syzbot

 sign-in | mailing list | source | docs | 🏰
🐞 Open [1335]
Subsystems
🐞 Fixed [7141]
🐞 Invalid [18888]
Missing Backports [220]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
Total Repo Heatmap Subsystems Heatmap
✨ AI
💬 Send us feedback

Applied filters: WithRepro (drop) Label=prio:high (drop)
Title Rank 🛈 Repro Cause bisect Fix bisect Count Last Reported Patched Closed Patch
KASAN: wild-memory-access Read in md5_update crypto prio:high 17 C done 8 274d 274d 2/29 never fixup: mm/gup: remove record_subpages()
WARNING in folio_add_new_anon_rmap mm prio:high -1 C error 14 85d 84d 2/29 never userfaultfd-introduce-struct-mfill_state-fix
KASAN: slab-out-of-bounds Read in usbtmc_interrupt usb prio:high 17 C 5 20d 295d 25/29 never 52f2ad3f7e5e usb: usbtmc: check URB actual_length for interrupt-IN notifications
KASAN: slab-out-of-bounds Read in cache_seq_start_rcu prio:high nfs net 17 C 67 11d 47d 25/29 never ea25e3c7915b sunrpc: prevent out-of-bounds read in __cache_seq_start()
possible deadlock in __sk_receive_skb net prio:high 4 C error 80 16d 19d 27/29 never dbc81608e3a6 phonet/pep: disable BH around forwarded sk_receive_skb()
KASAN: use-after-free Read in jfs_lazycommit jfs prio:high 19 C error 4091 4d03h 1345d 0/29 never From 7e1a0b91e9efa8bec40fc5397ba6c4e683d72df0 Mon Sep 17 00:00:00 2001
INFO: task hung in __writeback_inodes_sb_nr (6) jfs prio:high 1 C done 4170 7d11h 1087d 1/29 never PM: hibernate: Fix block device handling in test_resume mode
UBSAN: shift-out-of-bounds in squashfs_xz_comp_opts squashfs prio:high -1 C error 4 72d 110d 2/29 never Squashfs: check xz dictionary size isn't zero
KMSAN: uninit-value in bch2_alloc_sectors_start_trans (2) fs prio:high 7 syz 875 251d 417d 2/29 never bcachefs: Add missing ei_last_dirtied update
WARNING in bch2_fs_journal_start fs prio:high -1 C done 14 352d 372d 2/29 never bcachefs: Don't allow mounting with crazy numbers of dirty journal entries
KASAN: slab-use-after-free Write in bch2_get_next_dev fs prio:high 22 C 1331 230d 324d 2/29 never bcachefs: Fix UAF by journal write path
KASAN: slab-use-after-free Write in bch2_do_discards prio:high fs 22 syz 137 251d 321d 2/29 never bcachefs: Fix UAF by journal write path
kernel BUG in __journal_res_get (3) prio:high fs -1 C inconclusive 175 230d 354d 2/29 never bcachefs: Fix __bch2_fs_read_write() error path
KMSAN: uninit-value in bch2_check_subvols fs prio:high 7 C 53 252d 341d 2/29 never bcachefs: Fix missing compat code in check_subvol()
KASAN: slab-out-of-bounds Write in bch2_dirent_init_name prio:high fs 21 C error 1496 230d 355d 2/29 never bcachefs: Fix padding zeroout when creating casefolded dirents
INFO: task hung in invalidate_inode_pages2_range (3) prio:high fs 1 C done 56 105d 464d 2/29 never bcachefs: Fix readahead involved deadlock
INFO: task hung in bch2_readahead fs prio:high 1 C done 375 267d 748d 2/29 never bcachefs: Fix readahead involved deadlock
INFO: task hung in bch2_page_fault prio:high ntfs3 exfat ext4 1 syz done 42 291d 541d 2/29 never bcachefs: Fix readahead involved deadlock
INFO: task hung in bchfs_fpunch (2) mm fs prio:high 1 C done 2 304d 348d 2/29 never bcachefs: Fix readahead involved deadlock
INFO: task hung in pipe_release (6) kernfs prio:high 1 syz done 20 23h23m 465d 2/29 never bcachefs: Fix readahead involved deadlock
KMSAN: uninit-value in __bch2_alloc_v4_to_text prio:high fs 7 C 3 350d 355d 2/29 never bcachefs: Fix refs to undefined fields in __bch2_alloc_v4_to_text()
UBSAN: array-index-out-of-bounds in bch2_accounting_validate prio:high fs 15 C done 23 240d 307d 2/29 never bcachefs: Ignore accounting key type larger than BCH_DISK_ACCOUNTING_TYPE_NR
INFO: task hung in __closure_sync fs prio:high 1 C done 8591 238d 765d 2/29 never bcachefs: Increase BCH_MIN_NR_NBUCKETS
INFO: task hung in bch2_copygc_stop kernel prio:high 1 C done 31386 238d 737d 2/29 never bcachefs: Increase BCH_MIN_NR_NBUCKETS
INFO: task hung in __bch2_fs_stop fs prio:high 1 C done 1589 247d 722d 2/29 never bcachefs: Increase BCH_MIN_NR_NBUCKETS
kernel BUG in bch2_btree_repair_topology_recurse prio:high fs -1 C done 7 251d 311d 2/29 never bcachefs: btree_check_root_boundaries()
kernel BUG in bch2_printbuf_exit fs prio:high -1 C error 29 321d 325d 2/29 never bcachefs: convert str_hash.c to CLASS
inconsistent lock state in __sk_receive_skb prio:high net 4 C error 147 4d16h 93d 27/29 never dbc81608e3a6 phonet/pep: disable BH around forwarded sk_receive_skb()
KASAN: use-after-free Read in check_extent_overbig prio:high fs 19 C done done 18 267d 549d 2/29 never bcachefs: fix check_extent_overbig() call
WARNING in bch2_prt_printf fs prio:high -1 C done error 103 253d 758d 2/29 never bcachefs: journal_entry_btree_keys_to_text() is more careful
KASAN: slab-use-after-free Read in current_time fs prio:high 19 C 2 10d 6d08h 1/29 never bpf: fix UAF by restoring RCU-delayed inode freeing in bpffs
INFO: task hung in btrfs_invalidate_folio (4) btrfs prio:high 1 C error 7 12d 12d 0/29 never btrfs: fix deadlock cloning inline extent when using flushoncommit
WARNING in dma_resv_add_fence prio:high dri media -1 C 7 26d 31d 1/29 never 9af1b6e175c8 drm/virtio: use uninterruptible resv lock for plane updates drm/virtio: use uninterruptible resv lock for plane updates
INFO: trying to register non-static key in f2fs_exist_written_data prio:high f2fs -1 C error 152 20d 30d 2/29 never f2fs: initialize ino_entry_info before checkpoint load
KASAN: null-ptr-deref Read in io_sqe_buffer_register io-uring prio:high 11 C done 54 272d 276d 2/29 never fixup: mm/gup: remove record_subpages()
general protection fault in ovl_iterate overlayfs prio:high 8 C 20 1d06h 166d 21/29 never 1711b6ed6953 ovl: keep err zero after successful ovl_cache_get()
KMSAN: uninit-value in _find_next_bit ocfs2 prio:high 7 C 30 54d 443d 2/29 never ocfs2: use kzalloc for quota recovery bitmap allocation
BUG: sleeping function called from invalid context in lockref_get_not_dead gfs2 prio:high 5 C error 13 35d 53d 2/29 never gfs2: fix quota init duplicate scan
KASAN: slab-use-after-free Write in gfs2_qd_dealloc (3) prio:high gfs2 22 C error 146 118d 375d 2/29 never gfs2: fix use-after-free in gfs2_qd_dealloc
KASAN: slab-use-after-free Read in ip6gre_tunnel_xmit net prio:high 19 C error error 33 157d 565d 0/29 never ip6_gre: use skb_vlan_inet_prepare() instead of pskb_inet_may_pull()
WARNING in ip_rt_bug (3) prio:high net -1 C error 54 8d12h 19d 27/29 never 7eb72c1e3984 ipv4: icmp: reject broadcast/multicast routes
general protection fault in jbd2_journal_dirty_metadata (2) prio:high ext4 2 C error 25 2d19h 34d 0/29 never jbd2: check for aborted handle in jbd2_journal_dirty_metadata()
general protection fault in remove_waiter prio:high kernel 2 syz 6 28d 40d 4/29 never 40a25d59e85b locking/rtmutex: Skip remove_waiter() when waiter is not enqueued
WARNING: ODEBUG bug in i2c_device_remove (2) i2c usb prio:high -1 C 3 34d 48d 2/29 never media: rtl2832: fix use-after-free in rtl2832_remove()
KASAN: slab-use-after-free Read in do_sync_mmap_readahead prio:high mm 19 C done 3 351d 354d 2/29 never mm-filemap-allow-arch-to-request-folio-size-for-exec-memory-fix
WARNING in page_counter_uncharge (2) prio:high cgroups mm -1 C error 7 36d 71d 2/29 never mm/hugetlb: fix hugetlb cgroup rsvd charge/uncharge mismatch
kernel BUG in swap_cgroup_record (2) prio:high mm cgroups -1 C error 227 145d 149d 2/29 never mm/swap_cgroup: fix kernel BUG in swap_cgroup_record
KMSAN: uninit-value in mptcp_established_options prio:high mptcp 7 syz 3191 2d13h 37d 21/29 never 5e939544f9d2 mptcp: fix uninit-value in mptcp_established_options
possible deadlock in ocfs2_acquire_dquot prio:high ocfs2 4 C 71841 173d 615d 2/29 never ocfs2: fix circular locking dependency in ocfs2_acquire_dquot
WARNING in drm_prime_destroy_file_private (3) dri prio:high -1 C error 183 22d 26d 29/29 6d08h dc366607c41c drm: Replace old pointer to new idr
BUG: sleeping function called from invalid context in ip_vs_conn_new lvs prio:high 5 C 2034 32d 55d 29/29 6d15h d493d9de1c21 ipvs: fix the spin_lock usage for RT build
WARNING in vma_mark_detached prio:high mm -1 C error 8 25d 48d 29/29 16d 619eab23e1ce mm/vma: do not try to unmap a VMA if mmap_prepare() invoked from mmap()
INFO: task hung in lbs_remove_card usb libertas prio:high 1 C 14933 19d 297d 29/29 16d 4a142520d166 wifi: libertas: notify firmware load wait on disconnect
general protection fault in task_work_cancel lsm prio:high 2 syz error 15 73d 92d 29/29 17d 929553bbb4cd landlock: Fully release unused TSYNC work entries
KMSAN: uninit-value in fuse_dentry_revalidate (2) fuse prio:high 7 C 261 53d 112d 29/29 17d 5a6baf204610 fuse: fix uninit-value in fuse_dentry_revalidate()
WARNING in attr_data_get_block_locked prio:high ntfs3 -1 C 12 32d 104d 29/29 17d d7ea8495fd30 fs/ntfs3: fix missing run load for vcn0 in attr_data_get_block_locked()
WARNING in filename_mkdirat gfs2 prio:high -1 C 84 27d 111d 29/29 17d 2ff7cf7e0640 gfs2: Call unlock_new_inode before d_instantiate
KASAN: stack-out-of-bounds Read in l2cap_send_cmd bluetooth prio:high 17 C 174 73d 85d 29/29 17d 9d87cb22195b Bluetooth: L2CAP: Fix stack-out-of-bounds read in l2cap_ecred_conn_req
inconsistent lock state in igrab xfs prio:high 4 C error 521 33d 113d 29/29 17d f621324dfb3d iomap: fix lockdep complaint when reads fail
BUG: sleeping function called from invalid context in usb_tx_block usb libertas prio:high 5 C 780 48d 103d 29/29 17d 7c5c2b661bdb wifi: libertas: don't kill URBs in interrupt context
memory leak in run_add_entry (2) prio:high ntfs3 3 C 1 64d 79d 29/29 17d 87ac077d6ea8 ntfs3: fix memory leak in indx_create_allocate()
KMSAN: uninit-value in ntfs_iomap_begin ntfs3 prio:high 7 C 191 54d 105d 29/29 17d e98266e823a1 fs/ntfs3: prevent uninitialized lcn caused by zero len
KMSAN: uninit-value in bpf_prog_test_run_skb bpf prio:high 7 C 4 78d 158d 29/29 17d 12bec2bd4b76 bpf: reject short IPv4/IPv6 inputs in bpf_prog_test_run_skb
general protection fault in f2fs_in_warm_node_list prio:high f2fs 2 C error 11247 46d 109d 29/29 17d 2d9c4a4ed4ee f2fs: fix UAF caused by decrementing sbi->nr_pages[] in f2fs_write_end_io()
INFO: task hung in btrfs_invalidate_folio (3) prio:high btrfs 1 C error 9 67d 80d 29/29 17d b48c980b6a7e btrfs: fix deadlock between reflink and transaction commit when using flushoncommit
general protection fault in rwsem_mark_wake mm prio:high 2 C error 9235 79d 82d 29/29 17d 68bcd8b6e0b1 locking/rwsem: Fix logic error in rwsem_del_waiter()