: pn533: fix use-after-free and memleaks
KCSAN: data-race in tcp_poll / tcp_recvmsg (2) 22 364d 370d 351d 7db48e98 tcp: annotate tp->copied_seq lockless reads
KASAN: use-after-free Read in rxrpc_put_peer C cause 38 367d 419d 351d 55f6c98e rxrpc: Fix trace-after-put looking at the put peer record 9ebeddef rxrpc: rxrpc_peer needs to hold a ref on the rxrpc_local record
KCSAN: data-race in tcp_poll / tcp_queue_rcv 1897 351d 382d 351d dba7d9b8 net-backports: tcp: annotate tp->rcv_nxt lockless reads
memory leak in llc_conn_ac_send_sabme_cmd_p_set_x C 225 367d 518d 351d b74555de llc: fix sk_buff leak in llc_conn_service()
general protection fault in rxrpc_error_report C cause 6 367d 379d 351d f0308fb0 rxrpc: Fix possible NULL pointer access in ICMP handling
KCSAN: data-race in tcp_add_backlog / tcp_grow_window.isra.0 21713 351d 382d 351d 70c26558 net-backports: net: silence KCSAN warnings about sk->sk_backlog.len reads
WARNING: suspicious RCU usage in xfrm_alloc_userspi C cause+fix 86 580d 581d 352d f10e0010 net: xfrm: Add '_rcu' tag for rcu protected pointer in netns_xfrm
general protection fault in get_work_pool C fix 24 560d 963d 352d 07bf7908 xfrm: Validate address prefix lengths in the xfrm selector.
general protection fault in xfrm_init_replay syz cause+fix 2 950d 949d 352d d97ca5d7 xfrm_user: uncoditionally validate esn replay attribute struct
WARNING: suspicious RCU usage in xfrm_get_spdinfo C cause+fix 46 580d 581d 352d f10e0010 net: xfrm: Add '_rcu' tag for rcu protected pointer in netns_xfrm
WARNING: suspicious RCU usage in xfrm_get_sadinfo C cause+fix 28 580d 581d 352d f10e0010 net: xfrm: Add '_rcu' tag for rcu protected pointer in netns_xfrm
WARNING: suspicious RCU usage in xfrm_get_policy syz cause+fix 8 581d 581d 352d f10e0010 net: xfrm: Add '_rcu' tag for rcu protected pointer in netns_xfrm
memory leak in sctp_stream_init_ext C 34 373d 508d 358d 3c52b0af lib/generic-radix-tree.c: add kmemleak annotations
possible deadlock in usb_deregister_dev (2) C 956 372d 400d 359d 33a78132 USB: legousbtower: fix deadlock on disconnect
KMSAN: uninit-value in mts_usb_probe C 29 378d 384d 359d 177238c3 USB: microtek: fix info-leak at probe
WARNING in mark_lock (2) 14 365d 393d 359d 8e00c4e9 writeback: fix use-after-free in finish_writeback_work()
BUG: bad usercopy in read_rio 2 374d 377d 359d 015664d1 USB: rio500: Remove Rio 500 kernel driver
KMSAN: uninit-value in iowarrior_disconnect C 18 377d 383d 359d edc4746f USB: iowarrior: fix use-after-free on disconnect
general protection fault in open_rio 2 391d 392d 359d 015664d1 USB: rio500: Remove Rio 500 kernel driver
KASAN: use-after-free Read in adu_disconnect C 5304 372d 442d 359d 44efc269 USB: adutux: fix use-after-free on disconnect
INFO: rcu detected stall in dummy_timer C 16 374d 438d 359d 32a0721c USB: yurex: Don't retry on unexpected errors
KASAN: invalid-free in disconnect_rio (2) C 51 376d 397d 359d 015664d1 USB: rio500: Remove Rio 500 kernel driver
general protection fault in finish_writeback_work 10 368d 393d 359d 8e00c4e9 writeback: fix use-after-free in finish_writeback_work()
INFO: trying to register non-static key in finish_writeback_work syz cause 1 395d 392d 359d 8e00c4e9 writeback: fix use-after-free in finish_writeback_work()
INFO: rcu detected stall in rt6_probe_deferred 336 401d 406d 365d d4d6ec6d sch_hhf: ensure quantum and hhf_non_hh_weight are non-zero
INFO: rcu detected stall in addrconf_rs_timer (2) 362 384d 406d 365d d4d6ec6d sch_hhf: ensure quantum and hhf_non_hh_weight are non-zero
general protection fault in bpf_tcp_close (2) C fix 26 788d 832d 365d e06fa9c1 bpf, sockmap: fix potential use after free in bpf_tcp_close
BUG: unable to handle kernel NULL pointer dereference in rds_bind C cause 51 389d 400d 371d 05733434 net/rds: Check laddr_check before calling it
divide error in tabledist 3 388d 397d 371d b41d936b sch_netem: fix a divide by zero in tabledist()
WARNING: lock held when returning to user space in rcu_lock_acquire C cause 3 384d 384d 371d 73956fc0 membarrier: Fix RCU locking bug caused by faulty merge
memory leak in v9fs_cache_session_get_cookie C 242 371d 518d 371d 962a991c 9p/cache.c: Fix memory leak in v9fs_cache_session_get_cookie
WARNING in em28xx_usb_disconnect C 8 406d 438d 371d 46e4a266 media: em28xx: modules workqueue not inited for 2nd device
KASAN: use-after-free Read in si470x_int_in_callback C 25 380d 469d 371d 0d616f2a media: radio/si470x: kill urb on error
kernel BUG at include/linux/skbuff.h:LINE! (2) C cause 58 421d 431d 371d c7a42eb4 net: ipv6: fix listify ip6_rcv_finish in case of forwarding
general protection fault in make_kuid C cause 4 431d 456d 371d 1dd9bc08 vfs: set fs_context::user_ns for reconfigure
general protection fault in ath6kl_usb_alloc_urb_from_pipe C 1160 397d 557d 371d 39d170b3 ath6kl: fix a NULL-ptr-deref bug in ath6kl_usb_alloc_urb_from_pipe()
KMSAN: uninit-value in read_sensor_register C 25 371d 501d 371d 4843a543 media: gspca: zero usb_buf on error
WARNING in rcu_note_context_switch C cause 1 386d 386d 371d 73956fc0 membarrier: Fix RCU locking bug caused by faulty merge
KMSAN: kernel-usb-infoleak in ttusb_dec_send_command C 2 439d 449d 371d a10feaf8 media: ttusb-dec: Fix info-leak in ttusb_dec_send_command()
KASAN: use-after-free Read in atusb_disconnect C 112 372d 413d 371d 7fd25e6f ieee802154: atusb: fix use-after-free at disconnect
possible deadlock in io_submit_one (2) 353 391d 429d 371d 76e43c8c fuse: fix deadlock with aio poll and fuse_iqueue::waitq.lock
BUG: using smp_processor_id() in preemptible [ADDR] code: mime_typevmnet0/NUM 1 415d 413d 371d 00d9e47f posix-cpu-timers: Always clear head pointer on dequeue
KMSAN: uninit-value in inet_ehash_insert C 7 380d 387d 371d 6af1799a net-backports: ipv6: drop incoming packets having a v4mapped source address
KASAN: slab-out-of-bounds Read in hdpvr_probe C 10 408d 483d 371d 8b8900b7 media: hdpvr: add terminating 0 at end of string
BUG: assuming atomic context at net/kcm/kcmsock.c:LINE C cause 178 387d 393d 371d 0355d6c1 net-backports: kcm: disable preemption in kcm_parse_func_strparser()
WARNING: suspicious RCU usage in netem_enqueue C cause 16 389d 403d 371d 159d2c7d net-backports: sch_netem: fix rcu splat in netem_enqueue()
general protection fault in xsk_poll C cause 430 401d 428d 371d 42fddcc7 xsk: use state member for socket synchronization
INFO: task syz-executor can't die for more than 143 seconds. C cause 61 388d 496d 371d 8619e5bd /dev/mem: Bail out upon SIGKILL. 7c3a6aed kexec: bail out upon SIGKILL when allocating memory. 8f9e86ee staging: android: ion: Bail out upon SIGKILL when allocating memory.
BUG: sleeping function called from invalid context in tcf_chain0_head_change_cb_del C cause 187 387d 400d 371d e3ae1f96 net: sched: sch_sfb: don't call qdisc_put() while holding tree lock
KASAN: global-out-of-bounds Read in load_next_firmware_from_table C 5 419d 469d 371d 764f3f1e libertas: Add missing sentinel at end of if_usb.c fw_table
WARNING in handle_desc C cause 6 397d 405d 371d 3ca94192 KVM: X86: Fix userspace set invalid CR4
KASAN: use-after-free Read in ext4_data_block_valid 108 455d 902d 371d 7727ae52 ext4: fix potential use after free after remounting with noblock_validity
general protection fault in kstrtouint (2) C cause 40 418d 460d 371d 74983ac2 vfs: Make fs_parse() handle fs_param_is_fd-type params better
BUG: corrupted list in __netif_receive_skb_list_core 3 378d 432d 371d c7a42eb4 net: ipv6: fix listify ip6_rcv_finish in case of forwarding
divide error in usbnet_update_max_qlen C 17 388d 400d 371d 280ceaed usbnet: sanity checking of packet sizes and device mtu
KASAN: slab-out-of-bounds Read in technisat_usb2_rc_query C 2236 417d 555d 371d 0c4df39e media: technisat-usb2: break out of loop at end of buffer
KASAN: slab-out-of-bounds Read in do_tcp_getsockopt 3 395d 414d 371d 3afb0961 tcp: fix slab-out-of-bounds in tcp_zerocopy_receive()
general protection fault in __apic_accept_irq C cause 69 399d 412d 371d a073d7e3 KVM: hyperv: Fix Direct Synthetic timers assert an interrupt w/o lapic_in_kernel
INFO: rcu detected stall in pie_timer C 19 372d 407d 371d 4ce70b4a net-backports: net: sched: sch_htb: don't call qdisc_put() while holding tree lock
KASAN: global-out-of-bounds Read in dvb_pll_attach C 2 409d 468d 371d c268e7ad media: dvb-frontends: use ida for pll number
general protection fault in pk_probe C 2 417d 413d 371d 98375b86 HID: prodikeys: Fix general protection fault during probe
possible deadlock in free_ioctx_users C 509 391d 772d 371d 76e43c8c fuse: fix deadlock with aio poll and fuse_iqueue::waitq.lock
KASAN: use-after-free Read in cbq_enqueue C cause 4 379d 381d 371d e9789c7c sch_cbq: validate TCA_CBQ_WRROPT to avoid crash
general protection fault in dsmark_init C cause 3 380d 382d 371d 474f0813 sch_dsmark: fix potential NULL deref in dsmark_init()
KASAN: global-out-of-bounds Read in hdpvr_probe C 15 424d 537d 371d d4a6a953 media: hdpvr: Add device num check and handling
KASAN: slab-out-of-bounds Read in sctp_inq_pop 1 424d 421d 371d c7a42eb4 net: ipv6: fix listify ip6_rcv_finish in case of forwarding
WARNING: lock held when returning to user space in membarrier_private_expedited C cause 7 384d 386d 371d 73956fc0 membarrier: Fix RCU locking bug caused by faulty merge
WARNING in blk_mq_sched_free_requests (2) 7 389d 393d 371d 284b94be blk-mq: move lockdep_assert_held() into elevator_exit
WARNING: ODEBUG bug in usbhid_disconnect (2) C 48 391d 413d 371d 2bcdacb7 HID: sony: Fix memory corruption issue on cleanup.
KASAN: slab-out-of-bounds Read in usb_reset_and_verify_device syz 1 422d 413d 371d 3dd550a2 USB: usbcore: Fix slab-out-of-bounds bug during device reset
general protection fault in sctp_inq_pop 4 422d 425d 371d c7a42eb4 net: ipv6: fix listify ip6_rcv_finish in case of forwarding
KMSAN: uninit-value in i2c_w C 2 505d 504d 371d 4843a543 media: gspca: zero usb_buf on error
BUG: MAX_STACK_TRACE_ENTRIES too low! (2) C cause 5045 403d 571d 371d 12593b74 locking/lockdep: Reduce space occupied by stack traces
possible deadlock in open_rio (3) C 169 397d 399d 371d 9472aff1 USB: rio500: Fix lockdep violation
WARNING in kfree C cause 2 418d 417d 371d 43ce4c1f vfs: Add a single-or-reconfig keying to vfs_get_super()
KMSAN: uninit-value in __request_module C 13 381d 400d 371d 62794fc4 net_sched: add max len check for TCA_KIND
WARNING in zd_mac_clear C 13194 397d 557d 371d 7a2eb736 zd1211rw: remove false assertion from zd_mac_clear()
general protection fault in xsk_map_update_elem C cause 12 391d 393d 371d fcd30ae0 bpf/xskmap: Return ERR_PTR for failure case instead of NULL.
possible deadlock in pie_timer C cause 2 388d 389d 371d e3ae1f96 net: sched: sch_sfb: don't call qdisc_put() while holding tree lock
KMSAN: uninit-value in sd_init C 122 371d 504d 371d 4843a543 media: gspca: zero usb_buf on error
WARNING in iguanair_probe/usb_submit_urb C 3 402d 452d 371d ab1cbdf1 media: iguanair: add sanity checks
memory leak in llcp_sock_bind C cause 2 393d 457d 371d a0c2dc1f nfc: fix memory leak in llcp_sock_bind()
general protection fault in __pm_runtime_resume C 197 391d 454d 371d 5f924277 HID: logitech: Fix general protection fault caused by Logitech driver
BUG: unable to handle kernel paging request in coalesced_mmio_write C cause 10 478d 483d 371d b60fe990 KVM: coalesced_mmio: add bounds checking
divide error in cdc_ncm_update_rxtx_max C 5 387d 400d 371d 3fe4b335 cdc_ncm: fix divide-by-zero caused by invalid wMaxPacketSize
general protection fault in tcf_action_destroy 128 388d 406d 371d 3d66b89c net: sched: fix possible crash in tcf_action_destroy()
general protection fault in trace_probe_unlink C cause 7 396d 400d 371d d59fae6f tracing/kprobe: Fix NULL pointer access in trace_porbe_unlink()
memory leak in ppp_write C 5 398d 442d 371d 4c247de5 ppp: Fix memory leak in ppp_write
general protection fault in qdisc_put C cause 60 399d 409d 371d 6efb971b net_sched: let qdisc_put() accept NULL pointer
general protection fault in dev_map_hash_update_elem C cause 4 405d 411d 371d af58e7ee xdp: Fix race in dev_map_hash_update_elem() when replacing element
KASAN: slab-out-of-bounds Read in hidraw_ioctl C 104 398d 448d 371d 416dacb8 HID: hidraw: Fix invalid read in hidraw_ioctl
INFO: rcu detected stall in sys_exit_group C cause 1 403d 398d 377d d4d6ec6d sch_hhf: ensure quantum and hhf_non_hh_weight are non-zero
INFO: rcu detected stall in sys_sendmmsg 2 407d 407d 377d d4d6ec6d sch_hhf: ensure quantum and hhf_non_hh_weight are non-zero
INFO: rcu detected stall in pppoe_sendmsg 7 402d 409d 377d d4d6ec6d sch_hhf: ensure quantum and hhf_non_hh_weight are non-zero
WARNING in xfrm_policy_inexact_list_reinsert 2 412d 439d 377d 769a807d xfrm: policy: avoid warning splat when merging nodes
general protection fault in rds_recv_rcvbuf_delta C cause 35 481d 709d 377d c5c1a030 net/rds: An rds_sock is added too early to the hash table
INFO: rcu detected stall in sys_sendmsg C cause 2 403d 403d 377d d4d6ec6d sch_hhf: ensure quantum and hhf_non_hh_weight are non-zero
INFO: rcu detected stall in br_hello_timer_expired 4 401d 406d 377d d4d6ec6d sch_hhf: ensure quantum and hhf_non_hh_weight are non-zero
INFO: rcu detected stall in addrconf_dad_work C cause 126 401d 406d 377d d4d6ec6d sch_hhf: ensure quantum and hhf_non_hh_weight are non-zero
INFO: rcu detected stall in inet_release 1 410d 409d 377d d4d6ec6d sch_hhf: ensure quantum and hhf_non_hh_weight are non-zero
INFO: rcu detected stall in packet_sendmsg 10 402d 408d 377d d4d6ec6d sch_hhf: ensure quantum and hhf_non_hh_weight are non-zero
general protection fault in addrconf_f6i_alloc C 305 401d 411d 377d 8652f17c ipv6: addrconf_f6i_alloc - fix non-null pointer check to !IS_ERR()
INFO: rcu detected stall in sys_clone 1 405d 405d 377d d4d6ec6d sch_hhf: ensure quantum and hhf_non_hh_weight are non-zero
WARNING in __mark_chain_precision (2) C cause 18 400d 418d 377d 2339cd6c bpf: fix precision tracking of stack slots
INFO: rcu detected stall in dccp_write_timer 5 407d 409d 377d d4d6ec6d sch_hhf: ensure quantum and hhf_non_hh_weight are non-zero
INFO: rcu detected stall in br_handle_frame C cause 341 401d 406d 377d d4d6ec6d sch_hhf: ensure quantum and hhf_non_hh_weight are non-zero
general protection fault in tls_sk_proto_close (2) syz cause 246 401d 420d 377d 44580a01 net: sock_map, fix missing ulp check in sock hash case
INFO: rcu detected stall in mld_ifc_timer_expire C cause 152 401d 409d 377d d4d6ec6d sch_hhf: ensure quantum and hhf_non_hh_weight are non-zero
INFO: rcu detected stall in neigh_timer_handler (2) 2 406d 408d 377d d4d6ec6d sch_hhf: ensure quantum and hhf_non_hh_weight are non-zero
BUG: soft lockup in addrconf_dad_work C cause 1 405d 405d 377d d4d6ec6d sch_hhf: ensure quantum and hhf_non_hh_weight are non-zero
INFO: rcu detected stall in igmp_ifc_timer_expire C 57 401d 660d 377d d4d6ec6d sch_hhf: ensure quantum and hhf_non_hh_weight are non-zero
INFO: rcu detected stall in mld_dad_timer_expire 3 406d 407d 377d d4d6ec6d sch_hhf: ensure quantum and hhf_non_hh_weight are non-zero
memory leak in sctp_get_port_local (2) C 34 381d 439d 377d 29b99f54 sctp: destroy bucket if failed to bind addr
BUG: unable to handle kernel NULL pointer dereference in tc_bind_tclass C cause 61 401d 409d 377d 8b142a00 net_sched: check cops->tcf_block in tc_bind_tclass()
INFO: rcu detected stall in netlink_sendmsg (2) C cause 11 402d 408d 377d d4d6ec6d sch_hhf: ensure quantum and hhf_non_hh_weight are non-zero
KMSAN: uninit-value in capi_write C 445 378d 617d 377d fe163e53 isdn/capi: check message length in capi_write()
general protection fault in icmpv6_xrlim_allow 4 505d 511d 378d c3bcde02 tipc: pass tunnel dev as NULL to udp_tunnel(6)_xmit_skb
general protection fault in ip6_rcv_finish 3 495d 501d 378d c3bcde02 tipc: pass tunnel dev as NULL to udp_tunnel(6)_xmit_skb
memory leak in sctp_send_reset_streams C 7 431d 508d 382d 6d5afe20 sctp: fix memleak in sctp_send_reset_streams
general protection fault in requeue_rx_msgs syz cause+fix 1 874d 874d 382d eb7f54b9 kcm: Fix use-after-free caused by clonned sockets
WARNING: suspicious RCU usage (4) C fix 1 780d 779d 382d 865e63b0 tracing: Add back in rcu_irq_enter/exit_irqson() for rcuidle tracepoints
WARNING: suspicious RCU usage in trace_call_bpf C fix 327 761d 779d 382d 865e63b0 tracing: Add back in rcu_irq_enter/exit_irqson() for rcuidle tracepoints
KASAN: use-after-free Read in psock_map_pop C fix 204 728d 772d 382d 5607fff3 bpf: sockmap only allow ESTABLISHED sock state
WARNING in lockdep_unregister_key (2) 3 552d 555d 382d 8b39adbe locking/lockdep: Make lockdep_unregister_key() honor 'debug_locks' again
WARNING: refcount bug in nr_insert_socket C cause 55 445d 469d 382d 4638faac netrom: hold sock when setting skb->destructor
KASAN: slab-out-of-bounds Read in sock_hash_ctx_update_elem C fix 5 813d 813d 382d b845c898 bpf, sockmap: fix sock_hash_alloc and reject zero-sized keys
general protection fault in smap_list_hash_remove C fix 52 821d 839d 382d 99ba2b5a bpf: sockhash, disallow bpf_tcp_close and update in parallel
KASAN: user-memory-access Read in ip6_hold_safe (3) 456 489d 508d 382d c3bcde02 tipc: pass tunnel dev as NULL to udp_tunnel(6)_xmit_skb
WARNING in cbs_dequeue_soft C cause 13 401d 409d 401d 1c6c09a0 net/sched: cbs: Set default link speed to 10 Mbps in cbs_set_port_rate
KMSAN: uninit-value in batadv_iv_send_outstanding_bat_ogm_packet C 9 426d 426d 401d a15d56a6 batman-adv: Only read OGM tvlv_len after buffer len check
possible deadlock in open_rio 1107 410d 446d 410d 2ca359f4 Revert "USB: rio500: simplify locking"
possible deadlock in usb_deregister_dev C 82 435d 442d 410d c468a8aa usb: iowarrior: fix deadlock on disconnect
general protection fault in packet_lookup_frame C cause 7 434d 434d 410d 32d3182c net/packet: fix race in tpacket_snd()
WARNING in bpf_jit_free C cause 21697 410d 827d 410d c751798a bpf: fix use after free in prog symbol exposure
BUG: Dentry still in use [unmount of nfsd nfsd] 1 440d 436d 410d d6846bfb nfsd: fix dentry leak upon mkdir failure.
kernel BUG at mm/huge_memory.c:LINE! 27 486d 656d 410d a53190a4 mm: mempolicy: handle vma with unmovable pages mapped correctly in mbind
memory leak in ip6_mc_add_src C 1 421d 421d 410d a84d0164 mld: fix memory leak in mld_del_delrec()
WARNING in bpf_prog_kallsyms_add syz cause+fix 2 453d 655d 410d c751798a bpf: fix use after free in prog symbol exposure
WARNING in __iforce_usb_xmit/usb_submit_urb C 3 438d 442d 410d 849f5ae3 Input: iforce - add sanity checks
WARNING in kbtab_open/usb_submit_urb C 5 437d 455d 410d c88090df Input: kbtab - sanity check for endpoint type
BUG: unable to handle kernel paging request in bpf_prog_kallsyms_find syz cause+fix 3 627d 702d 410d c751798a bpf: fix use after free in prog symbol exposure
KASAN: use-after-free Read in rxrpc_queue_local C cause 1 436d 435d 410d 06d9532f rxrpc: Fix read-after-free in rxrpc_queue_local()
BUG: unable to handle kernel paging request in bpf_prog_kallsyms_add syz cause 234 411d 772d 410d c751798a bpf: fix use after free in prog symbol exposure
general protection fault in tls_write_space syz 33 428d 438d 410d 57c722e9 net/tls: swap sk_write_space on close
WARNING in usbtouch_open C 768 435d 449d 410d b55d996f Input: usbtouchscreen - initialize PM mutex before using it
KASAN: use-after-free Read in usb_free_coherent 310 435d 446d 410d fc05481b usb: yurex: Fix use-after-free in yurex_delete
KMSAN: uninit-value in rtm_new_nexthop C 8 426d 426d 410d d00ee64e netlink: Fix nlmsg_parse as a wrapper for strict message parsing
KASAN: slab-out-of-bounds Read in bpf_int_jit_compile C cause 1 458d 455d 410d 7c2e988f bpf: fix x64 JIT code generation for jmp to 1st insn
KASAN: use-after-free Read in snd_seq_ioctl_get_client_pool 1 428d 425d 410d 75545304 ALSA: seq: Fix potential concurrent access to the deleted pool
KASAN: use-after-free Read in bpf_prog_kallsyms_del syz cause+fix 3 658d 737d 410d c751798a bpf: fix use after free in prog symbol exposure
kernel BUG at net/rxrpc/local_object.c:LINE! C cause 11167 414d 481d 410d 730c5fd4 rxrpc: Fix local endpoint refcounting
KASAN: null-ptr-deref Write in rxrpc_unuse_local C cause 4422 434d 438d 410d 68553f1a rxrpc: Fix local refcounting
KASAN: use-after-free Read in bpf_get_prog_name 1 453d 452d 410d c751798a bpf: fix use after free in prog symbol exposure
KMSAN: uninit-value in batadv_netlink_dump_hardif C 58 421d 456d 410d 3ee1bb7a batman-adv: fix uninit-value in batadv_netlink_get_ifindex()
WARNING in bpf_prog_kallsyms_find C cause 5632 410d 532d 410d c751798a bpf: fix use after free in prog symbol exposure
KASAN: slab-out-of-bounds Read in do_jit C cause 16 410d 455d 410d 7c2e988f bpf: fix x64 JIT code generation for jmp to 1st insn
KASAN: use-after-free Read in ld_usb_release C 14 429d 438d 410d 303911cf USB: core: Fix races in character device registration and deregistraion
KMSAN: uninit-value in rtm_dump_nexthop C 6 420d 437d 410d d00ee64e netlink: Fix nlmsg_parse as a wrapper for strict message parsing
WARNING in is_bpf_text_address C cause 104 420d 487d 410d c751798a bpf: fix use after free in prog symbol exposure
KASAN: slab-out-of-bounds Read in usbnet_generic_cdc_bind C 2 434d 435d 410d 54364278 USB: CDC: fix sanity checks in CDC union parser
WARNING in __blkdev_put (2) syz 3082 435d 442d 410d e91455ba bdev: Fixup error handling in blkdev_get()
KASAN: use-after-free Read in device_release_driver_internal C 5 432d 455d 410d c52873e5 usb: cdc-acm: make sure a refcount is taken early enough
KASAN: use-after-free Read in bpf_prog_kallsyms_add syz cause+fix 120 537d 772d 410d c751798a bpf: fix use after free in prog symbol exposure
WARNING in wdm_write/usb_submit_urb C 15 414d 428d 410d 1426bd2c USB: cdc-wdm: fix race between write and disconnect due to flag abuse
BUG: corrupted list in rxrpc_local_processor C cause 1679 430d 438d 410d b00df840 rxrpc: Fix local endpoint replacement
KASAN: use-after-free Write in __xfrm_policy_unlink (2) 7 478d 523d 415d b805d78d xfrm: policy: Fix out-of-bound array accesses in __xfrm_policy_unlink
BUG: unable to handle kernel paging request in hrtimer_interrupt syz cause 2 453d 489d 420d 95fa1454 bpf: sockmap/tls, close can race with map free
WARNING in smc_unhash_sk (2) C cause 1047 420d 556d 420d cd206360 net/smc: avoid fallback in case of non-blocking connect
WARNING: ODEBUG bug in tls_sw_free_resources_tx 23 455d 714d 420d f87e62d4 net/tls: remove close callback sock unlock/lock around TX work flush
general protection fault in rcu_core syz cause 1 469d 469d 420d 95fa1454 bpf: sockmap/tls, close can race with map free
general protection fault in mm_update_next_owner syz cause+fix 1 500d 500d 420d 95fa1454 bpf: sockmap/tls, close can race with map free
KMSAN: kernel-usb-infoleak in pcan_usb_pro_send_req C 16 423d 449d 420d 30a8beeb can: peak_usb: pcan_usb_fd: Fix info-leaks to USB devices
KASAN: use-after-free Write in validate_chain syz cause 3 477d 487d 420d 95fa1454 bpf: sockmap/tls, close can race with map free
WARNING: held lock freed! (2) C cause 1 474d 470d 420d 4638faac netrom: hold sock when setting skb->destructor
general protection fault in tls_trim_both_msgs C cause 36 442d 454d 420d 5d92e631 net/tls: partially revert fix transition through disconnect with close
KASAN: use-after-free Read in psi_task_change syz cause 1 454d 453d 420d 95fa1454 bpf: sockmap/tls, close can race with map free
KASAN: slab-out-of-bounds Read in class_equal syz cause 45 441d 514d 420d 95fa1454 bpf: sockmap/tls, close can race with map free
KASAN: slab-out-of-bounds Write in check_noncircular syz cause 1 460d 460d 420d 95fa1454 bpf: sockmap/tls, close can race with map free
WARNING in mark_lock syz cause 2 429d 484d 420d 95fa1454 bpf: sockmap/tls, close can race with map free
general protection fault in holtek_kbd_input_event C 67 441d 453d 420d 01ec0a5f HID: holtek: test for sanity of intfdata
KASAN: use-after-free Read in release_sock C cause 10 443d 453d 420d 4638faac netrom: hold sock when setting skb->destructor
KASAN: slab-out-of-bounds Write in validate_chain syz cause 6 472d 487d 420d 95fa1454 bpf: sockmap/tls, close can race with map free
general protection fault in tcf_ife_init C cause 72 442d 456d 420d c8ec4632 ife: error out when nla attributes are empty
KASAN: invalid-free in tls_sk_proto_cleanup 5 445d 448d 420d 5d92e631 net/tls: partially revert fix transition through disconnect with close
BUG: unable to handle kernel paging request in __do_softirq syz cause+fix 1 490d 489d 420d 95fa1454 bpf: sockmap/tls, close can race with map free
kernel panic: stack is corrupted in validate_chain syz cause 1 483d 483d 420d 95fa1454 bpf: sockmap/tls, close can race with map free
KASAN: slab-out-of-bounds Read in corrupted (2) syz cause 3 453d 502d 420d 95fa1454 bpf: sockmap/tls, close can race with map free
BUG: unable to handle kernel paging request in tls_prots syz cause 1 483d 482d 420d 95fa1454 bpf: sockmap/tls, close can race with map free
kernel panic: corrupted stack end in dput syz cause 1 478d 478d 420d 95fa1454 bpf: sockmap/tls, close can race with map free
general protection fault in tls_sk_proto_close syz cause 260 420d 453d 420d 5d92e631 net/tls: partially revert fix transition through disconnect with close
WARNING in debug_check_no_obj_freed C cause 47 421d 488d 420d f9cedf1a net/smc: do not schedule tx_work in SMC_CLOSED state
BUG: unable to handle kernel paging request in cpuacct_account_field syz cause+fix 1 488d 487d 420d 95fa1454 bpf: sockmap/tls, close can race with map free
memory leak in fdb_create C cause 4 445d 485d 420d d7bae09f net: bridge: delete local fdb on device init failure
KASAN: use-after-free Read in tls_wait_data 1 446d 439d 420d 5d92e631 net/tls: partially revert fix transition through disconnect with close
BUG: unable to handle kernel NULL pointer dereference in corrupted (4) syz cause+fix 1 484d 483d 420d 95fa1454 bpf: sockmap/tls, close can race with map free
possible deadlock in rxrpc_put_peer 1 456d 453d 420d 60034d3d rxrpc: Fix potential deadlock
WARNING: held lock freed in nr_release C cause 344 441d 462d 420d 4638faac netrom: hold sock when setting skb->destructor
KASAN: use-after-free Read in corrupted (3) syz cause 1 482d 482d 420d 95fa1454 bpf: sockmap/tls, close can race with map free
WARNING: ODEBUG bug in __sk_destruct C 2855 440d 905d 420d f9cedf1a net/smc: do not schedule tx_work in SMC_CLOSED state
WARNING in cgroup_rstat_updated syz cause 1 441d 441d 420d 95fa1454 bpf: sockmap/tls, close can race with map free
general protection fault in rb_erase (2) syz cause 4 449d 656d 420d 95fa1454 bpf: sockmap/tls, close can race with map free
KASAN: slab-out-of-bounds Read in usage_accumulate syz cause 3 483d 502d 420d 95fa1454 bpf: sockmap/tls, close can race with map free
KASAN: use-after-free Read in nr_release C cause 25 422d 501d 420d 4638faac netrom: hold sock when setting skb->destructor
WARNING: refcount bug in nr_rx_frame C cause 15 444d 461d 420d 4638faac netrom: hold sock when setting skb->destructor
KASAN: use-after-free Read in hiddev_release C 11 431d 446d 420d 9c09b214 HID: hiddev: avoid opening a disconnected device 6d4472d7 HID: hiddev: do cleanup in failure of opening a device
KASAN: use-after-free Read in nr_insert_socket C cause 22 444d 460d 420d 4638faac netrom: hold sock when setting skb->destructor
general protection fault in tls_tx_records 1 447d 439d 420d 5d92e631 net/tls: partially revert fix transition through disconnect with close
BUG: unable to handle kernel paging request in bpf_prog_ADDR C cause 13 443d 459d 420d 06a22d89 bpf: fix access to skb_shared_info->gso_segs
KASAN: use-after-free Read in nr_rx_frame (2) C cause 3 448d 456d 420d 4638faac netrom: hold sock when setting skb->destructor
memory leak in create_ctx syz 1 500d 500d 420d 95fa1454 bpf: sockmap/tls, close can race with map free
WARNING in xt_compat_add_offset C cause 18 442d 606d 420d 3b48300d netfilter: ebtables: also count base chain policies
KMSAN: kernel-usb-infoleak in pcan_usb_pro_init C 13 424d 449d 420d ead16e53 can: peak_usb: pcan_usb_pro: Fix info-leaks to USB devices
kernel panic: corrupted stack end in corrupted syz cause 17 441d 488d 420d 95fa1454 bpf: sockmap/tls, close can race with map free
WARNING in gpio_to_desc C 3 438d 468d 420d c3953a3c NFC: nfcmrvl: fix gpio-handling regression
KASAN: use-after-free Read in tls_sk_proto_cleanup 9 443d 454d 420d 5d92e631 net/tls: partially revert fix transition through disconnect with close
general protection fault in rb_next (3) syz cause+fix 1 493d 492d 420d 95fa1454 bpf: sockmap/tls, close can race with map free
general protection fault in tls_setsockopt syz cause 7 449d 462d 420d 5d92e631 net/tls: partially revert fix transition through disconnect with close
KMSAN: uninit-value in read_eprom_word C 31 422d 449d 420d 224c0497 net: usb: pegasus: fix improper read if get_registers() fail
general protection fault in finish_task_switch (2) C fix 1538 758d 802d 425d 26b471c7 KVM: nVMX: Fix bad cleanup on error of get/set nested state IOCTLs
KASAN: use-after-free Read in tls_push_sg 2 449d 522d 427d 9354544c net/tls: fix page double free on TX cleanup
possible deadlock in xsk_notifier C cause 495 459d 471d 434d 5464c3a0 xdp: fix potential deadlock on socket mutex
KASAN: use-after-free Write in _free_event C 112 598d 835d 434d 1cf8dfe8 perf/core: Fix race between close() and fork()
WARNING in __mark_chain_precision C cause 105 434d 470d 434d b3b50f05 bpf: fix precision bit propagation for BPF_ST instructions
linux-next boot error: WARNING in corrupted 12 472d 474d 434d 18c49926 cpufreq: Add QoS requests for userspace constraints
INFO: task hung in snd_seq_write 6 580d 785d 434d ede34f39 ALSA: seq: Break too long mutex context in the write loop
memory leak in nfs_get_client C 12 471d 498d 434d 9f7761cf NFS: Cleanup if nfs_match_client is interrupted
usb-fuzzer boot error: general protection fault in dma_direct_max_mapping_size 21 452d 455d 434d 1b5d9a6e scsi: core: fix the dma_max_mapping_size call
memory leak in policydb_read C cause 1 457d 456d 434d 45385237 selinux: fix memory leak in policydb_init()
WARNING in binder_transaction_buffer_release syz cause 38 477d 519d 434d 49ed9694 binder: prevent transactions to context manager from its own process.
general protection fault in snd_usb_pipe_sanity_check C 72 435d 449d 434d 5d78e1c2 ALSA: usb-audio: Fix gpf in snd_usb_pipe_sanity_check
INFO: rcu detected stall in snd_seq_write syz cause 18 454d 785d 434d ede34f39 ALSA: seq: Break too long mutex context in the write loop
KASAN: stack-out-of-bounds Read in hfcsusb_probe C 634 449d 555d 434d f384e62a ISDN: hfcsusb: checking idx of ep configuration
BUG: unable to handle kernel NULL pointer dereference in hci_uart_set_flow_control C cause 7 579d 579d 434d b36a1552 Bluetooth: hci_uart: check for missing tty operations
kernel BUG at drivers/usb/wusbcore/wusbhc.c:LINE! C 1 455d 455d 434d f90bf1ec usb: wusbcore: fix unbalanced get/put cluster_id
memory leak in sctp_get_port_local C 28 444d 511d 442d 9b6c0887 sctp: not bind the socket in sctp_connect
WARNING: Support for this device (Terratec Grabster AV400) is experimental. C 371 450d 539d 442d 1753c7c4 media: pvrusb2: use a different format for warnings
general protection fault in send_hsr_supervision_frame C cause 1395 463d 471d 442d 311633b6 hsr: switch ->dellink() to ->ndo_uninit()
memory leak in ip_mc_add_src (2) C 7 453d 482d 442d e5b1c6c6 igmp: fix memory leak in igmpv3_del_delrec()
general protection fault in btf_array_resolve C cause 109 467d 490d 442d e4f07120 bpf: fix NULL deref in btf_type_is_resolve_source_only
general protection fault in sctp_sched_prio_sched C cause 3 479d 493d 442d 4d141581 sctp: fix error handling on stream scheduler initialization
general protection fault in ip6_datagram_dst_update C cause 12 466d 469d 442d 8975a3ab ipv6: fix potential crash in ip6_datagram_dst_update()
KMSAN: uninit-value in ax88772_bind C 80 444d 505d 442d 78226f6e net: usb: asix: init MAC address buffers
KASAN: use-after-free Read in ip_expire 1 491d 491d 442d d5dd8879 inet: fix various use-after-free in defrags units
kernel BUG at drivers/android/binder_alloc.c:LINE! (4) C cause 26 483d 490d 442d bb4a2e48 binder: return errors from buffer copy functions
KASAN: use-after-free Read in cpia2_usb_disconnect C 3 469d 553d 442d eff73de2 media: cpia2_usb: first wake up, then free in disconnect
general protection fault in ovs_ct_exit C cause 9888 484d 489d 442d b272a0ad netns: restore ops before calling ops_exit_list
memory leak in binder_transaction C 3 483d 495d 442d 1909a671 binder: fix memory leak in error path
KASAN: use-after-free Read in xlog_alloc_log 16 462d 482d 442d 89b171ac xfs: fix iclog allocation size
KMSAN: uninit-value in bond_start_xmit (2) C 2309 442d 766d 442d 9d1bc24b bonding: validate ip header before check IPPROTO_IGMP
WARNING in __flush_work (3) C 1251 445d 555d 442d 11a087f4 media: uvcvideo: Fix access to uninitialized fields on probe error
memory leak in pfkey_xfrm_policy2msg_prep C 4 483d 514d 442d 7c80eb1c af_key: fix leaks in key_pol_get_resp and dump_sp.
KASAN: use-after-free Read in dvb_usb_device_exit C 825 443d 557d 442d 6cf97230 media: dvb: usb: fix use after free in dvb_usb_device_exit
KASAN: slab-out-of-bounds Read in au0828_rc_unregister (2) 11 514d 524d 442d 6d0d1ff9 media: au0828: fix null dereference in error path
INFO: trying to register non-static key in rtl_c2hcmd_launcher C 48950 449d 557d 442d 6c0ed66f rtlwifi: rtl8192cu: fix error handle when usb probe failed
KASAN: use-after-free Read in kfree_skb_list C cause 383 489d 507d 442d b7034146 net: fix use-after-free in kfree_skb_list
KASAN: null-ptr-deref Read in zr364xx_vidioc_querycap C 76 450d 540d 442d 5d2e73a5 media: usb:zr364xx:Fix KASAN:null-ptr-deref Read in zr364xx_vidioc_querycap
memory leak in __ip6_append_data C 10 485d 511d 442d dc93f46b inet: frags: fix use-after-free read in inet_frag_destroy_rcu
WARNING: ath10k USB support is incomplete, don't expect anything to work! C 347 450d 530d 442d 265df32e ath10k: Change the warning message string
KASAN: use-after-free Write in xfrm_hash_rebuild syz cause 8 475d 523d 442d fd709721 xfrm: policy: fix bydst hlist corruption on hash rebuild
memory leak in bcsp_recv C 3 487d 514d 442d 4ce9146e Bluetooth: hci_bcsp: Fix memory leak in rx_skb
memory leak in start_sync_thread C 7 479d 511d 442d 5db7c8b9 ipvs: fix tinfo memory leak in start_sync_thread
KASAN: use-after-free Read in v4l2_release C 275 450d 554d 442d c666355e media: radio-raremono: change devm_k*alloc to k*alloc
net-next build error (2) 2 508d 508d 442d c9bb6165 netfilter: nf_conntrack_bridge: fix CONFIG_IPV6=y
KASAN: use-after-free Read in brnf_exit_net syz cause 3 486d 489d 442d 7e6daf50 netfilter: bridge: prevent UAF in brnf_exit_net()
WARNING in static_key_slow_try_dec C cause 58 465d 469d 442d d44e3fa5 ipv6: fix static key imbalance in fl_create()
WARNING: suspicious RCU usage in in_dev_dump_addr C cause 107 503d 505d 442d d3e6e285 net: ipv4: fix rcu lockdep splat due to wrong annotation
memory leak in nf_hook_entries_grow C 99 470d 505d 442d cf47a0b8 ipvs: defer hook registration to avoid leaks
general protection fault in tcp_v6_send_reset C cause 353 498d 502d 442d 39209673 ipv6: tcp: fix potential NULL deref in tcp_v6_send_reset()
KASAN: use-after-free Read in inet_frag_destroy_rcu C cause 61 510d 512d 442d dc93f46b inet: frags: fix use-after-free read in inet_frag_destroy_rcu
general protection fault in btf_struct_resolve C cause 49 467d 490d 442d e4f07120 bpf: fix NULL deref in btf_type_is_resolve_source_only
KASAN: use-after-free Read in rhashtable_last_table (2) 1 516d 516d 442d dc93f46b inet: frags: fix use-after-free read in inet_frag_destroy_rcu
KASAN: use-after-free Read in unregister_shrinker syz cause 3 498d 503d 442d 689d7ba4 nfsd: fix cleanup of nfsd_reply_cache_init on failure
general protection fault in oom_unkillable_task 1 499d 494d 442d ac311a14 oom: decouple mems_allowed from oom_unkillable_task
general protection fault in rxrpc_connect_call C cause 15 491d 637d 442d e835ada0 rxrpc: Fix send on a connected, but unbound socket
WARNING: Detected a wedged cx25840 chip; the device will not work. C 62 450d 539d 442d 1753c7c4 media: pvrusb2: use a different format for warnings
WARNING: suspicious RCU usage in fib_dump_info_fnhe C cause 7 482d 483d 442d 3b525691 ipv6: fix suspicious RCU usage in rt6_dump_route()
memory leak in hsr_create_self_node C 5 481d 512d 442d b9a1e627 hsr: implement dellink to clean up resources
general protection fault in call_fib6_multipath_entry_notifiers C cause 94 484d 489d 442d 9eee3b49 ipv6: Error when route does not have any valid nexthops
WARNING in snd_usb_motu_microbookii_communicate/usb_submit_urb C 3 459d 497d 442d 801ebf10 ALSA: usb-audio: Sanity checks for each pipe and EP types
memory leak in nr_rx_frame C 5 449d 512d 442d c8c8218e netrom: fix a memory leak in nr_rx_frame()
KASAN: use-after-free Read in p54u_load_firmware_cb syz 40 450d 533d 442d 6e41e225 p54usb: Fix race between disconnect and firmware loading
memory leak in batadv_tvlv_handler_register C 313 467d 518d 442d 17f78dd1 batman-adv: fix for leaked TVLV handler.
INFO: task hung in io_uring_release 24 467d 485d 442d a4c0b3de io_uring: fix io_sq_thread_stop running in front of io_sq_thread
general protection fault in get_task_pid C cause 24 475d 477d 449d 28dd29c0 fork: return proper negative error code
general protection fault in do_move_mount (2) syz cause 7 482d 490d 449d 570d7a98 vfs: move_mount: reject moving kernel internal mounts
memory leak in packet_set_ring C 2 481d 486d 449d 55655e3d net/packet: fix memory leak in packet_set_ring()
possible deadlock in io_submit_one C cause 1779 453d 624d 449d cbcfa130 fs/userfaultfd.c: disable irqs for fault_pending and event locks
KMSAN: uninit-value in tipc_nl_compat_bearer_disable C 19 476d 489d 449d 4f07b80c tipc: check msg->req data len in tipc_nl_compat_bearer_disable
memory leak in sctp_v6_create_accept_sk C 1 507d 506d 449d 25bff6d5 sctp: change to hold sk after auth shkey is created successfully
memory leak in sctp_v4_create_accept_sk C 1 486d 485d 449d 25bff6d5 sctp: change to hold sk after auth shkey is created successfully
possible deadlock in userfaultfd_release C cause 137 481d 724d 449d cbcfa130 fs/userfaultfd.c: disable irqs for fault_pending and event locks
possible deadlock in userfaultfd_read (2) 228 472d 571d 449d cbcfa130 fs/userfaultfd.c: disable irqs for fault_pending and event locks
memory leak in mpihelp_mul_karatsuba_case C 2 484d 485d 449d c8ea9fce lib/mpi: Fix karactx leak in mpi_powm
KASAN: global-out-of-bounds Read in qmi_wwan_probe C 2 472d 484d 449d 904d88d7 qmi_wwan: Fix out-of-bounds read
KASAN: null-ptr-deref Write in submit_audio_out_urb (2) C 3423 449d 481d 449d 34501219 ALSA: line6: Fix write on zero-sized buffer
WARNING in kvm_set_tsc_khz C 5 805d 801d 449d 3f16a5c3 KVM: x86: degrade WARN to pr_warn_ratelimited
WARNING in notify_change C 566 536d 926d 454d f69e749a Abort file_remove_privs() for non-reg. files
WARNING in cgroup_exit C cause 64 530d 532d 454d f2b31bb5 cgroup: never call do_group_exit() with task->frozen bit set
WARNING: syz-executor still has locks held! C cause 233 685d 696d 454d a72173ec Revert "exec: make de_thread() freezable"
general protection fault in inet_accept C 131 671d 832d 467d 07603b23 net/smc: propagate file from SMC to TCP socket
memory leak in sctp_process_init C 10 492d 512d 468d 0a8dd9f6 Fix memory leak in sctp_process_init ce950f10 sctp: Free cookie before we memdup a new one
BUG: unable to handle kernel paging request in ipv6_rcv (2) 18 490d 514d 468d c3bcde02 tipc: pass tunnel dev as NULL to udp_tunnel(6)_xmit_skb
memory leak in __memcg_init_list_lru_node C 3 499d 513d 468d 3510955b mm/list_lru.c: fix memory leak in __memcg_init_list_lru_node
KMSAN: uninit-value in tcp_create_openreq_child C 4000 469d 490d 468d 85f9aa75 inet: clear num_timeout reqsk_alloc()
KASAN: slab-out-of-bounds Read in dst_dev_put 3 602d 653d 468d c3bcde02 tipc: pass tunnel dev as NULL to udp_tunnel(6)_xmit_skb
WARNING in fanotify_handle_event C cause 5 491d 490d 468d c285a2f0 fanotify: update connector fsid cache on add mark
KASAN: use-after-free Read in pneigh_get_next syz cause 2 493d 493d 468d f3e92cb8 neigh: fix use-after-free read in pneigh_get_next
KASAN: use-after-free Read in css_task_iter_advance 48 498d 504d 468d c596687a cgroup: Fix css_task_iter_advance_css_set() cset skip condition
BUG: Dentry still in use [unmount of tmpfs tmpfs] 2 500d 500d 468d 1b0b9cc8 vfs: fsmount: add missing mntget()
KASAN: slab-out-of-bounds Read in __fib6_drop_pcpu_from 1 492d 492d 468d c3bcde02 tipc: pass tunnel dev as NULL to udp_tunnel(6)_xmit_skb
WARNING: refcount bug in css_task_iter_next 11 498d 503d 468d c596687a cgroup: Fix css_task_iter_advance_css_set() cset skip condition
memory leak in raw_sendmsg C 2 493d 505d 468d fd704bd5 can: purge socket error queue on sock destruct
KASAN: slab-out-of-bounds Read in css_task_iter_advance C cause 19 498d 504d 468d c596687a cgroup: Fix css_task_iter_advance_css_set() cset skip condition
memory leak in tipc_buf_acquire C 15 492d 515d 468d 5cf02612 tipc: purge deferredq list for each grp member in tipc_group_delete
general protection fault in __smc_diag_dump syz cause 309 644d 657d 468d b03faa1f net/smc: postpone release of clcsock
inconsistent lock state in ax25_destroy_timer 2 492d 493d 468d d4d5d8e8 ax25: fix inconsistent lock state in ax25_destroy_timer
memory leak in inet6_create C 2 499d 502d 468d 522924b5 net: correct udp zerocopy refcnt also when zerocopy only on append
memory leak in kobject_set_name_vargs C 12 477d 510d 468d 4f488fbc cfg80211: fix memory leak of wiphy device name
inconsistent lock state in ax25_rt_autobind 2 492d 492d 468d d4d5d8e8 ax25: fix inconsistent lock state in ax25_destroy_timer
general protection fault in rt_cache_valid 24 486d 613d 468d c3bcde02 tipc: pass tunnel dev as NULL to udp_tunnel(6)_xmit_skb
KASAN: use-after-free Read in sprintf syz cause 2 493d 493d 468d f3e92cb8 neigh: fix use-after-free read in pneigh_get_next
BUG: Dentry still in use [unmount of sysfs sysfs] C cause 6 493d 493d 468d 1b0b9cc8 vfs: fsmount: add missing mntget()
general protection fault in dst_dev_put (2) C cause 442 490d 679d 468d c3bcde02 tipc: pass tunnel dev as NULL to udp_tunnel(6)_xmit_skb
KASAN: null-ptr-deref Read in css_task_iter_advance 2 498d 499d 468d c596687a cgroup: Fix css_task_iter_advance_css_set() cset skip condition
BUG: Dentry still in use [unmount of hugetlbfs hugetlbfs] C cause 3 491d 491d 468d 1b0b9cc8 vfs: fsmount: add missing mntget()
KMSAN: kernel-infoleak in copy_siginfo_to_user (2) C 15 498d 527d 468d f6e2aa91 signal/ptrace: Don't leak unitialized kernel memory with PTRACE_PEEK_SIGINFO
WARNING in blk_mq_sched_free_requests C cause 4 495d 498d 468d c326f846 blk-mq: remove WARN_ON(!q->elevator) from blk_mq_sched_free_requests
KASAN: slab-out-of-bounds Read in rt_cache_valid 3 506d 505d 468d c3bcde02 tipc: pass tunnel dev as NULL to udp_tunnel(6)_xmit_skb
BUG: unable to handle kernel paging request in dst_dev_put 3 510d 653d 468d c3bcde02 tipc: pass tunnel dev as NULL to udp_tunnel(6)_xmit_skb
KASAN: use-after-free Read in rt_cache_valid syz cause 5 500d 616d 468d c3bcde02 tipc: pass tunnel dev as NULL to udp_tunnel(6)_xmit_skb
memory leak in new_inode_pseudo C 136 469d 517d 468d 355e8d26 io_uring: fix memory leak of UNIX domain socket inode
memory leak in lapb_register C 16 492d 518d 468d 6be8e297 lapb: fixed leak of control-blocks.
KASAN: use-after-free Read in blk_mq_free_rqs C cause 3481 498d 502d 475d c3e22192 block: free sched's request pool in blk_cleanup_queue
possible deadlock in aio_poll C 5041 627d 772d 479d ae62c16e userfaultfd: disable irqs when taking the waitqueue lock
KASAN: slab-out-of-bounds Read in linear_transfer (2) 1 555d 546d 484d ca0214ee ALSA: pcm: Fix possible OOB access in PCM oss plugins
KASAN: slab-out-of-bounds Read in rhashtable_walk_enter C cause 48 518d 522d 484d 526f5b85 tipc: fix modprobe tipc failed after switch order of device registration
BUG: spinlock bad magic in rhashtable_walk_enter C cause 8 518d 522d 484d 526f5b85 tipc: fix modprobe tipc failed after switch order of device registration
KASAN: use-after-free Write in check_and_subscribe_port 1 539d 533d 484d 7c32ae35 ALSA: seq: Cover unsubscribe_port() in list_mutex
WARNING: proc registration bug in snd_info_card_register C 453 513d 557d 484d 0b074ab7 ALSA: line6: Assure canceling delayed work at disconnection
KASAN: slab-out-of-bounds Write in default_read_copy_kernel C cause 3 604d 681d 484d ca0214ee ALSA: pcm: Fix possible OOB access in PCM oss plugins
INFO: task hung in __ia32_sys_io_uring_enter 2 554d 555d 485d b19062a5 io_uring: fix possible deadlock between io_uring_{enter,register}
INFO: task hung in __x64_sys_io_uring_enter 12 548d 555d 485d b19062a5 io_uring: fix possible deadlock between io_uring_{enter,register}
general protection fault in sctp_sched_dequeue_common (2) C cause 3 586d 586d 485d 2e990dfd sctp: remove sched init from sctp_stream_init
WARNING in ovl_instantiate syz cause 75 542d 710d 485d 146d62e5 ovl: detect overlapping layers acf3062a ovl: relax WARN_ON() for overlapping layers use case
general protection fault in sisusb_probe C 3 528d 530d 489d 9a5729f6 USB: sisusbvga: fix oops in error path of sisusb_probe
INFO: task hung in __get_super C 80 489d 933d 489d 33ec3e53 loop: Don't change loop device under exclusive opener
KASAN: slab-out-of-bounds Write in usb_get_bos_descriptor syz 3 516d 529d 489d a03ff544 USB: Fix slab-out-of-bounds write in usb_get_bos_descriptor
KASAN: invalid-free in disconnect_rio C 180 512d 557d 489d 3864d339 USB: rio500: refuse more than one device at a time
general protection fault in smsusb_init_device C 23 513d 551d 489d 31e0456d media: usb: siano: Fix general protection fault in smsusb
memory leak in packet_setsockopt C 10 502d 518d 489d afa0925c packet: unconditionally free po->rollover
KASAN: wild-memory-access Read in refcount_sub_and_test_checked 2 509d 525d 490d 61fb0d01 ipv6: prevent possible fib6 leaks
KASAN: use-after-free Read in ip6_fragment 1 521d 521d 490d 61fb0d01 ipv6: prevent possible fib6 leaks
BUG: unable to handle kernel NULL pointer dereference in ip6_rcv_finish 3 497d 525d 490d 61fb0d01 ipv6: prevent possible fib6 leaks
KASAN: use-after-free Write in fib6_purge_rt 2 515d 523d 490d 61fb0d01 ipv6: prevent possible fib6 leaks
KASAN: null-ptr-deref Write in fib6_purge_rt 18 504d 527d 490d 61fb0d01 ipv6: prevent possible fib6 leaks
KASAN: use-after-free Read in napi_gro_frags C cause 16 508d 510d 490d a4270d67 net-gro: fix use-after-free read in napi_gro_frags()
memory leak in ip_mc_add_src C 14 495d 518d 490d 3580d04a ipv4/igmp: fix another memory leak in igmpv3_del_delrec()
memory leak in process_preds C 1 512d 512d 490d dfb4a6f2 tracing: Avoid memory leak in predicate_parse()
memory leak in llc_ui_create C 4 500d 513d 490d 8fb44d60 llc: fix skb leak in llc_build_and_send_ui_pkt()
memory leak in inet_create C 2 504d 518d 490d 100f6d8e net: correct zerocopy refcnt with udp MSG_MORE
KASAN: slab-out-of-bounds Write in fib6_purge_rt 6 491d 526d 490d 61fb0d01 ipv6: prevent possible fib6 leaks
INFO: trying to register non-static key in rhashtable_walk_enter C 16 518d 522d 490d 526f5b85 tipc: fix modprobe tipc failed after switch order of device registration
KASAN: use-after-free Read in __dev_map_entry_free C 473 572d 853d 490d 2baae354 bpf: devmap: fix use-after-free Read in __dev_map_entry_free
KASAN: null-ptr-deref Write in submit_audio_out_urb C 185 497d 512d 490d 0b074ab7 ALSA: line6: Assure canceling delayed work at disconnection
INFO: task hung in usb_kill_urb C 1515 552d 557d 494d 50896c41 USB: dummy-hcd: Fix failure to give back unlinked URBs USB: dummy-hcd: Fix failure to give back unlinked URBs
KASAN: use-after-free Read in snd_seq_timer_interrupt 1 727d 727d 494d fe1b26c9 ALSA: timer: Make snd_timer_close() really kill pending actions
general protection fault in do_move_mount 3 531d 531d 494d 05883eee do_move_mount(): fix an unsafe use of is_anon_ns()
KASAN: use-after-free Read in tipc_sk_filter_rcv C cause 3439 573d 580d 494d 77d5ad40 tipc: fix use-after-free in tipc_sk_filter_rcv
BUG: assuming atomic context at net/core/flow_dissector.c:LINE syz 19 525d 529d 494d b1c17a9a flow_dissector: disable preemption around BPF calls
general protection fault in load_elf_binary C cause 15 567d 571d 494d cc338010 fs/binfmt_elf.c: free PT_INTERP filename ASAP
INFO: task hung in snd_seq_kernel_client_ctl C cause 554 557d 558d 494d f0654ba9 Revert "ALSA: seq: Protect in-kernel ioctl calls with mutex"
BUG: unable to handle kernel paging request in isolate_freepages_block 3 538d 533d 494d 60fce36a mm/compaction.c: correct zone boundary handling when isolating pages from a pageblock
KASAN: use-after-free Read in snd_timer_process_callbacks C cause 4 560d 561d 494d df55531b ALSA: timer: Revert active callback sync check at close
WARNING in cma_exit_net 25 567d 568d 494d 061ccb52 RDMA/cma: Set proper port number as index
KASAN: use-after-free Read in snd_seq_ioctl_get_subscription 2 718d 751d 494d 2eabc5ec ALSA: seq: Fix race of get-subscription call vs port-delete ioctls
KASAN: use-after-free Read in tcp_v6_send_reset 1 575d 575d 494d 4f661542 tcp: fix zerocopy and notsent_lowat issues
WARNING in batadv_mcast_mla_update 75 525d 660d 494d a3c7cd0c batman-adv: mcast: fix multicast tt/tvlv worker locking
BUG: using __this_cpu_read() in preemptible code in ip6_finish_output C cause 18807 562d 567d 494d 28b05b92 net: use correct this_cpu primitive in dev_recursion_level
WARNING: ODEBUG bug in netdev_freemem syz cause 1042 494d 659d 494d a3c7cd0c batman-adv: mcast: fix multicast tt/tvlv worker locking
WARNING: locking bug in nfs_get_client C cause 13 530d 531d 494d c260121a NFS: Fix a double unlock from nfs_match,get_client
WARNING: locking bug in copy_process C cause 3 528d 530d 494d c3b7112d fork: do not release lock that wasn't taken
KASAN: use-after-free Read in string C 247 538d 778d 494d c03a0fd0 kobject: Don't trigger kobject_uevent(KOBJ_REMOVE) twice.
KASAN: use-after-free Read in get_mem_cgroup_from_mm C cause 375 540d 714d 494d c3f3ce04 userfaultfd: use RCU to free the task struct when fork fails
KASAN: slab-out-of-bounds Write in skb_release_data 1 574d 574d 494d 4f661542 tcp: fix zerocopy and notsent_lowat issues
KASAN: use-after-free Read in __vb2_perform_fileio C cause 786 532d 722d 494d d65842f7 media: vb2: add waiting_in_dqbuf flag
BUG: sleeping function called from invalid context in line6_pcm_acquire 119 513d 531d 494d 7f84ff68 ALSA: line6: toneport: Fix broken usage of timer for delayed execution
kernel BUG at drivers/android/binder_alloc.c:LINE! (3) C cause 24 503d 572d 494d a3c7cd0c batman-adv: mcast: fix multicast tt/tvlv worker locking
WARNING in batadv_mcast_mla_tt_retract syz cause 190 525d 660d 494d a3c7cd0c batman-adv: mcast: fix multicast tt/tvlv worker locking
KASAN: use-after-free Write in __ext4_expand_extra_isize C 95 541d 932d 494d 7bc04c5c ext4: fix use-after-free race with debug_want_extra_isize
general protection fault in tipc_mcast_filter_msg C cause 3889 558d 580d 494d 08e046c8 tipc: fix a null pointer deref
WARNING in port_delete syz cause 22 617d 832d 494d 7c32ae35 ALSA: seq: Cover unsubscribe_port() in list_mutex feb68902 ALSA: seq: Protect in-kernel ioctl calls with mutex
kernel BUG at mm/slab.c:LINE! (4) 12 506d 574d 494d 4f661542 tcp: fix zerocopy and notsent_lowat issues
possible deadlock in acct_pin_kill C cause 273 537d 754d 494d 9419a319 acct_on(): don't mess with freeze protection
kernel BUG at arch/x86/mm/physaddr.c:LINE! (2) C cause 522 494d 704d 494d dad7e270 media: vivid: use vfree() instead of kfree() for dev->bitmap_cap
general protection fault in __handle_mm_fault C cause 17 737d 746d 498d ff09d7ec mm/memory.c: recheck page table entry with page table lock held
KMSAN: uninit-value in aa_fqlookupn_profile C 39 709d 754d 498d 250f2da4 apparmor: Fix uninitialized value in aa_split_fqname
BUG: bad usercopy in __check_heap_object (3) C 287 766d 837d 498d 1f4aace6 fs/seq_file.c: simplify seq_file iteration code and interface
general protection fault in put_fs_context C 9 721d 721d 498d 8d0347f6 convert do_remount_sb() to fs_context
kernel panic: MAC Initialization failed. (3) C cause 799 526d 600d 498d e80b1859 tomoyo: Add a kernel config option for fuzzing testing.
KASAN: use-after-free Read in br_mdb_ip_get 1 632d 632d 508d 1515a63f net: bridge: always clear mcast matching struct on reports and leaves
KMSAN: uninit-value in br_mdb_ip_get 5 572d 631d 508d 1515a63f net: bridge: always clear mcast matching struct on reports and leaves
WARNING in xfrm_state_fini (2) C 37510 537d 989d 512d dbb2483b xfrm: clean up xfrm protocol checks
KMSAN: uninit-value in rds_connect C 952 540d 782d 512d dd3ac9a6 net/rds: Check address length before reading address family
general protection fault in __dev_printk C 300 539d 552d 512d ef61eb43 USB: yurex: Fix protection fault after device removal
INFO: trying to register non-static key in vmk80xx_detach C 1528 512d 557d 512d 08b7c2f9 staging: comedi: vmk80xx: Fix use of uninitialized semaphore
KMSAN: uninit-value in rtnl_stats_dump syz 14 543d 557d 512d 69f23a09 rtnetlink: fix rtnl_valid_stats_req() nlmsg_len check
WARNING: suspicious RCU usage in fib_compute_spec_dst 1 556d 556d 512d c543cb4a ipv4: ensure rcu_read_lock() in ipv4_link_failure()
BUG: unable to handle page fault for address = ADDR C cause 3 545d 544d 512d baf76f0c slip: make slhc_free() silently accept an error pointer
KASAN: use-after-free Read in seccomp_notify_release (2) C cause 9 575d 576d 512d 7a0df7fb seccomp: Make NEW_LISTENER and TSYNC flags exclusive
WARNING in compat_copy_entries (2) syz cause 19416 526d 959d 512d 7caa56f0 netfilter: ebtables: CONFIG_COMPAT: drop a bogus WARN_ON
KMSAN: uninit-value in tomoyo_check_inet_address 33 523d 523d 512d e6193f78 tomoyo: Check address length before reading address family
BUG: sleeping function called from invalid context at crypto/skcipher.c:LINE 1 557d 555d 512d 44427c0f crypto: xts - Fix atomic sleep when walking skcipher
KMSAN: uninit-value in rds_bind C 6202 540d 782d 512d dd3ac9a6 net/rds: Check address length before reading address family
INFO: trying to register non-static key in ni6501_detach C 127 513d 555d 512d 660cf4ce staging: comedi: ni_usb6501: Fix use of uninitialized mutex
KASAN: slab-out-of-bounds Read in skb_gro_receive (2) C cause 5 538d 538d 512d 4dd2b82d udp: fix GRO packet of death
KASAN: stack-out-of-bounds Write in __ip_options_echo syz cause 8 546d 550d 512d 20ff83f1 ipv4: add sanity checks in ipv4_link_failure()
general protection fault in vcpu_enter_guest (2) C cause 11286 538d 544d 512d b904cb8d KVM: lapic: Check for in-kernel LAPIC before deferencing apic pointer
KASAN: use-after-free Read in snd_info_free_entry C 47 525d 555d 512d 2a3f7221 ALSA: core: Fix card races between register and disconnect 8c2f8708 ALSA: info: Fix racy addition/deletion of nodes
WARNING in percpu_ref_kill_and_confirm C cause 443 541d 547d 512d 35fa71a0 io_uring: fail io_uring_register(2) on a dying io_uring instance
general protection fault in skb_queue_tail C cause 35 545d 547d 512d 032be5f1 rxrpc: fix race condition in rxrpc_input_packet()
WARNING in wiphy_register (4) syz cause 3 556d 585d 512d 45fcef8b mac80211_hwsim: calculate if_combination.max_interfaces
INFO: task hung in __io_uring_register C cause 51 548d 557d 512d b19062a5 io_uring: fix possible deadlock between io_uring_{enter,register}
WARNING in __kthread_bind_mask C cause 2929 546d 557d 512d 06058632 io_uring: park SQPOLL thread if it's percpu
general protection fault in ieee80211_debugfs_rename_netdev 8 541d 555d 512d 51787914 mac80211: don't attempt to rename ERR_PTR() debugfs dirs
KASAN: slab-out-of-bounds Read in ds_probe C 5 514d 552d 512d c114944d USB: w1 ds2490: Fix bug caused by improper use of altsetting array
INFO: rcu detected stall in rose_loopback_timer 5 527d 546d 512d 0453c682 net/rose: fix unbound loop in rose_loopback_timer()
KMSAN: uninit-value in rtnl_stats_get C 5 550d 557d 512d 69f23a09 rtnetlink: fix rtnl_valid_stats_req() nlmsg_len check
KASAN: use-after-free Read in pid_nr_ns 1 542d 542d 512d 6c0afef5 ipv6/flowlabel: wait rcu grace period before put_pid()
KMSAN: uninit-value in tomoyo_check_unix_address 8 523d 523d 512d e6193f78 tomoyo: Check address length before reading address family
kernel BUG at net/core/net-sysfs.c:LINE! C cause 890 542d 578d 512d 8ed633b9 Revert "net-sysfs: Fix memory leak in netdev_register_kobject"
WARNING: refcount bug in l2tp_tunnel_get 1 540d 540d 512d a622b400 l2ip: fix possible use-after-free
WARNING in io_uring_setup C cause 3601 537d 557d 512d 917257da io_uring: only test SQPOLL cpu after we've verified it
KASAN: user-memory-access Write in fib6_purge_rt 6 514d 543d 512d 0e233874 ipv6: fix races in ip6_dst_destroy()
general protection fault in xfrmi_decode_session C cause 16694 537d 608d 512d 6ed69184 xfrm: Reset secpath in xfrm failure
INFO: task hung in vhost_net_stop_vq C cause 136 552d 690d 512d 813dbeb6 vhost: reject zero size iova range
general protection fault in fanotify_handle_event syz cause 5 551d 551d 512d b1da6a51 fsnotify: Fix NULL ptr deref in fanotify_get_fsid()
BUG: unable to handle kernel paging request in do_mount C 194 723d 761d 519d 3e1aeb00 vfs: Implement a filesystem superblock creation/configuration context
KASAN: stack-out-of-bounds Read in string C 46 546d 557d 524d c01c348e USB: core: Fix unterminated string returned by usb_string()
WARNING in usb_submit_urb (4) syz cause 46 526d 714d 524d c2b71462 USB: core: Fix bug caused by duplicate interface PM usage counter
WARNING: locking bug in icmp_send syz cause 1 609d 609d 530d 9926cb5f tipc: change to check tipc_own_id to return in tipc_net_stop
KMSAN: uninit-value in ip6_compressed_string C 9024 540d 692d 540d 7c2bd9a3 NFS: Forbid setting AF_INET6 to "struct sockaddr_in"->sin_family.
kernel BUG at fs/inode.c:LINE! C cause 2 675d 674d 557d 9bf964c9 autofs: simplify parse_options() function call
KMSAN: uninit-value in tipc_nl_compat_name_table_dump (2) C 6 587d 572d 558d 2ac695d1 tipc: handle the err returned from cmd header function
BUG: corrupted list in rhashtable_walk_enter syz cause 3 577d 576d 558d b5f9bd15 ila: Fix rhashtable walker list corruption
possible deadlock in seq_read C 19074 565d 1054d 558d 73601ea5 fs/open.c: allow opening only regular files during execve()
KASAN: use-after-free Read in link_path_walk syz cause 5 677d 692d 558d 1da6c4d9 bpf: fix use after free in bpf_evict_inode
KASAN: slab-out-of-bounds Read in default_write_copy_kernel C cause 366 573d 696d 558d ca0214ee ALSA: pcm: Fix possible OOB access in PCM oss plugins
KASAN: use-after-free Read in trailing_symlink syz cause 2 678d 692d 558d 1da6c4d9 bpf: fix use after free in bpf_evict_inode
KMSAN: kernel-infoleak in sctp_getsockopt (3) syz 11 560d 572d 558d 09279e61 sctp: initialize _pad of sockaddr_in before copying to user memory
BUG: unable to handle kernel paging request in ip6_fragment 1 573d 571d 558d ef0efcd3 ipv6: Fix dangling pointer when ipv6 fragment
KMSAN: uninit-value in tipc_nl_compat_link_set (3) C 15 563d 573d 558d 8c63bf9a tipc: check link name with right length in tipc_nl_compat_link_set
KASAN: use-after-free Read in path_lookupat syz cause 1 692d 692d 558d 1da6c4d9 bpf: fix use after free in bpf_evict_inode
KMSAN: uninit-value in tipc_nl_compat_bearer_enable (2) C 51 560d 573d 558d 6f07e5f0 tipc: check bearer name with right length in tipc_nl_compat_bearer_enable
KASAN: use-after-free Read in drm_gem_object_release C 480 573d 726d 558d 21d2b122 drm/vgem: fix use-after-free when drm_gem_handle_create() fails
WARNING: lock held when returning to user space in tun_get_user C cause 55 584d 585d 559d 9180bb4f tun: add a missing rcu_read_unlock() in error path
kernel panic: corrupted stack end in wb_workfn C cause 14 660d 660d 559d ef82bcfa sctp: use memdup_user instead of vmemdup_user
general protection fault in fib6_purge_rt C cause 60 561d 678d 559d 9926cb5f tipc: change to check tipc_own_id to return in tipc_net_stop
KASAN: slab-out-of-bounds Read in icmp6_send 1 587d 587d 559d 4477138f tun: properly test for IFF_UP
KASAN: stack-out-of-bounds Write in rose_write_internal 1 587d 586d 559d e5dcc0c3 net: rose: fix a possible stack overflow
KASAN: use-after-free Read in __icmp_send 1 578d 574d 559d 4477138f tun: properly test for IFF_UP
general protection fault in sctp_assoc_rwnd_increase C cause 28 573d 588d 559d 636d25d5 sctp: not copy sctp_sock pd_lobby in sctp_copy_descendant
WARNING in free_loaded_vmcs (2) syz cause 5 777d 798d 567d 5bea5123 KVM: VMX: check nested state and CR4.VMXE against SMM
general protection fault in kvm_lapic_hv_timer_in_use syz cause 205 760d 802d 567d 26b471c7 KVM: nVMX: Fix bad cleanup on error of get/set nested state IOCTLs
WARNING in enter_vmx_operation syz cause 8 770d 782d 567d 5bea5123 KVM: VMX: check nested state and CR4.VMXE against SMM
general protection fault in loop_validate_file (2) 3 580d 583d 568d f7c8a412 loop: access lo_backing_file only when the loop device is Lo_bound
WARNING in lockdep_unregister_key C cause 214 575d 589d 568d 82efcab3 workqueue: Only unregister a registered lockdep key
WARNING: bad usercopy in fanotify_read C cause 5 588d 589d 568d b2d22b6b fanotify: Allow copying of file handle to userspace
KASAN: use-after-free Read in filemap_fault C 277 652d 662d 568d 6b4c9f44 filemap: drop the mmap_sem for all blocking operations
general protection fault in ebitmap_destroy (2) C cause 36 578d 586d 568d 6a1afffb selinux: fix NULL dereference in policydb_destroy()
WARNING in __flush_work (2) C 38 592d 593d 572d b30b61ff drm/vkms: Fix flush_work() without INIT_WORK().
general protection fault in sctp_sched_rr_dequeue C cause 11 585d 595d 572d 2e990dfd sctp: remove sched init from sctp_stream_init
KASAN: use-after-free Read in br_multicast_rcv 1 591d 591d 572d 083b78a9 ip: fix ip_mc_may_pull() return value
possible deadlock in shmem_fallocate (2) C 1325 594d 802d 572d fb4415a1 staging: android: ashmem: Don't call fallocate() with ashmem_mutex held.
BUG: MAX_STACK_TRACE_ENTRIES too low! C cause 1725 573d 599d 572d 009bb421 workqueue, lockdep: Fix an alloc_workqueue() error path
general protection fault in tc_ctl_chain C 21 607d 615d 572d af736bf0 net: sched: potential NULL dereference in tcf_block_find()
KMSAN: uninit-value in mpol_rebind_mm 6 575d 660d 572d 2e25644e mm, mempolicy: fix uninit memory access
INFO: trying to register non-static key in dump_header 1 604d 604d 572d b30b61ff drm/vkms: Fix flush_work() without INIT_WORK().
WARNING: lock held when returning to user space in grab_super 2 614d 657d 572d 399504e2 fix cgroup_do_mount() handling of failure exits
KASAN: use-after-free Read in unix_dgram_poll syz 2 601d 597d 572d 84c4e1f8 aio: simplify - and fix - fget/fput for io_submit()
general protection fault in hci_uart_write_work C 84 596d 645d 572d 32a7b4cb Bluetooth: hci_ldisc: Initialize hci_dev before open()
KASAN: use-after-free Read in rdma_listen C 1548 573d 933d 572d 5fc01fb8 RDMA/cma: Rollback source IP address if failing to acquire device
KASAN: use-after-free Read in h5_reset_rx 2 603d 609d 572d 56897b21 Bluetooth: hci_ldisc: Postpone HCI_UART_PROTO_READY bit set in hci_uart_set_proto()
kernel BUG at drivers/android/binder_alloc.c:LINE! (2) C 1257 572d 614d 572d 26528be6 binder: fix handling of misaligned binder object
INFO: trying to register non-static key in __flush_work C 5255 593d 662d 572d b30b61ff drm/vkms: Fix flush_work() without INIT_WORK().
KASAN: use-after-free Read in alloc_workqueue C 37 585d 597d 572d 009bb421 workqueue, lockdep: Fix an alloc_workqueue() error path
general protection fault in cgroup_reconfigure C 7 808d 837d 572d 23bf1b6b kernfs, sysfs, cgroup, intel_rdt: Support fs_context
KASAN: use-after-free Read in x25_device_event C 548 586d 661d 572d 95d6ebd5 net/x25: fix use-after-free in x25_device_event()
possible deadlock in __do_page_fault C 820 594d 761d 572d fb4415a1 staging: android: ashmem: Don't call fallocate() with ashmem_mutex held.
possible deadlock in vfs_fallocate C 3981 794d 905d 572d fb4415a1 staging: android: ashmem: Don't call fallocate() with ashmem_mutex held.
WARNING in get_q_data C 649 620d 630d 572d db9a01b3 media: vicodec: check type in g/s_selection
KMSAN: kernel-infoleak in video_usercopy C 410 573d 672d 572d f45f3f75 media: v4l2-ctrls.c/uvc: zero v4l2_event
KMSAN: uninit-value in gue6_err (2) C 2826 572d 595d 572d 5355ed63 fou, fou6: avoid uninit-value in gue_err() and gue6_err()
kernel BUG at kernel/time/timer.c:LINE! (3) 1 593d 593d 572d 1e027960 net/hsr: fix possible crash in add_timer()
BUG: unable to handle kernel paging request in gro_cells_destroy (3) 3 574d 591d 572d 2a5ff07a gro_cells: make sure device is up in gro_cells_receive()
KMSAN: kernel-infoleak in move_addr_to_user (2) C 8 574d 588d 572d 163d1c3d l2tp: fix infoleak in l2tp_ip6_recvmsg()
general protection fault in nf_ct_gre_keymap_flush C 22 631d 637d 572d ac088a88 netfilter: conntrack: fix error path in nf_conntrack_pernet_init()
general protection fault in xsk_diag_dump C 5 590d 596d 572d 915905f8 xsk: fix potential crash in xsk_diag_put_umem()
BUG: unable to handle kernel paging request in h4_recv_buf C 203 596d 658d 572d 1dc2d785 Bluetooth: hci_uart: Check if socket buffer is ERR_PTR in h4_recv_buf()
general protection fault in x25_write_internal 8 589d 589d 572d ee74d0bd net/x25: reset state in x25_connect()
BUG: unable to handle kernel NULL pointer dereference in __generic_file_write_iter 5 599d 607d 572d ac5ceccc x86/unwind: Add hardcoded ORC entry for NULL f4f34e1b x86/unwind: Handle NULL pointer calls better in frame unwinder
possible deadlock in userfaultfd_read 239 573d 627d 572d d3d6a18d aio: Fix locking in aio_poll()
KMSAN: uninit-value in gue_err (2) C 1617 572d 595d 572d 5355ed63 fou, fou6: avoid uninit-value in gue_err() and gue6_err()
KASAN: use-after-free Read in kobject_put C 12 601d 732d 572d e20a2e9c Bluetooth: Fix decrementing reference count twice in releasing socket
BUG: assuming atomic context at kernel/seccomp.c:LINE C 709 608d 609d 572d e80d02dd seccomp, bpf: disable preemption before calling into bpf prog
general protection fault in delayed_uprobe_remove C cause 2 717d 719d 578d 1aed58e6 Uprobes: Fix kernel oops with delayed_uprobe_remove()
WARNING: locking bug in lock_downgrade 30 638d 694d 579d 513e1073 locking/lockdep: Add debug_locks check in __lock_downgrade() locking/lockdep: Add debug_locks check in __lock_downgrade()
general protection fault in __x86_indirect_thunk_rbx C cause 16 713d 714d 579d d6367d62 fs/locks: use properly initialized file_lock when unlocking.
KASAN: use-after-free Read in update_blocked_averages C cause 3 695d 709d 579d bc6e019b fou: Prevent unbounded recursion in GUE error handler also with UDP-Lite
kernel BUG at mm/slab.c:LINE! (3) C cause 14 579d 707d 579d bc6e019b fou: Prevent unbounded recursion in GUE error handler also with UDP-Lite
WARNING in update_load_avg C cause 1 702d 701d 580d bc6e019b fou: Prevent unbounded recursion in GUE error handler also with UDP-Lite
WARNING: bad usercopy in corrupted (2) C cause 12 649d 695d 580d bc6e019b fou: Prevent unbounded recursion in GUE error handler also with UDP-Lite
KASAN: slab-out-of-bounds Read in tick_sched_handle C cause 7 646d 674d 583d bc6e019b fou: Prevent unbounded recursion in GUE error handler also with UDP-Lite
WARNING: lock held when returning to user space in set_property_atomic C 145 647d 661d 593d 4089e272 gpu/drm: Fix lock held when returning to user space.
general protection fault in ax25cmp C 2294 630d 662d 595d b0cf0292 net/rose: fix NULL ax25_cb kernel panic
KMSAN: uninit-value in batadv_interface_tx C 98 595d 617d 595d 4ffcbfac batman-adv: fix uninit-value in batadv_interface_tx()
kernel panic: stack is corrupted in perf_output_begin_forward 2 646d 652d 595d 44039e00 fou6: Prevent unbounded recursion in GUE error handler
kernel BUG at security/keys/keyring.c:LINE! C 12 647d 746d 595d ede0fa98 KEYS: always initialize keyring_index_key::desc_len
KASAN: slab-out-of-bounds Read in xfrm_policy_insert_list 1 646d 646d 595d 12750aba xfrm: policy: fix infinite loop when merging src-nodes
KMSAN: uninit-value in tipc_subscrb_rcv_cb C 13 905d 926d 595d a88289f4 tipc: fix uninit-value in in tipc_conn_rcv_sub
KASAN: use-after-free Write in __xfrm_policy_unlink C 254 598d 826d 595d 1548bc4e xfrm: policy: delete inexact policies from inexact list on hash rebuild
KMSAN: kernel-infoleak in kvm_vcpu_write_guest_page C 25 686d 714d 595d 3a33d030 kvm: x86/vmx: Use kzalloc for cached_vmcs12
KASAN: use-after-free Read in task_is_descendant C 27 644d 731d 595d 9474f4e7 Yama: Check for pid death before checking ancestry
KASAN: use-after-free Read in xfrm_migrate 5 630d 653d 595d 12750aba xfrm: policy: fix infinite loop when merging src-nodes
INFO: rcu detected stall in netlink_sendmsg syz 83 611d 667d 595d 12750aba xfrm: policy: fix infinite loop when merging src-nodes
WARNING in xfrm_policy_insert_list 2 644d 655d 595d 12750aba xfrm: policy: fix infinite loop when merging src-nodes
WARNING in __flush_work C 402 624d 630d 595d 2e3c18d0 block: pass no-op callback to INIT_WORK().
KASAN: use-after-free Read in __smc_diag_dump syz 34 645d 657d 595d 26d92e95 smc: move unhash as early as possible in smc_release()
KASAN: slab-out-of-bounds Read in xfrm_policy_lookup_bytype 6 648d 670d 595d 12750aba xfrm: policy: fix infinite loop when merging src-nodes
general protection fault in crypto_remove_spawns (2) 2 640d 646d 595d 6db43410 crypto: adiantum - initialize crypto_spawn::inst
KMSAN: uninit-value in tipc_nl_compat_doit C 153 610d 761d 595d 2753ca5d tipc: fix uninit-value in tipc_nl_compat_doit
general protection fault in watchdog C 1 677d 676d 595d e2c8d550 netfilter: ebtables: account ebt_table_info to kmemcg
KASAN: stack-out-of-bounds Read in select_task_rq_fair 2 645d 654d 595d 44039e00 fou6: Prevent unbounded recursion in GUE error handler
KASAN: use-after-free Read in kernel_accept C 19 677d 827d 595d 78abe3d0 net/smc: fix TCP fallback socket release 26d92e95 smc: move unhash as early as possible in smc_release()
KASAN: use-after-free Read in xfrm_policy_insert_list