syzbot


Applied filters: Label=subsystems:bridge (drop)
Title Repro Cause bisect Fix bisect Count Last Reported Patched Closed Patch
KMSAN: uninit-value in br_dev_xmit (2) bridge C 2 46d 42d 26/27 17d 8bd67ebb50c0 net: bridge: xmit: make sure we have at least eth header len bytes
WARNING: suspicious RCU usage in br_mst_set_state bridge 45 17d 51d 26/27 17d 3a7c1661ae13 net: bridge: mst: fix vlan use-after-free
KASAN: slab-out-of-bounds Read in update_counters bridge netfilter C 3 78d 78d 26/27 31d 0c83842df40f netfilter: validate user input for expected length
KCSAN: data-race in br_handle_frame_finish / br_handle_frame_finish (8) bridge 1 280d 279d 25/27 185d 44bdb313da57 net: bridge: use DEV_STATS_INC()
WARNING in dev_index_reserve bridge C done 7120 257d 311d 23/27 254d f534f6581ec0 net: validate veth and vxcan peer ifindexes 30188bd7838c rtnetlink: Reject negative ifindexes in RTM_NEWLINK
KASAN: vmalloc-out-of-bounds Read in __ebt_unregister_table bridge netfilter C error 4 491d 491d 22/27 380d e58a171d35e3 netfilter: ebtables: fix table blob use-after-free
general protection fault in br_mst_info_size bridge C error 26 821d 824d 22/27 484d cde3fc244b3d net: bridge: mst: prevent NULL deref in br_mst_info_size()
memory leak in do_replace netfilter bridge C 1 646d 642d 22/27 484d 62ce44c4fff9 netfilter: ebtables: fix memory leak when blob is malformed
KASAN: slab-out-of-bounds Read in add_del_if bridge C unreliable 970 1047d 1024d 20/27 956d 9384eacd80f3 net: core: don't call SIOCBRADD/DELIF for non-bridge devices
general protection fault in br_switchdev_fdb_notify bridge C error 82 1051d 1056d 20/27 956d 0541a6293298 net: bridge: validate the NUD_PERMANENT bit when adding an extern_learn FDB entry
WARNING in compat_do_ebt_get_ctl bridge netfilter C done 15 1405d 1416d 15/27 1375d 5c04da55c754 netfilter: ebtables: reject bogus getopt len value
KASAN: slab-out-of-bounds Read in br_mrp_parse bridge C done 5 1493d 1494d 15/27 1436d 617504c67e01 bridge: mrp: Fix out-of-bounds read in br_mrp_parse
KASAN: use-after-free Read in br_dev_xmit bridge 1 1579d 1579d 15/27 1529d 823d81b0fa2c net: bridge: fix stale eth hdr pointer in br_dev_xmit
KMSAN: uninit-value in br_nf_forward_arp (3) bridge netfilter 2 1667d 1659d 15/27 1591d 5604285839aa net-backports: netfilter: bridge: make sure to pull arp header in br_nf_forward_arp()
KASAN: vmalloc-out-of-bounds Read in compat_copy_entries netfilter bridge C done 3 1652d 1652d 15/27 1591d e608f631f0ba netfilter: ebtables: compat: reject all padding in matches/watchers
memory leak in fdb_create (2) bridge C 1 1665d 1664d 15/27 1628d c4b4c421857d net: bridge: deny dev_set_mac_address() when unregistering
memory leak in fdb_create bridge C done 4 1786d 1826d 12/27 1761d d7bae09fa008 net: bridge: delete local fdb on device init failure
KASAN: use-after-free Read in brnf_exit_net bridge netfilter syz done 3 1827d 1830d 12/27 1783d 7e6daf50e1f4 netfilter: bridge: prevent UAF in brnf_exit_net()
KASAN: use-after-free Read in br_mdb_ip_get bridge 1 1973d 1973d 12/27 1849d 1515a63fc413 net: bridge: always clear mcast matching struct on reports and leaves
KMSAN: uninit-value in br_mdb_ip_get bridge 5 1914d 1972d 12/27 1849d 1515a63fc413 net: bridge: always clear mcast matching struct on reports and leaves
KASAN: use-after-free Read in br_multicast_rcv bridge 1 1932d 1932d 11/27 1914d 083b78a9ed64 ip: fix ip_mc_may_pull() return value
general protection fault in fdb_find_rcu bridge C 3 2006d 2002d 11/27 1985d f989d03ef25d net: rtnetlink: address is mandatory for rtnl_fdb_get
KASAN: use-after-free Read in nbp_vlan_rcu_free bridge 1 2050d 2050d 11/27 2025d 9d332e69c1dc net: bridge: fix vlan stats use-after-free on destruction
KMSAN: uninit-value in br_nf_forward_arp bridge netfilter 1 2214d 2211d 8/27 2167d b84bbaf7a6c8 packet: in packet_snd start writing at link layer allocation
KMSAN: uninit-value in ebt_stp_mt_check (2) bridge netfilter C 222 2175d 2207d 8/27 2175d c568503ef020 netfilter: x_tables: initialise match/target check parameter struct
WARNING in ebt_do_table bridge netfilter C 13 2184d 2209d 8/27 2175d 11ff7288beb2 netfilter: ebtables: reject non-bridge targets
KASAN: stack-out-of-bounds Write in compat_copy_entries bridge netfilter syz 10 2213d 2251d 5/27 2207d 94c752f99954 netfilter: ebtables: handle string from userspace with care
KMSAN: uninit-value in ebt_stp_mt_check bridge netfilter C 211 2208d 2253d 5/27 2207d a4995684a949 netfilter: bridge: stp fix reference to uninitialized data
WARNING: kobject bug in br_add_if bridge 41 2238d 2264d 5/27 2230d e8238fc2bd7b bridge: check iface upper dev when setting master via ioctl 3e14c6abbfb5 kobject: don't use WARN for registration failures
BUG: unable to handle kernel paging request in compat_copy_entries bridge netfilter syz 5 2303d 2302d 5/27 2251d b71812168571 netfilter: ebtables: CONFIG_COMPAT: don't trust userland offsets
BUG: unable to handle kernel paging request in ebt_among_mt_check (2) bridge netfilter C 946 2283d 2299d 4/27 2283d c8d70a700a5b netfilter: bridge: ebt_among: add more missing match size checks
WARNING in compat_copy_entries bridge netfilter C 434 2300d 2316d 4/27 2300d b71812168571 netfilter: ebtables: CONFIG_COMPAT: don't trust userland offsets
BUG: unable to handle kernel paging request in ebt_among_mt_check bridge netfilter C 823 2300d 2316d 4/27 2300d c4585a2823ed netfilter: bridge: ebt_among: add missing match size checks