WARNING in posixtimer_send_sigqueue (2)
kernel
|
C |
done |
|
557 |
9d04h |
56d
|
26/28 |
never |
8c4840277b6d
signal/posixtimers: Handle ignore/blocked sequences correctly
|
general protection fault in account_kernel_stack (3)
kernel
|
C |
|
|
7 |
41d |
56d
|
26/28 |
never |
4db3d750ac7e
nvmet: Don't overflow subsysnqn
|
KASAN: slab-use-after-free Read in binder_release_work
kernel
|
C |
done |
done |
2151 |
62d |
132d
|
27/28 |
never |
7e20434cbca8
binder: fix freeze UAF in binder_release_work()
|
BUG: sleeping function called from invalid context in static_key_slow_dec
kernel
|
|
|
|
3 |
61d |
76d
|
27/28 |
never |
b04df3da1b5c
netfilter: nf_tables: do not defer rule destruction via call_rcu
|
general protection fault in follow_pfnmap_start
kernel
|
C |
|
|
38 |
119d |
134d
|
1/28 |
never |
mm: fix null pointer dereference in pfnmap_lockdep_assert
|
WARNING in follow_pte
kernel
|
C |
|
|
230 |
144d |
223d
|
1/28 |
never |
mm: fix mmap_assert_locked() in follow_pte()
|
WARNING in bitmap_parselist_user
kernel
|
C |
|
|
35 |
37d |
56d
|
26/28 |
never |
dd2a5b5514ab
mm/util: make memdup_user_nul() similar to memdup_user()
|
WARNING: locking bug in get_random_u8
kernel
|
syz |
|
|
70 |
16d |
87d
|
0/28 |
never |
kasan: Make kasan_record_aux_stack_noalloc() the default behaviour
|
WARNING in hrtimer_forward (3)
kernel
|
|
|
|
3 |
97d |
191d
|
28/28 |
58d |
6ee0270943b5
wifi: mac80211_hwsim: use hrtimer_active()
|
WARNING in posixtimer_send_sigqueue
kernel
|
C |
error |
|
196 |
58d |
90d
|
28/28 |
58d |
cdc905d16b07
posix-timers: Fix spurious warning on double enqueue versus do_exit()
|
WARNING: locking bug in try_to_wake_up
kernel
|
C |
error |
|
157 |
92d |
272d
|
28/28 |
91d |
41fd1e94066a
btrfs: wait for fixup workers before stopping cleaner kthread during umount
|
KASAN: stack-out-of-bounds Read in profile_pc
kernel
|
C |
error |
done |
9302 |
227d |
1353d
|
28/28 |
104d |
093d9603b600
x86: stop playing stack games in profile_pc()
|
KCSAN: data-race in next_expiry_recalc / update_process_times (2)
kernel
|
|
|
|
2 |
167d |
182d
|
28/28 |
112d |
79f8b28e85f8
timers: Annotate possible non critical data race of next_expiry
|
KCSAN: data-race in __flush_work / __flush_work (2)
kernel
|
|
|
|
6 |
177d |
191d
|
28/28 |
131d |
8bc35475ef1a
workqueue: Fix spruious data race in __flush_work()
|
WARNING in try_queue_bulk_in/usb_submit_urb
kernel
|
|
|
|
1 |
188d |
184d
|
28/28 |
131d |
2374bf7558de
char: xillybus: Check USB endpoints when probing device
|
kernel BUG in binder_inc_ref_for_node
kernel
|
C |
error |
|
16721 |
184d |
214d
|
28/28 |
131d |
11512c197d38
binder: fix descriptor lookup for context manager
|
KMSAN: uninit-value in profile_hits (3)
kernel
|
C |
|
|
1529 |
199d |
413d
|
27/28 |
173d |
7c51f7bbf057
profiling: remove prof_cpu_mask
|
possible deadlock in __hrtimer_run_queues (2)
kernel
|
C |
error |
done |
16 |
292d |
324d
|
26/28 |
236d |
98e948fb60d4
bpf: Allow delete from sockmap/sockhash only if update is allowed
|
WARNING: suspicious RCU usage in __do_softirq
kernel
|
C |
|
|
199 |
289d |
315d
|
25/28 |
265d |
1dd1eff161bd
softirq: Fix suspicious RCU usage in __do_softirq()
|
BUG: unable to handle kernel NULL pointer dereference in hrtimer_active
kernel
|
|
|
|
1 |
367d |
366d
|
25/28 |
321d |
fe9f801355f0
net: veth: clear GRO when clearing XDP even when down
|
general protection fault in timerqueue_del (2)
kernel
|
C |
done |
done |
3 |
419d |
561d
|
25/28 |
377d |
6f861765464f
fs: Block writes to mounted block devices
|
general protection fault in usb_hub_create_port_device
kernel
|
C |
done |
done |
4 |
519d |
525d
|
25/28 |
419d |
fd6f7ad2fd4d
driver core: return an error when dev_set_name() hasn't happened
|
general protection fault in serio_handle_event
kernel
|
C |
done |
done |
6 |
514d |
523d
|
25/28 |
419d |
fd6f7ad2fd4d
driver core: return an error when dev_set_name() hasn't happened
|
general protection fault in nfc_register_device
kernel
|
C |
done |
|
190 |
420d |
534d
|
25/28 |
419d |
fd6f7ad2fd4d
driver core: return an error when dev_set_name() hasn't happened
|
general protection fault in wpan_phy_register
kernel
|
C |
done |
done |
7 |
511d |
518d
|
25/28 |
419d |
fd6f7ad2fd4d
driver core: return an error when dev_set_name() hasn't happened
|
general protection fault in hci_register_dev
kernel
|
C |
unreliable |
done |
4 |
516d |
523d
|
25/28 |
419d |
fd6f7ad2fd4d
driver core: return an error when dev_set_name() hasn't happened
|
KASAN: slab-use-after-free Read in pwq_release_workfn
kernel
|
C |
unreliable |
|
79 |
481d |
531d
|
25/28 |
419d |
643445531829
workqueue: Fix UAF report by KASAN in pwq_release_workfn()
|
memory leak in binder_transaction (2)
kernel
|
C |
|
|
2 |
519d |
814d
|
25/28 |
419d |
1aa3aaf8953c
binder: fix memory leaks of spam and pending work
|
net-next test error: UBSAN: array-index-out-of-bounds in alloc_pid
kernel
|
|
|
|
30 |
587d |
590d
|
23/28 |
488d |
b69f0aeb0689
pid: Replace struct pid 1-element array with flex-array
|
linux-next test error: UBSAN: array-index-out-of-bounds in alloc_pid
kernel
|
|
|
|
9 |
636d |
637d
|
23/28 |
488d |
b69f0aeb0689
pid: Replace struct pid 1-element array with flex-array
|
BUG: MAX_LOCKDEP_CHAIN_HLOCKS too low! (2)
kernel
|
C |
|
|
2688 |
489d |
1446d
|
23/28 |
488d |
39285e124edb
net: team: do not use dynamic lockdep key
|
upstream build error (20)
kernel
|
|
|
|
498 |
552d |
590d
|
23/28 |
502d |
0a9567ac5e6a
x86/mem_encrypt: Unbreak the AMD_MEM_ENCRYPT=n build
|
WARNING: ODEBUG bug in __mod_timer
kernel
|
|
|
|
1 |
663d |
624d
|
23/28 |
502d |
8b64d420fe24
debugobjects: Recheck debug_objects_enabled before reporting
|
KCSAN: data-race in do_timer_create / do_timer_create (8)
kernel
|
|
|
|
9 |
632d |
662d
|
23/28 |
502d |
8ce8849dd1e7
posix-timers: Ensure timer ID search-loop limit is valid
|
possible deadlock in __mod_timer (2)
kernel
|
|
|
|
1 |
644d |
643d
|
22/28 |
591d |
eb799279fb1f
debugobjects: Don't wake up kswapd from fill_pool()
|
upstream boot error: BUG: unable to handle kernel NULL pointer dereference in load_balance
kernel
|
|
|
|
5 |
643d |
648d
|
22/28 |
591d |
2b951b0efbaa
ARM: 9297/1: vfp: avoid unbalanced stack on 'success' return path
|
kernel BUG in workingset_activation (2)
kernel
|
C |
inconclusive |
done |
40 |
627d |
819d
|
22/28 |
591d |
0143d148d1e8
usb: usbfs: Enforce page requirements for mmap
|
WARNING: stack going in the wrong direction? at do_syscall_64
kernel
|
|
|
|
193 |
721d |
728d
|
22/28 |
614d |
00c8f01c4e84
objtool: Fix ORC 'signal' propagation
|
WARNING: stack going in the wrong direction? at finish_task_switch.isra.NUM
kernel
|
|
|
|
2 |
723d |
724d
|
22/28 |
614d |
00c8f01c4e84
objtool: Fix ORC 'signal' propagation
|
WARNING in c_start (2)
kernel
|
|
|
|
616173 |
688d |
705d
|
22/28 |
614d |
e7304080e0e5
cpumask: relax sanity checking constraints
|
WARNING: locking bug in umh_complete
kernel
|
|
|
|
1 |
751d |
747d
|
22/28 |
614d |
eedeb787ebb5
freezer,umh: Fix call_usermode_helper_exec() vs SIGKILL
|
memory leak in copy_process (5)
kernel
|
C |
|
|
1 |
711d |
707d
|
22/28 |
614d |
2aab4b969002
af_unix: fix struct pid leaks in OOB support
|
general protection fault in hrtimer_active (5)
kernel
|
C |
error |
|
22 |
729d |
733d
|
22/28 |
614d |
4fab64126891
net/sched: fix error recovery in qdisc_create()
|
KMSAN: uninit-value in qdisc_run
kernel
|
C |
|
|
2 |
826d |
763d
|
22/28 |
614d |
3a415d59c1db
net/sched: sch_taprio: fix possible use-after-free
|
kernel BUG in __text_poke
kernel
|
C |
|
|
80 |
918d |
1094d
|
22/28 |
718d |
1d5f82d9dd47
bpf, x86: fix freeing of not-finalized bpf_prog_pack
d24d2a2b0a81
bpf: bpf_prog_pack: Set proper size before freeing ro_header
|
kernel panic: corrupted stack end in vm_area_alloc
kernel
|
|
|
|
1 |
953d |
953d
|
22/28 |
718d |
b81d591386c3
riscv: Increase stack size under KASAN
|
inconsistent lock state in fs_reclaim_acquire (3)
kernel
|
C |
|
|
2 |
833d |
839d
|
22/28 |
718d |
2d1f274b95c6
skmsg: pass gfp argument to alloc_sk_msg()
|
WARNING in c_start
kernel
|
|
|
|
75097 |
849d |
851d
|
22/28 |
718d |
80493877d7d0
Revert "cpumask: fix checking valid cpu range".
|
WARNING in exit_tasks_rcu_finish
kernel
|
C |
done |
|
20 |
973d |
975d
|
22/28 |
718d |
0356d4e66214
rcu-tasks: Track blocked RCU Tasks Trace readers
|
linux-next boot error: general protection fault in driver_bound
kernel
|
|
|
|
1 |
911d |
911d
|
22/28 |
718d |
9993a4f989c7
virtio: Revert "virtio: find_vqs() add arg sizes"
|
panic: runtime error: floating point error
kernel
|
|
|
|
2 |
731d |
1009d
|
22/28 |
718d |
59f5ede3bc0f
x86/fpu: Prevent FPU state corruption
|
inconsistent lock state in kmem_cache_alloc_trace (2)
kernel
|
|
|
|
2 |
847d |
848d
|
22/28 |
718d |
2d1f274b95c6
skmsg: pass gfp argument to alloc_sk_msg()
|
kernel BUG in __filemap_get_folio
kernel
|
C |
done |
|
814 |
858d |
1028d
|
22/28 |
718d |
63b1898fffcd
XArray: Disallow sibling entries of nodes
|
KASAN: use-after-free Read in dev_uevent
kernel
|
syz |
|
|
54 |
726d |
1699d
|
22/28 |
718d |
16b1941eac2b
usb: gadget: Fix use-after-free bug by not setting udc->dev.driver
|
memory leak in watch_queue_set_size
kernel
|
C |
|
|
1 |
1061d |
1053d
|
22/28 |
718d |
b490207017ba
watch_queue: Free the page array when watch_queue is dismantled
|
BUG: unable to handle kernel paging request in get_desc
kernel
|
syz |
error |
|
8 |
819d |
830d
|
22/28 |
718d |
97650148a15e
x86/mm: Populate KASAN shadow for entire per-CPU range of CPU entry area
|
upstream test error: WARNING in __queue_work
kernel
|
|
|
|
1 |
901d |
897d
|
22/28 |
718d |
deee93d13d38
Bluetooth: use hdev->workqueue when queuing hdev->{cmd,ncmd}_timer works
|
upstream boot error: BUG: corrupted list in copy_process
kernel
|
|
|
|
1 |
913d |
913d
|
22/28 |
718d |
9993a4f989c7
virtio: Revert "virtio: find_vqs() add arg sizes"
|
usb-testing boot error: general protection fault in __handle_irq_event_percpu
kernel
|
|
|
|
1 |
898d |
898d
|
22/28 |
718d |
9993a4f989c7
virtio: Revert "virtio: find_vqs() add arg sizes"
|
KASAN: use-after-free Read in raw_notifier_call_chain
kernel
|
|
|
|
68 |
805d |
1043d
|
22/28 |
718d |
5daadc86f27e
net: tun: Fix use-after-free in tun_detach()
|
KASAN: use-after-free Read in notifier_call_chain
kernel
|
C |
error |
|
157 |
811d |
817d
|
22/28 |
718d |
5daadc86f27e
net: tun: Fix use-after-free in tun_detach()
|
upstream build error (18)
kernel
|
|
|
|
20 |
720d |
992d
|
22/28 |
718d |
e68b823ab0ba
arm64/hugetlb: Fix building errors in huge_ptep_clear_flush()
|
KASAN: vmalloc-out-of-bounds Read in __text_poke
kernel
|
|
|
|
5 |
1022d |
1093d
|
22/28 |
718d |
d24d2a2b0a81
bpf: bpf_prog_pack: Set proper size before freeing ro_header
|
KMSAN: kernel-infoleak in vmci_host_unlocked_ioctl (2)
kernel
|
C |
|
|
2 |
868d |
867d
|
22/28 |
718d |
e5b0d06d9b10
misc/vmw_vmci: fix an infoleak in vmci_host_do_receive_datagram()
|
upstream boot error: general protection fault in __get_vm_area_node
kernel
|
|
|
|
1 |
911d |
911d
|
22/28 |
718d |
9993a4f989c7
virtio: Revert "virtio: find_vqs() add arg sizes"
|
WARNING in binder_alloc_vma_close
kernel
|
C |
done |
|
18 |
871d |
961d
|
22/28 |
718d |
b0cab80ecd54
android: binder: fix lockdep check on clearing vma
|
KASAN: slab-out-of-bounds Write in watch_queue_set_filter
kernel
|
C |
inconclusive |
|
7 |
1059d |
1062d
|
22/28 |
718d |
c993ee0f9f81
watch_queue: Fix filter limit check
|
upstream boot error: BUG: unable to handle kernel paging request in copy_thread
kernel
|
|
|
|
1 |
911d |
911d
|
22/28 |
718d |
9993a4f989c7
virtio: Revert "virtio: find_vqs() add arg sizes"
|
usb-testing boot error: BUG: unable to handle kernel paging request in copy_namespaces
kernel
|
|
|
|
1 |
896d |
896d
|
22/28 |
718d |
9993a4f989c7
virtio: Revert "virtio: find_vqs() add arg sizes"
|
BUG: sleeping function called from invalid context in binder_ioctl
kernel
|
C |
done |
|
30 |
996d |
1002d
|
22/28 |
718d |
aed86f8add0e
binder: fix atomic sleep when get extended error
|
linux-next boot error: BUG: unable to handle kernel paging request in copy_namespaces
kernel
|
|
|
|
1 |
911d |
911d
|
22/28 |
718d |
9993a4f989c7
virtio: Revert "virtio: find_vqs() add arg sizes"
|
linux-next boot error: general protection fault in rcu_core
kernel
|
|
|
|
1 |
912d |
912d
|
22/28 |
718d |
9993a4f989c7
virtio: Revert "virtio: find_vqs() add arg sizes"
|
upstream boot error: WARNING in copy_process
kernel
|
|
|
|
5 |
910d |
913d
|
22/28 |
718d |
9993a4f989c7
virtio: Revert "virtio: find_vqs() add arg sizes"
|
general protection fault in reweight_entity
kernel
|
C |
error |
done |
10 |
1094d |
1148d
|
22/28 |
718d |
13765de8148f
sched/fair: Fix fault in reweight_entity
|
kernel BUG in __page_mapcount
kernel
|
C |
error |
|
45 |
1118d |
1353d
|
22/28 |
718d |
24d7275ce279
fs/proc: task_mmu.c: don't read mapcount for migration entry
|
upstream boot error: general protection fault in copy_signal
kernel
|
|
|
|
1 |
912d |
912d
|
22/28 |
718d |
9993a4f989c7
virtio: Revert "virtio: find_vqs() add arg sizes"
|
kernel BUG in binder_alloc_deferred_release
kernel
|
C |
done |
|
4 |
966d |
968d
|
22/28 |
718d |
a43cfc87caaf
android: binder: stop saving a pointer to the VMA
|
general protection fault in shm_close
kernel
|
C |
done |
|
48 |
819d |
821d
|
22/28 |
718d |
b6305049f306
ipc/shm: call underlying open/close vm_ops
|
general protection fault in binder_alloc_new_buf
kernel
|
C |
error |
|
315 |
875d |
906d
|
22/28 |
718d |
1da52815d5f1
binder: fix alloc->vma_vm_mm null-ptr dereference
|
BUG: unable to handle kernel paging request in percpu_counter_add_batch
kernel
|
|
|
|
140 |
743d |
845d
|
22/28 |
718d |
64b4c411a6c7
ipc/msg.c: fix percpu_counter use after free
|
KASAN: use-after-free Read in __post_watch_notification
kernel
|
C |
inconclusive |
|
1 |
932d |
930d
|
22/28 |
718d |
e64ab2dbd882
watch_queue: Fix missing locking in add_watch_to_object()
|
BUG: sleeping function called from invalid context in vm_area_dup
kernel
|
C |
|
|
3 |
845d |
845d
|
22/28 |
718d |
d7c0e68dab98
mm/ksm: convert break_ksm() to use walk_page_range_vma()
|
KASAN: use-after-free Read in task_work_run (2)
kernel
|
C |
unreliable |
|
18 |
797d |
890d
|
22/28 |
718d |
517e6a301f34
perf: Fix perf_pending_task() UaF
|
memory leak in do_seccomp (2)
kernel
|
C |
|
|
4 |
902d |
1451d
|
22/28 |
718d |
a1140cb215fa
seccomp: Move copy_seccomp() to no failure path.
|
general protection fault in binder_alloc_print_pages
kernel
|
C |
error |
|
157 |
875d |
906d
|
22/28 |
718d |
1da52815d5f1
binder: fix alloc->vma_vm_mm null-ptr dereference
|
KASAN: null-ptr-deref Read in __free_pages
kernel
|
C |
inconclusive |
|
21 |
797d |
1059d
|
22/28 |
718d |
a635415a064e
watch_queue: Fix NULL dereference in error cleanup
|
KASAN: use-after-free Read in net_tx_action
kernel
|
C |
inconclusive |
|
3 |
854d |
898d
|
22/28 |
718d |
ebda44da44f6
net: sched: fix race condition in qdisc_graft()
|
KASAN: use-after-free Read in post_one_notification
kernel
|
C |
inconclusive |
|
19 |
859d |
1058d
|
22/28 |
718d |
353f7988dd84
watchqueue: make sure to serialize 'wqueue->defunct' properly
|
memory leak in setup_mq_sysctls
kernel
|
C |
|
|
2 |
796d |
968d
|
22/28 |
718d |
db7cfc380900
ipc: Free mq_sysctls if ipc namespace creation failed
|
kernel panic: stack is corrupted in sys_clock_nanosleep
kernel
|
|
|
|
2 |
896d |
978d
|
22/28 |
718d |
b81d591386c3
riscv: Increase stack size under KASAN
|
WARNING in __queue_work (3)
kernel
|
syz |
error |
|
953 |
819d |
1653d
|
22/28 |
718d |
877afadad2dc
Bluetooth: When HCI work queue is drained, only queue chained work
|
WARNING in static_key_slow_try_dec (3)
kernel
|
C |
|
|
26 |
730d |
890d
|
22/28 |
718d |
921ebde3c0d2
netfilter: nf_tables: fix nft_counters_enabled underflow at nf_tables_addchain()
|
possible deadlock in ktime_get_coarse_ts64
kernel
|
|
|
|
1 |
1196d |
1195d
|
20/28 |
1071d |
5e0bc3082e2e
bpf: Forbid bpf_ktime_get_coarse_ns and bpf_timer_* in tracing progs
|
WARNING: ODEBUG bug in really_probe
kernel
|
|
|
|
1 |
1141d |
1135d
|
20/28 |
1071d |
33812fc7c8d7
HID: magicmouse: Fix an error handling path in magicmouse_probe()
|
WARNING in static_key_slow_try_dec (2)
kernel
|
C |
unreliable |
|
5417 |
1210d |
1278d
|
20/28 |
1071d |
f7d8a19f9a05
Revert "KVM: x86: Open code necessary bits of kvm_lapic_set_base() at vCPU RESET"
|
WARNING in emulate_vsyscall
kernel
|
C |
done |
done |
3890 |
1235d |
1415d
|
20/28 |
1071d |
d4ffd5df9d18
x86/fault: Fix wrong signal when vsyscall fails with pkey
|
inconsistent lock state in kmem_cache_alloc_trace
kernel
|
|
|
|
36 |
1154d |
1156d
|
20/28 |
1071d |
8b40a9d53d4f
ipv6: use GFP_ATOMIC in rt6_probe()
|
WARNING in hrtimer_forward
kernel
|
C |
done |
done |
217 |
1116d |
1601d
|
20/28 |
1071d |
313bbd1990b6
mac80211-hwsim: fix late beacon hrtimer handling
|
KMSAN: uninit-value in from_kuid
kernel
|
|
|
|
10 |
1096d |
1172d
|
20/28 |
1071d |
3cb6ee991496
9p: only copy valid iattrs in 9P2000.L setattr implementation
|
UBSAN: array-index-out-of-bounds in ktime_mono_to_any
kernel
|
|
|
|
4 |
1190d |
1192d
|
20/28 |
1071d |
6dc25401cba4
net/sched: sch_taprio: fix undefined behavior in ktime_mono_to_any
|
INFO: rcu detected stall in br_multicast_query_expired
kernel
|
C |
inconclusive |
|
2 |
1149d |
1149d
|
20/28 |
1071d |
f83a112bd91a
net: bridge: mcast: add and enforce startup query interval minimum
|
WARNING in trc_read_check_handler
kernel
|
C |
unreliable |
done |
40 |
1198d |
1287d
|
20/28 |
1071d |
96017bf90397
rcu-tasks: Simplify trc_read_check_handler() atomic operations
|
general protection fault in hrtimer_active (3)
kernel
|
syz |
done |
error |
34 |
1106d |
1411d
|
20/28 |
1071d |
e28587cc491e
sit: do not call ipip6_dev_free() from sit_init_net()
|
KASAN: use-after-free Write in dec_rlimit_ucounts
kernel
|
C |
|
|
4 |
1272d |
1306d
|
20/28 |
1189d |
345daff2e994
ucounts: Fix race condition between alloc_ucounts and put_ucounts
bbb6d0f3e1fe
ucounts: Increase ucounts reference counter before the security hook
|
net-next build error (4)
kernel
|
|
|
|
4 |
1257d |
1258d
|
20/28 |
1190d |
ea7b4244b365
x86/setup: Explicitly include acpi.h
|
memory leak in kobject_set_name_vargs (4)
kernel
|
C |
|
|
171 |
1257d |
1544d
|
20/28 |
1190d |
8fd0c1b0647a
nilfs2: fix memory leak in nilfs_sysfs_delete_device_group
|
WARNING in ex_handler_fprestore
kernel
|
C |
done |
|
5 |
1352d |
1360d
|
20/28 |
1190d |
484cea4f362e
x86/fpu: Prevent state corruption in __fpu__restore_sig()
|
bpf-next build error (3)
kernel
|
|
|
|
10 |
1246d |
1417d
|
20/28 |
1190d |
7e32a09fdcb3
bpf: tcp: Remove comma which is causing build error
|
KASAN: use-after-free Write in alloc_ucounts
kernel
|
syz |
|
|
7 |
1288d |
1306d
|
20/28 |
1190d |
345daff2e994
ucounts: Fix race condition between alloc_ucounts and put_ucounts
|
BUG: using smp_processor_id() in preemptible code in clock_was_set
kernel
|
C |
done |
|
231 |
1279d |
1279d
|
20/28 |
1190d |
9482fd71dbb8
hrtimer: Use raw_cpu_ptr() in clock_was_set()
|
kernel BUG in put_ucounts
kernel
|
|
|
|
3 |
1216d |
1303d
|
20/28 |
1190d |
345daff2e994
ucounts: Fix race condition between alloc_ucounts and put_ucounts
|
KASAN: use-after-free Write in put_ucounts
kernel
|
|
|
|
3 |
1303d |
1306d
|
20/28 |
1190d |
345daff2e994
ucounts: Fix race condition between alloc_ucounts and put_ucounts
|
upstream boot error: kernel panic: VFS: Unable to mount root fs on unknown-block(0,0)
kernel
|
|
|
|
235 |
1312d |
1320d
|
20/28 |
1190d |
c43ddbf97f46
scsi: virtio_scsi: Do not overwrite SCSI status
|
BUG: unable to handle kernel paging request in csum_partial (3)
kernel
|
C |
done |
|
1 |
1277d |
1308d
|
20/28 |
1190d |
9cf448c200ba
ip6_gre: add validation for csum_start
1d011c4803c7
ip_gre: add validation for csum_start
|
net build error (3)
kernel
|
|
|
|
29 |
1253d |
1258d
|
20/28 |
1190d |
ea7b4244b365
x86/setup: Explicitly include acpi.h
|
possible deadlock in __fs_reclaim_acquire
kernel
|
syz |
unreliable |
|
672 |
1307d |
1319d
|
20/28 |
1190d |
187ad460b841
mm/page_alloc: avoid page allocator recursion with pagesets.lock held
|
WARNING: suspicious RCU usage in __ext4_mark_inode_dirty
kernel
|
|
|
|
1 |
1348d |
1348d
|
20/28 |
1190d |
3066820034b5
rcu: Reject RCU_LOCKDEP_WARN() false positives
|
KASAN: use-after-free Write in get_ucounts
kernel
|
syz |
unreliable |
done |
7 |
1287d |
1315d
|
20/28 |
1190d |
345daff2e994
ucounts: Fix race condition between alloc_ucounts and put_ucounts
|
usb-testing boot error: kernel panic: VFS: Unable to mount root fs on unknown-block(0,0)
kernel
|
|
|
|
27 |
1311d |
1316d
|
20/28 |
1190d |
c43ddbf97f46
scsi: virtio_scsi: Do not overwrite SCSI status
|
memory leak in __send_signal
kernel
|
syz |
|
|
3 |
1332d |
1346d
|
20/28 |
1190d |
399f8dd9a866
signal: Prevent sigqueue caching after task got released
|
BUG: unable to handle kernel access to user memory in schedule_tail
kernel
|
|
|
|
21843 |
1412d |
1434d
|
20/28 |
1190d |
285a76bb2cf5
riscv: evaluate put_user() arg before enabling user access
|
WARNING: suspicious RCU usage in do_nanosleep
kernel
|
|
|
|
1 |
1377d |
1377d
|
20/28 |
1190d |
3066820034b5
rcu: Reject RCU_LOCKDEP_WARN() false positives
|
WARNING: suspicious RCU usage in dup_mmap
kernel
|
|
|
|
1 |
1356d |
1356d
|
20/28 |
1190d |
3066820034b5
rcu: Reject RCU_LOCKDEP_WARN() false positives
|
BUG: scheduling while atomic: syz-executor/ADDR
kernel
|
C |
done |
|
5 |
1265d |
1322d
|
20/28 |
1190d |
72ff2bf04db2
crypto: aesni - xts_crypt() return if walk.nbytes is 0
|
BUG: sleeping function called from invalid context in __fdget_pos
kernel
|
|
|
|
4 |
1262d |
1324d
|
20/28 |
1190d |
821720b9f34e
crypto: x86/aes-ni - add missing error checks in XTS code
|
memory leak in copy_process (2)
kernel
|
C |
|
|
2 |
1431d |
1430d
|
20/28 |
1190d |
f60a85cad677
bpf: Fix umd memory leak in copy_process()
|
WARNING in handle_mm_fault
kernel
|
|
|
|
5 |
1429d |
1433d
|
20/28 |
1190d |
f4e61f0c9add
x86/kvm: Fix broken irq restoration in kvm_wait
|
WARNING: suspicious RCU usage in get_timespec64
kernel
|
|
|
|
3 |
1360d |
1409d
|
20/28 |
1190d |
3066820034b5
rcu: Reject RCU_LOCKDEP_WARN() false positives
|
UBSAN: shift-out-of-bounds in profile_init
kernel
|
C |
unreliable |
|
23 |
1258d |
1308d
|
20/28 |
1190d |
2d186afd04d6
profiling: fix shift-out-of-bounds bugs
|
bpf build error (3)
kernel
|
|
|
|
15 |
1247d |
1258d
|
20/28 |
1190d |
ea7b4244b365
x86/setup: Explicitly include acpi.h
|
UBSAN: shift-out-of-bounds in load_balance
kernel
|
syz |
|
|
2167 |
1375d |
1480d
|
20/28 |
1190d |
39a2a6eb5c9b
sched/fair: Fix shift-out-of-bounds in load_balance()
|
KASAN: use-after-free Read in firmware_fallback_sysfs
kernel
|
C |
error |
|
16514 |
1272d |
1472d
|
20/28 |
1190d |
75d95e2e39b2
firmware_loader: fix use-after-free in firmware_fallback_sysfs
|
memory leak in prepare_creds (2)
kernel
|
C |
|
|
2 |
1328d |
1424d
|
20/28 |
1190d |
f60a85cad677
bpf: Fix umd memory leak in copy_process()
|
WARNING: suspicious RCU usage in get_signal
kernel
|
|
|
|
1 |
1381d |
1377d
|
20/28 |
1190d |
3066820034b5
rcu: Reject RCU_LOCKDEP_WARN() false positives
|
KASAN: use-after-free Read in check_all_holdout_tasks_trace
kernel
|
syz |
done |
|
4 |
1293d |
1362d
|
20/28 |
1190d |
1d10bf55d85d
rcu-tasks: Don't delete holdouts within trc_inspect_reader()
|
WARNING in futex_requeue
kernel
|
syz |
|
|
4 |
1255d |
1259d
|
20/28 |
1190d |
4f07ec0d76f2
futex: Prevent inconsistent state and exit race
|
WARNING in __static_key_slow_dec
kernel
|
C |
unreliable |
|
19 |
1253d |
1257d
|
20/28 |
1190d |
6d5f1ef83868
bonding: Fix negative jump label count on nested bonding
|
KASAN: global-out-of-bounds Read in netlink_policy_dump_add_policy (2)
kernel
|
C |
done |
|
2 |
1464d |
1464d
|
20/28 |
1358d |
33b347503f01
vdpa: Define vdpa mgmt device, ops and a netlink interface
|
KASAN: use-after-free Read in __cpuhp_state_remove_instance
kernel
|
C |
unreliable |
done |
2726 |
1425d |
1447d
|
20/28 |
1394d |
470ec4ed8c91
io-wq: fix double put of 'wq' in error path
|
WARNING in qp_broker_alloc
kernel
|
C |
inconclusive |
|
24 |
1449d |
1485d
|
20/28 |
1404d |
2fd10bcf0310
drivers/misc/vmw_vmci: restrict too big queue size in qp_host_alloc_queue
|
memory leak in prepare_creds
kernel
|
C |
|
|
10 |
1455d |
1629d
|
19/28 |
1435d |
f26c08b444df
io_uring: fix file leak on error path of io ctx creation
|
general protection fault in rose_transmit_clear_request
kernel
|
C |
done |
|
5 |
1564d |
2029d
|
19/28 |
1435d |
3b3fd068c56e
rose: Fix Null pointer dereference in rose_send_frame()
|
KMSAN: kernel-infoleak in vmci_host_unlocked_ioctl
kernel
|
C |
|
|
22 |
1464d |
1548d
|
19/28 |
1435d |
31dcb6c30a26
misc: vmw_vmci: fix kernel info-leak by initializing dbells in vmci_ctx_get_chkpt_doorbells()
|
UBSAN: array-index-out-of-bounds in arch_uprobe_analyze_insn
kernel
|
C |
done |
|
604 |
1528d |
1605d
|
19/28 |
1435d |
12cb908a11b2
x86/insn-eval: Use new for_each_insn_prefix() macro to loop over prefixes bytes
84da009f06e6
x86/sev-es: Use new for_each_insn_prefix() macro to loop over prefixes bytes
4e9a5ae8df5b
x86/uprobes: Do not use prefixes.nbytes when looping over prefixes.bytes
|
BUG: unable to handle kernel NULL pointer dereference in call_rcu
kernel
|
C |
done |
|
85 |
1505d |
1508d
|
19/28 |
1435d |
13384f6125ad
kasan: fix null pointer dereference in kasan_record_aux_stack
|
memory leak in copy_process
kernel
|
C |
|
|
23 |
1452d |
1549d
|
19/28 |
1435d |
450677dcb0cc
mm/madvise: fix memory leak from process_madvise
|
INFO: rcu detected stall in process_one_work (3)
kernel
|
C |
done |
done |
1 |
1589d |
1630d
|
15/28 |
1548d |
1d0e850a49a5
afs: Fix cell removal
|
WARNING in binder_transaction_buffer_release (2)
kernel
|
C |
done |
done |
442 |
1681d |
1722d
|
15/28 |
1548d |
e8b8ae7ce32e
binder: Remove bogus warning on failed same-process transaction
|
KASAN: unknown-crash Read in do_exit
kernel
|
C |
inconclusive |
done |
2 |
1606d |
1612d
|
15/28 |
1548d |
a49145acfb97
fbmem: add margin check to fb_check_caps()
|
WARNING in syscall_exit_to_user_mode
kernel
|
C |
done |
done |
1 |
1586d |
1615d
|
15/28 |
1548d |
a49145acfb97
fbmem: add margin check to fb_check_caps()
|
WARNING in get_signal
kernel
|
C |
done |
|
2 |
1591d |
1593d
|
15/28 |
1548d |
7b3c36fc4c23
ptrace: fix task_join_group_stop() for the case when current is traced
|
kernel panic: stack is corrupted in get_kernel_gp_address
kernel
|
syz |
done |
done |
1 |
1582d |
1614d
|
15/28 |
1548d |
a49145acfb97
fbmem: add margin check to fb_check_caps()
|
KASAN: out-of-bounds Read in __switch_to (2)
kernel
|
syz |
done |
done |
1 |
1597d |
1593d
|
15/28 |
1548d |
a49145acfb97
fbmem: add margin check to fb_check_caps()
|
WARNING in arch_install_hw_breakpoint
kernel
|
C |
inconclusive |
done |
8 |
2035d |
2152d
|
15/28 |
1548d |
e898e69d6b94
x86/hw_breakpoints: Make default case in hw_breakpoint_arch_parse() return an error
|
general protection fault in qp_release_pages
kernel
|
C |
done |
|
2 |
1584d |
1584d
|
15/28 |
1548d |
90ca6333fd65
VMCI: check return value of get_user_pages_fast() for errors
|
KASAN: stack-out-of-bounds Read in csd_lock_record
kernel
|
C |
|
|
226 |
1679d |
1684d
|
15/28 |
1548d |
35feb60474bf
kernel/smp: Provide CSD lock timeout diagnostics
|
WARNING in irqentry_exit
kernel
|
C |
error |
done |
2080 |
1583d |
1650d
|
15/28 |
1548d |
4d004099a668
lockdep: Fix lockdep recursion
|
memory leak in do_seccomp
kernel
|
C |
|
|
6 |
1618d |
1645d
|
15/28 |
1586d |
a566a9012acd
seccomp: don't leak memory when filter install races
|
INFO: rcu detected stall in cleanup_net (4)
kernel
|
C |
done |
|
5 |
1621d |
1617d
|
15/28 |
1586d |
b5b73b26b3ca
taprio: Fix allowing too small intervals
|
general protection fault in x86_fsgsbase_read_task
kernel
|
C |
done |
|
2 |
1643d |
1643d
|
15/28 |
1609d |
8ab49526b53d
x86/fsgsbase/64: Fix NULL deref in 86_fsgsbase_read_task
|
WARNING in idtentry_exit_cond_rcu
kernel
|
syz |
|
|
6 |
1683d |
1679d
|
15/28 |
1609d |
bce9b042ec73
x86/traps: Disable interrupts in exc_aligment_check()
|
linux-next boot error: WARNING in mem_cgroup_css_alloc
kernel
|
|
|
|
6 |
1643d |
1644d
|
15/28 |
1609d |
9f457179244a
mm: memcontrol: fix warning when allocating the root cgroup
|
general protection fault in syscall_return_slowpath
kernel
|
syz |
inconclusive |
done |
1 |
1715d |
1802d
|
15/28 |
1609d |
033724d68642
fbdev: Detect integer underflow at "struct fbcon_ops"->clear_margins.
|
INFO: task hung in __do_sys_reboot
kernel
|
|
|
|
1554 |
1626d |
1681d
|
15/28 |
1609d |
b292b50b0efc
driver core: Fix probe_count imbalance in really_probe()
|
KASAN: stack-out-of-bounds Read in update_stack_state
kernel
|
C |
unreliable |
done |
388 |
1853d |
2547d
|
15/28 |
1638d |
4ee7c60de83a
init, tracing: Add initcall trace events
|
PANIC: double fault in fixup_bad_iret
kernel
|
C |
error |
|
11753 |
1679d |
1719d
|
15/28 |
1656d |
5144f8a8dfd7
compiler_types.h: Add __no_sanitize_{address,undefined} to noinstr
|
KCSAN: data-race in copy_process / release_task
kernel
|
|
|
|
154 |
1685d |
1814d
|
15/28 |
1656d |
c17d1a3a8ee4
fork: annotate data race in copy_process()
|
WARNING in enqueue_task_dl
kernel
|
C |
done |
|
13 |
1700d |
2277d
|
15/28 |
1656d |
740797ce3a12
sched/core: Fix PI boosting between RT and DEADLINE tasks
|
KCSAN: data-race in copy_process / copy_process (2)
kernel
|
|
|
|
294 |
1686d |
1863d
|
15/28 |
1656d |
c17d1a3a8ee4
fork: annotate data race in copy_process()
|
PANIC: double fault in check_preemption_disabled
kernel
|
C |
|
|
2181 |
1687d |
1692d
|
15/28 |
1656d |
c7aadc09321d
x86/entry: Increase entry_stack size to a full page
|
BUG: MAX_LOCKDEP_CHAINS too low!
kernel
|
C |
done |
|
17240 |
1670d |
2329d
|
15/28 |
1670d |
e7511f560f54
bonding: remove useless stats_lock_key
1a33e10e4a95
net: partially revert dynamic lockdep key changes
|
general protection fault in kobject_get (2)
kernel
|
|
|
|
2 |
1700d |
1729d
|
15/28 |
1670d |
11a0ae4c4bff
RDMA: Allow ib_client's to fail when add() is called
|
BUG: stack guard page was hit in deref_stack_reg
kernel
|
|
|
|
2 |
1735d |
1796d
|
15/28 |
1670d |
dd912306ff00
net: fix a potential recursive NETDEV_FEAT_CHANGE
|
BUG: stack guard page was hit in update_stack_state
kernel
|
|
|
|
5 |
1821d |
1835d
|
15/28 |
1670d |
dd912306ff00
net: fix a potential recursive NETDEV_FEAT_CHANGE
|
WARNING in __mmdrop
kernel
|
syz |
done |
|
14 |
2025d |
2035d
|
15/28 |
1689d |
3d2c7d370475
Revert "vhost: access vq metadata through kernel virtual address"
|
WARNING in __vm_enough_memory (2)
kernel
|
syz |
done |
|
6 |
1760d |
1764d
|
15/28 |
1699d |
dadbd85f2afc
mm: Fix MREMAP_DONTUNMAP accounting on VMA merge
|
general protection fault in kobject_get
kernel
|
|
|
|
4 |
1742d |
1808d
|
15/28 |
1739d |
5bdfa854013c
RDMA/mad: Do not crash if the rdma device does not have a umad interface
|
WARNING: kobject bug in add_one_compat_dev
kernel
|
|
|
|
2 |
1810d |
1812d
|
15/28 |
1739d |
f2f2b3bbf0d9
RDMA/core: Fix missing error check on dev_set_name()
|
KASAN: use-after-free Read in __hrtimer_run_queues
kernel
|
C |
done |
|
299 |
1771d |
1778d
|
15/28 |
1739d |
73d20564e0dc
hrtimer: Don't dereference the hrtimer pointer after the callback
|
WARNING: kobject bug in ib_register_device
kernel
|
C |
done |
|
14 |
1776d |
1815d
|
15/28 |
1739d |
7aefa6237cfe
RDMA/nl: Do not permit empty devices names during RDMA_NLDEV_CMD_NEWLINK/SET
|
INFO: rcu detected stall in hash_ip4_gc
kernel
|
C |
done |
|
1 |
1845d |
1843d
|
15/28 |
1763d |
f66ee0410b1c
netfilter: ipset: Fix "INFO: rcu detected stall in hash_xxx" reports
|
WARNING in switch_fpu_return
kernel
|
syz |
done |
done |
11 |
1835d |
1868d
|
15/28 |
1784d |
2620fe268e80
KVM: x86: Revert "KVM: X86: Fix fpu state crash in kvm guest"
|
linux-next build error (7)
kernel
|
|
|
|
7 |
1843d |
1847d
|
15/28 |
1798d |
ac6119e7f25b
efi/x86: Disable instrumentation in the EFI runtime handling code
|
upstream boot error: KASAN: slab-out-of-bounds Write in hpet_alloc
kernel
|
|
|
|
33 |
1838d |
1840d
|
15/28 |
1820d |
98c49f1746ac
char: hpet: Fix out-of-bounds read bug
|
KMSAN: uninit-value in __request_module (3)
kernel
|
C |
|
|
58 |
1821d |
1849d
|
15/28 |
1820d |
36d79af7fb59
net-backports: net_sched: use validated TCA_KIND attribute in tc_new_tfilter()
|
kernel panic: stack is corrupted in __lock_acquire (4)
kernel
|
syz |
error |
error |
75 |
1916d |
2074d
|
15/28 |
1820d |
4da6a196f93b
bpf: Sockmap/tls, during free we may call tcp_bpf_unhash() in loop
|
BUG: sleeping function called from invalid context in tpk_write
kernel
|
C |
done |
|
12 |
1852d |
1893d
|
15/28 |
1820d |
9a655c77ff8f
ttyprintk: fix a potential deadlock in interrupt context issue
|
KCSAN: data-race in find_next_bit / rcu_report_exp_cpu_mult
kernel
|
|
|
|
203 |
1832d |
1955d
|
15/28 |
1820d |
15c7c972cd26
rcu: Use *_ONCE() to protect lockless ->expmask accesses
|
KCSAN: data-race in tick_do_update_jiffies64 / tick_do_update_jiffies64 (4)
kernel
|
|
|
|
394 |
1825d |
1896d
|
15/28 |
1820d |
de95a991bb72
net-backports: tick/sched: Annotate lockless access to last_jiffies_update
|
BUG: unable to handle kernel paging request in do_csum (2)
kernel
|
C |
done |
|
6 |
1844d |
1846d
|
15/28 |
1820d |
6cd021a58c18
udp: segment looped gso packets correctly
|
KCSAN: data-race in taskstats_exit / taskstats_exit
kernel
|
|
|
|
157 |
1825d |
1957d
|
15/28 |
1825d |
0b8d616fb5a8
taskstats: fix data-race
|
linux-next boot error: general protection fault in do_mount_root
kernel
|
|
|
|
9 |
1884d |
1884d
|
15/28 |
1825d |
7de7de7ca0ae
Fix root mounting with no mount options
|
upstream boot error: general protection fault in do_mount_root
kernel
|
|
|
|
12 |
1885d |
1885d
|
15/28 |
1825d |
7de7de7ca0ae
Fix root mounting with no mount options
|
KMSAN: uninit-value in __request_module (2)
kernel
|
|
|
|
3 |
1881d |
1893d
|
15/28 |
1862d |
2dd5616ecdce
net-backports: net_sched: validate TCA_KIND attribute in tc_chain_tmplt_add()
|
general protection fault in override_creds
kernel
|
C |
done |
|
6 |
1896d |
1899d
|
15/28 |
1862d |
0b8c0ec7eedc
io_uring: use current task creds instead of allocating a new one
|
linux-next boot error: general protection fault in __x64_sys_settimeofday
kernel
|
|
|
|
6 |
1916d |
1917d
|
15/28 |
1888d |
5e0fb1b57bea
y2038: time: avoid timespec usage in settimeofday()
|
general protection fault in tss_update_io_bitmap
kernel
|
C |
done |
|
65 |
1904d |
1910d
|
15/28 |
1888d |
e3cb0c7102f0
x86/ioperm: Fix use of deprecated config option
|
KCSAN: data-race in __remove_hrtimer / __tcp_ack_snd_check
kernel
|
|
|
|
4 |
1903d |
1924d
|
15/28 |
1888d |
56144737e673
hrtimer: Annotate lockless access to timer->state
|
KCSAN: data-race in __remove_hrtimer / tcp_pacing_check
kernel
|
|
|
|
1 |
1927d |
1924d
|
15/28 |
1888d |
56144737e673
hrtimer: Annotate lockless access to timer->state
|
KMSAN: use-after-free in __netif_receive_skb_core
kernel
|
|
|
|
1 |
1918d |
1918d
|
15/28 |
1888d |
cf94da6f502d
Bluetooth: Fix invalid-free in bcsp_close()
|
KASAN: use-after-free Read in tick_sched_handle (3)
kernel
|
C |
|
done |
12 |
2221d |
2276d
|
13/28 |
1921d |
bc6e019b6ee6
fou: Prevent unbounded recursion in GUE error handler also with UDP-Lite
|
general protection fault in put_pid
kernel
|
syz |
done |
done |
3 |
2245d |
2254d
|
13/28 |
1923d |
a8e911d13540
x86_64: increase stack size for KASAN_EXTRA
|
general protection fault in propagate_entity_cfs_rq
kernel
|
C |
|
done |
1 |
2406d |
2406d
|
13/28 |
1923d |
bab2c80e5a6c
nsh: set mac len based on inner packet
|
general protection fault in open_rio
kernel
|
|
|
|
2 |
1966d |
1967d
|
13/28 |
1934d |
015664d15270
USB: rio500: Remove Rio 500 kernel driver
|
WARNING: lock held when returning to user space in rcu_lock_acquire
kernel
|
C |
done |
|
3 |
1959d |
1959d
|
13/28 |
1946d |
73956fc07dd7
membarrier: Fix RCU locking bug caused by faulty merge
|
general protection fault in make_kuid
kernel
|
C |
done |
|
4 |
2006d |
2031d
|
13/28 |
1946d |
1dd9bc08cf14
vfs: set fs_context::user_ns for reconfigure
|
WARNING in rcu_note_context_switch
kernel
|
C |
done |
|
1 |
1961d |
1961d
|
13/28 |
1946d |
73956fc07dd7
membarrier: Fix RCU locking bug caused by faulty merge
|
WARNING: lock held when returning to user space in membarrier_private_expedited
kernel
|
C |
done |
|
7 |
1959d |
1961d
|
13/28 |
1946d |
73956fc07dd7
membarrier: Fix RCU locking bug caused by faulty merge
|
KMSAN: uninit-value in __request_module
kernel
|
C |
|
|
13 |
1956d |
1976d
|
13/28 |
1946d |
62794fc4fbf5
net_sched: add max len check for TCA_KIND
|
memory leak in llcp_sock_bind
kernel
|
C |
done |
|
2 |
1968d |
2032d
|
13/28 |
1946d |
a0c2dc1fe63e
nfc: fix memory leak in llcp_sock_bind()
|
INFO: rcu detected stall in sys_exit_group
kernel
|
C |
done |
|
1 |
1978d |
1974d
|
13/28 |
1953d |
d4d6ec6dac07
sch_hhf: ensure quantum and hhf_non_hh_weight are non-zero
|
INFO: rcu detected stall in sys_clone
kernel
|
|
|
|
1 |
1980d |
1980d
|
13/28 |
1953d |
d4d6ec6dac07
sch_hhf: ensure quantum and hhf_non_hh_weight are non-zero
|
WARNING in lockdep_unregister_key (2)
kernel
|
|
|
|
3 |
2127d |
2130d
|
13/28 |
1957d |
8b39adbee805
locking/lockdep: Make lockdep_unregister_key() honor 'debug_locks' again
|
KASAN: slab-out-of-bounds Read in bpf_int_jit_compile
kernel
|
C |
done |
|
1 |
2033d |
2030d
|
12/28 |
1985d |
7c2e988f400e
bpf: fix x64 JIT code generation for jmp to 1st insn
|
KASAN: slab-out-of-bounds Read in do_jit
kernel
|
C |
done |
|
16 |
1985d |
2030d
|
12/28 |
1985d |
7c2e988f400e
bpf: fix x64 JIT code generation for jmp to 1st insn
|
BUG: unable to handle kernel paging request in hrtimer_interrupt
kernel
|
syz |
done |
|
2 |
2028d |
2064d
|
12/28 |
1995d |
95fa145479fb
bpf: sockmap/tls, close can race with map free
|
general protection fault in rcu_core
kernel
|
syz |
done |
|
1 |
2044d |
2044d
|
12/28 |
1995d |
95fa145479fb
bpf: sockmap/tls, close can race with map free
|
general protection fault in mm_update_next_owner
kernel
|
syz |
done |
done |
1 |
2075d |
2075d
|
12/28 |
1995d |
95fa145479fb
bpf: sockmap/tls, close can race with map free
|
KASAN: use-after-free Write in validate_chain
kernel
|
syz |
done |
|
3 |
2052d |
2062d
|
12/28 |
1995d |
95fa145479fb
bpf: sockmap/tls, close can race with map free
|
KASAN: use-after-free Read in psi_task_change
kernel
|
syz |
done |
|
1 |
2029d |
2028d
|
12/28 |
1995d |
95fa145479fb
bpf: sockmap/tls, close can race with map free
|
KASAN: slab-out-of-bounds Write in check_noncircular
kernel
|
syz |
done |
|
1 |
2035d |
2035d
|
12/28 |
1995d |
95fa145479fb
bpf: sockmap/tls, close can race with map free
|
WARNING in mark_lock
kernel
|
syz |
done |
|
2 |
2004d |
2059d
|
12/28 |
1995d |
95fa145479fb
bpf: sockmap/tls, close can race with map free
|
kernel panic: stack is corrupted in validate_chain
kernel
|
syz |
done |
|
1 |
2058d |
2058d
|
12/28 |
1995d |
95fa145479fb
bpf: sockmap/tls, close can race with map free
|
BUG: unable to handle kernel paging request in cpuacct_account_field
kernel
|
syz |
done |
done |
1 |
2063d |
2062d
|
12/28 |
1995d |
95fa145479fb
bpf: sockmap/tls, close can race with map free
|
possible deadlock in rxrpc_put_peer
kernel
|
|
|
|
1 |
2031d |
2028d
|
12/28 |
1995d |
60034d3d146b
rxrpc: Fix potential deadlock
|
WARNING: held lock freed in nr_release
kernel
|
C |
done |
|
344 |
2016d |
2037d
|
12/28 |
1995d |
4638faac0327
netrom: hold sock when setting skb->destructor
|
KASAN: use-after-free Read in corrupted (3)
kernel
|
syz |
done |
|
1 |
2058d |
2058d
|
12/28 |
1995d |
95fa145479fb
bpf: sockmap/tls, close can race with map free
|
general protection fault in rb_erase (2)
kernel
|
syz |
done |
|
4 |
2024d |
2232d
|
12/28 |
1995d |
95fa145479fb
bpf: sockmap/tls, close can race with map free
|
KASAN: slab-out-of-bounds Read in usage_accumulate
kernel
|
syz |
done |
|
3 |
2058d |
2077d
|
12/28 |
1995d |
95fa145479fb
bpf: sockmap/tls, close can race with map free
|
WARNING: refcount bug in nr_rx_frame
kernel
|
C |
done |
|
15 |
2019d |
2036d
|
12/28 |
1995d |
4638faac0327
netrom: hold sock when setting skb->destructor
|
BUG: unable to handle kernel paging request in bpf_prog_ADDR
kernel
|
C |
done |
|
13 |
2018d |
2034d
|
12/28 |
1995d |
06a22d897d82
bpf: fix access to skb_shared_info->gso_segs
|
general protection fault in rb_next (3)
kernel
|
syz |
done |
done |
1 |
2068d |
2067d
|
12/28 |
1995d |
95fa145479fb
bpf: sockmap/tls, close can race with map free
|
general protection fault in finish_task_switch (2)
kernel
|
C |
|
done |
1538 |
2333d |
2377d
|
12/28 |
2000d |
26b471c7e2f7
KVM: nVMX: Fix bad cleanup on error of get/set nested state IOCTLs
|
memory leak in policydb_read
kernel
|
C |
done |
|
1 |
2032d |
2031d
|
12/28 |
2009d |
45385237f65a
selinux: fix memory leak in policydb_init()
|
WARNING in binder_transaction_buffer_release
kernel
|
syz |
error |
|
38 |
2052d |
2094d
|
12/28 |
2009d |
49ed96943a8e
binder: prevent transactions to context manager from its own process.
|
memory leak in binder_transaction
kernel
|
C |
|
|
3 |
2058d |
2070d
|
12/28 |
2017d |
1909a671dbc3
binder: fix memory leak in error path
|
WARNING in static_key_slow_try_dec
kernel
|
C |
done |
|
58 |
2040d |
2044d
|
12/28 |
2017d |
d44e3fa5d7e6
ipv6: fix static key imbalance in fl_create()
|
general protection fault in get_task_pid
kernel
|
C |
done |
|
24 |
2050d |
2052d
|
12/28 |
2024d |
28dd29c06d0d
fork: return proper negative error code
|
memory leak in kobject_set_name_vargs
kernel
|
C |
|
|
12 |
2052d |
2085d
|
12/28 |
2043d |
4f488fbca2a8
cfg80211: fix memory leak of wiphy device name
|
KMSAN: kernel-infoleak in copy_siginfo_to_user (2)
kernel
|
C |
|
|
15 |
2073d |
2103d
|
12/28 |
2043d |
f6e2aa91a46d
signal/ptrace: Don't leak unitialized kernel memory with PTRACE_PEEK_SIGINFO
|
WARNING: locking bug in copy_process
kernel
|
C |
done |
|
3 |
2103d |
2105d
|
12/28 |
2069d |
c3b7112df86b
fork: do not release lock that wasn't taken
|
kernel BUG at drivers/android/binder_alloc.c:LINE! (3)
kernel
|
C |
done |
|
24 |
2078d |
2147d
|
12/28 |
2069d |
a3c7cd0cdf11
batman-adv: mcast: fix multicast tt/tvlv worker locking
|
BUG: unable to handle page fault for address = ADDR
kernel
|
C |
done |
|
3 |
2120d |
2119d
|
12/28 |
2087d |
baf76f0c58ae
slip: make slhc_free() silently accept an error pointer
|
KASAN: use-after-free Read in seccomp_notify_release (2)
kernel
|
C |
done |
|
9 |
2150d |
2151d
|
12/28 |
2087d |
7a0df7fbc145
seccomp: Make NEW_LISTENER and TSYNC flags exclusive
|
KASAN: use-after-free Read in pid_nr_ns
kernel
|
|
|
|
1 |
2117d |
2117d
|
12/28 |
2087d |
6c0afef5fb0c
ipv6/flowlabel: wait rcu grace period before put_pid()
|
kernel BUG at drivers/android/binder_alloc.c:LINE! (2)
kernel
|
C |
|
|
1257 |
2147d |
2190d
|
11/28 |
2147d |
26528be6720b
binder: fix handling of misaligned binder object
|
KASAN: use-after-free Read in kobject_put
kernel
|
C |
|
|
12 |
2176d |
2307d
|
11/28 |
2147d |
e20a2e9c42c9
Bluetooth: Fix decrementing reference count twice in releasing socket
|
BUG: assuming atomic context at kernel/seccomp.c:LINE
kernel
|
C |
|
|
709 |
2183d |
2184d
|
11/28 |
2147d |
e80d02dd7630
seccomp, bpf: disable preemption before calling into bpf prog
|
KASAN: use-after-free Read in update_blocked_averages
kernel
|
C |
done |
|
3 |
2270d |
2284d
|
11/28 |
2154d |
bc6e019b6ee6
fou: Prevent unbounded recursion in GUE error handler also with UDP-Lite
|
WARNING in update_load_avg
kernel
|
C |
done |
|
1 |
2277d |
2276d
|
11/28 |
2155d |
bc6e019b6ee6
fou: Prevent unbounded recursion in GUE error handler also with UDP-Lite
|
KASAN: slab-out-of-bounds Read in tick_sched_handle
kernel
|
C |
done |
|
7 |
2221d |
2249d
|
11/28 |
2159d |
bc6e019b6ee6
fou: Prevent unbounded recursion in GUE error handler also with UDP-Lite
|
general protection fault in watchdog
kernel
|
C |
|
|
1 |
2252d |
2251d
|
11/28 |
2170d |
e2c8d550a973
netfilter: ebtables: account ebt_table_info to kmemcg
|
KASAN: stack-out-of-bounds Read in select_task_rq_fair
kernel
|
|
|
|
2 |
2220d |
2229d
|
11/28 |
2170d |
44039e00171b
fou6: Prevent unbounded recursion in GUE error handler
|
BUG: unable to handle kernel paging request in do_csum
kernel
|
C |
|
|
11 |
2263d |
2263d
|
11/28 |
2170d |
d5be7f632bad
net-backports: net: validate untrusted gso packets without csum offload
|
kernel panic: stack is corrupted in printk
kernel
|
C |
|
|
1 |
2230d |
2230d
|
11/28 |
2170d |
44039e00171b
fou6: Prevent unbounded recursion in GUE error handler
|
general protection fault in rb_erase_cached
kernel
|
C |
|
|
1 |
2230d |
2230d
|
11/28 |
2170d |
44039e00171b
fou6: Prevent unbounded recursion in GUE error handler
|
kernel panic: stack is corrupted in select_idle_sibling
kernel
|
|
|
|
1 |
2230d |
2230d
|
11/28 |
2170d |
44039e00171b
fou6: Prevent unbounded recursion in GUE error handler
|
KASAN: out-of-bounds Read in __switch_to
kernel
|
C |
|
|
1 |
2230d |
2230d
|
11/28 |
2170d |
44039e00171b
fou6: Prevent unbounded recursion in GUE error handler
|
WARNING: locking bug in corrupted
kernel
|
C |
|
|
1 |
2219d |
2219d
|
11/28 |
2170d |
44039e00171b
fou6: Prevent unbounded recursion in GUE error handler
|
KASAN: use-after-free Read in seccomp_notify_release
kernel
|
C |
|
|
27 |
2175d |
2223d
|
11/28 |
2170d |
a811dc61559e
seccomp: fix UAF in user-trap code
|
KASAN: slab-out-of-bounds Write in fpstate_init
kernel
|
C |
|
|
15088 |
2242d |
2243d
|
11/28 |
2177d |
ed8e48122728
KVM: x86: fix size of x86_fpu_cache objects
|
KASAN: stack-out-of-bounds Read in rb_erase (4)
kernel
|
|
|
|
1 |
2221d |
2221d
|
11/28 |
2186d |
11789039da53
fou: Prevent unbounded recursion in GUE error handler
|
WARNING in static_key_enable_cpuslocked
kernel
|
|
|
|
1 |
2271d |
2271d
|
11/28 |
2224d |
9c48060141bd
udp: fix jump label misuse
|
WARNING in static_key_disable_cpuslocked
kernel
|
syz |
|
|
5 |
2260d |
2279d
|
11/28 |
2224d |
9c48060141bd
udp: fix jump label misuse
|
WARNING in __rcu_read_unlock
kernel
|
C |
|
|
2 |
2243d |
2250d
|
11/28 |
2224d |
11789039da53
fou: Prevent unbounded recursion in GUE error handler
|
divide error in alarm_forward
kernel
|
|
|
|
1 |
2249d |
2249d
|
11/28 |
2224d |
0e334db6bb4b
posix-timers: Fix division by zero bug
|
WARNING in __put_task_struct (2)
kernel
|
C |
|
|
17 |
2310d |
2318d
|
11/28 |
2283d |
fe9bc1644918
RDMA/restrack: Protect from reentry to resource return path
|
BUG: corrupted list in cpu_stop_queue_work
kernel
|
C |
|
|
24 |
2402d |
2411d
|
11/28 |
2283d |
552446a41661
shmem: Convert shmem_add_to_page_cache to XArray
|
KASAN: use-after-free Read in finish_task_switch
kernel
|
C |
|
|
3047 |
2333d |
2377d
|
11/28 |
2311d |
26b471c7e2f7
KVM: nVMX: Fix bad cleanup on error of get/set nested state IOCTLs
|
net-next boot error
kernel
|
|
|
|
66 |
2387d |
2393d
|
8/28 |
2359d |
ca9e83b4a55b
virtio-net: correctly update XDP_TX counters
|
KMSAN: uninit-value in do_msgrcv
kernel
|
C |
|
|
8 |
2359d |
2436d
|
8/28 |
2359d |
39cfffd774a2
ipc/util.c: use ipc_rcu_putref() for failues in ipc_addid()
615c999cd8a0
ipc: compute kern_ipc_perm.id under the ipc lock
e2652ae6bd74
ipc: reorganize initialization of kern_ipc_perm.seq
|
general protection fault in __delayacct_blkio_end
kernel
|
C |
|
|
50 |
2395d |
2490d
|
8/28 |
2379d |
b512719f771a
delayacct: fix crash in delayacct_blkio_end() after delayacct init failure
|
KASAN: stack-out-of-bounds Read in __handle_mm_fault (2)
kernel
|
C |
|
|
3 |
2398d |
2400d
|
8/28 |
2380d |
99ba2b5aba24
bpf: sockhash, disallow bpf_tcp_close and update in parallel
|
KASAN: stack-out-of-bounds Read in rb_next (2)
kernel
|
|
|
|
1 |
2400d |
2400d
|
8/28 |
2380d |
99ba2b5aba24
bpf: sockhash, disallow bpf_tcp_close and update in parallel
|
general protection fault in scheduler_tick
kernel
|
C |
|
|
1 |
2410d |
2410d
|
8/28 |
2380d |
99ba2b5aba24
bpf: sockhash, disallow bpf_tcp_close and update in parallel
|
KASAN: stack-out-of-bounds Read in copy_page_range
kernel
|
|
|
|
1 |
2400d |
2400d
|
8/28 |
2380d |
99ba2b5aba24
bpf: sockhash, disallow bpf_tcp_close and update in parallel
|
general protection fault in cpuacct_account_field (2)
kernel
|
|
|
|
1 |
2398d |
2397d
|
8/28 |
2380d |
99ba2b5aba24
bpf: sockhash, disallow bpf_tcp_close and update in parallel
|
BUG: unable to handle kernel NULL pointer dereference in corrupted (2)
kernel
|
C |
|
|
1 |
2401d |
2401d
|
8/28 |
2380d |
99ba2b5aba24
bpf: sockhash, disallow bpf_tcp_close and update in parallel
|
KASAN: slab-out-of-bounds Read in corrupted
kernel
|
C |
|
|
1 |
2401d |
2401d
|
8/28 |
2380d |
99ba2b5aba24
bpf: sockhash, disallow bpf_tcp_close and update in parallel
|
general protection fault in cpuacct_charge
kernel
|
|
|
|
1 |
2395d |
2395d
|
8/28 |
2380d |
99ba2b5aba24
bpf: sockhash, disallow bpf_tcp_close and update in parallel
|
KASAN: stack-out-of-bounds Read in __enqueue_entity
kernel
|
|
|
|
1 |
2404d |
2404d
|
8/28 |
2380d |
99ba2b5aba24
bpf: sockhash, disallow bpf_tcp_close and update in parallel
|
KASAN: stack-out-of-bounds Read in account_system_index_time
kernel
|
C |
|
|
2 |
2403d |
2410d
|
8/28 |
2380d |
99ba2b5aba24
bpf: sockhash, disallow bpf_tcp_close and update in parallel
|
KASAN: stack-out-of-bounds Read in __task_pid_nr_ns
kernel
|
|
|
|
1 |
2409d |
2409d
|
8/28 |
2380d |
99ba2b5aba24
bpf: sockhash, disallow bpf_tcp_close and update in parallel
|
KASAN: stack-out-of-bounds Read in __delayacct_add_tsk
kernel
|
|
|
|
1 |
2407d |
2407d
|
8/28 |
2380d |
99ba2b5aba24
bpf: sockhash, disallow bpf_tcp_close and update in parallel
|
KASAN: stack-out-of-bounds Read in add_wait_queue
kernel
|
C |
|
|
1 |
2410d |
2410d
|
8/28 |
2380d |
99ba2b5aba24
bpf: sockhash, disallow bpf_tcp_close and update in parallel
|
BUG: unable to handle kernel paging request in cpuacct_charge
kernel
|
syz |
|
|
2 |
2402d |
2402d
|
8/28 |
2380d |
99ba2b5aba24
bpf: sockhash, disallow bpf_tcp_close and update in parallel
|
KASAN: stack-out-of-bounds Read in __acct_update_integrals
kernel
|
|
|
|
2 |
2398d |
2406d
|
8/28 |
2380d |
99ba2b5aba24
bpf: sockhash, disallow bpf_tcp_close and update in parallel
|
general protection fault in rb_next
kernel
|
|
|
|
1 |
2401d |
2401d
|
8/28 |
2380d |
99ba2b5aba24
bpf: sockhash, disallow bpf_tcp_close and update in parallel
|
KASAN: stack-out-of-bounds Read in timerqueue_add
kernel
|
C |
|
|
4 |
2398d |
2414d
|
8/28 |
2380d |
99ba2b5aba24
bpf: sockhash, disallow bpf_tcp_close and update in parallel
|
KASAN: stack-out-of-bounds Read in rb_insert_color (2)
kernel
|
|
|
|
1 |
2404d |
2404d
|
8/28 |
2380d |
99ba2b5aba24
bpf: sockhash, disallow bpf_tcp_close and update in parallel
|
KASAN: stack-out-of-bounds Read in enqueue_task_fair
kernel
|
|
|
|
1 |
2401d |
2401d
|
8/28 |
2380d |
99ba2b5aba24
bpf: sockhash, disallow bpf_tcp_close and update in parallel
|
BUG: unable to handle kernel paging request in account_system_index_time
kernel
|
|
|
|
1 |
2398d |
2397d
|
8/28 |
2380d |
99ba2b5aba24
bpf: sockhash, disallow bpf_tcp_close and update in parallel
|
KASAN: stack-out-of-bounds Read in rcu_process_callbacks
kernel
|
C |
|
|
1 |
2404d |
2404d
|
8/28 |
2380d |
99ba2b5aba24
bpf: sockhash, disallow bpf_tcp_close and update in parallel
|
BUG: unable to handle kernel paging request in ttwu_do_activate
kernel
|
|
|
|
1 |
2414d |
2414d
|
8/28 |
2380d |
99ba2b5aba24
bpf: sockhash, disallow bpf_tcp_close and update in parallel
|
INFO: rcu detected stall in unwind_next_frame
kernel
|
|
|
|
2 |
2459d |
2462d
|
8/28 |
2409d |
1d88ba1ebb27
sctp: not allow transport timeout value less than HZ/5 for hb_timer
|
bpf-next boot error: KASAN: use-after-free Write in call_usermodehelper_exec_work
kernel
|
|
|
|
3 |
2442d |
2444d
|
8/28 |
2409d |
bf956be520fb
umh: fix race condition
|
unexpected kernel reboot (2)
kernel
|
C |
|
|
2073 |
2409d |
2500d
|
8/28 |
2409d |
0447378a4a79
kvm: vmx: Nested VM-entry prereqs for event inj.
|
WARNING: kernel stack regs at (ptrval) in syzkaller has bad 'bp' value (ptrval)
kernel
|
C |
|
|
3 |
2486d |
2487d
|
8/28 |
2409d |
f044a84e040b
crypto: don't optimize keccakf()
|
net-next boot error: KASAN: use-after-free Write in call_usermodehelper_exec_work
kernel
|
|
|
|
8 |
2441d |
2453d
|
8/28 |
2409d |
bf956be520fb
umh: fix race condition
|
INFO: rcu detected stall in __save_stack_trace
kernel
|
|
|
|
3 |
2410d |
2543d
|
8/28 |
2409d |
1d88ba1ebb27
sctp: not allow transport timeout value less than HZ/5 for hb_timer
|
upstream boot error: KASAN: use-after-free Write in call_usermodehelper_exec_work
kernel
|
|
|
|
5 |
2438d |
2440d
|
8/28 |
2409d |
bf956be520fb
umh: fix race condition
|
WARNING in arch_uprobe_analyze_insn
kernel
|
C |
|
|
2 |
2466d |
2465d
|
8/28 |
2409d |
90718e32e1dc
uprobes/x86: Remove incorrect WARN_ON() in uprobe_init_insn()
|
WARNING in dev_vprintk_emit
kernel
|
C |
|
|
77 |
2455d |
2582d
|
5/28 |
2441d |
814596495dd2
cfg80211: further limit wiphy names to 64 bytes
|
kernel BUG at include/linux/mm.h:LINE!
kernel
|
syz |
|
|
68 |
2442d |
2479d
|
5/28 |
2441d |
a466ef76b815
x86/kexec: Avoid double free_page() upon do_kexec_load() failure
|
INFO: task hung in do_set_master
kernel
|
|
|
|
1 |
2503d |
2503d
|
5/28 |
2463d |
8236b0ae31c8
bdi: wake up concurrent wb_shutdown() callers.
|
INFO: task hung in get_timespec64
kernel
|
|
|
|
1 |
2498d |
2498d
|
5/28 |
2463d |
8236b0ae31c8
bdi: wake up concurrent wb_shutdown() callers.
|
kernel BUG at kernel/softirq.c:LINE!
kernel
|
|
|
|
1 |
2477d |
2477d
|
5/28 |
2464d |
a8d7aa17bbc9
dccp: fix tasklet usage
|
general protection fault in account_system_index_time
kernel
|
C |
|
|
2 |
2513d |
2513d
|
5/28 |
2466d |
ae4745730cf8
net: Fix untag for vlan packets without ethernet header
|
WARNING in __might_sleep
kernel
|
|
|
|
6 |
2484d |
2487d
|
5/28 |
2471d |
6c1e851c4edc
random: fix possible sleeping allocation from irq context
|
WARNING: kobject bug in device_add
kernel
|
C |
|
|
563 |
2472d |
2511d
|
5/28 |
2471d |
3e14c6abbfb5
kobject: don't use WARN for registration failures
|
WARNING: refcount bug in free_nsproxy
kernel
|
|
|
|
4 |
2511d |
2535d
|
5/28 |
2471d |
8e04944f0ea8
mm,vmscan: Allow preallocating memory for register_shrinker().
|
WARNING: inconsistent lock state
kernel
|
C |
|
|
22 |
2483d |
2487d
|
5/28 |
2471d |
6c1e851c4edc
random: fix possible sleeping allocation from irq context
|
KASAN: use-after-free Read in binder_release_work
kernel
|
C |
|
|
6 |
2485d |
2506d
|
5/28 |
2471d |
7aa135fcf263
ANDROID: binder: prevent transactions into own process.
|
KASAN: use-after-free Read in shm_get_unmapped_area
kernel
|
|
|
|
19 |
2567d |
2658d
|
5/28 |
2471d |
3f05317d9889
ipc/shm: fix use-after-free of shm file via remap_file_pages()
|
inconsistent lock state in fs_reclaim_acquire
kernel
|
C |
|
|
36235 |
2472d |
2482d
|
5/28 |
2471d |
6c1e851c4edc
random: fix possible sleeping allocation from irq context
|
WARNING in __debug_object_init
kernel
|
C |
|
|
192 |
2505d |
2515d
|
5/28 |
2471d |
bd03143007eb
alarmtimer: Init nanosleep alarm timer on stack
|
KASAN: use-after-free Read in alloc_pid
kernel
|
C |
|
|
7 |
2499d |
2509d
|
5/28 |
2471d |
8e04944f0ea8
mm,vmscan: Allow preallocating memory for register_shrinker().
|
WARNING in binder_send_failed_reply
kernel
|
C |
|
|
206 |
2546d |
2629d
|
5/28 |
2501d |
e46a3b3ba750
ANDROID: binder: remove WARN() for redundant txn error
|
general protection fault in timerqueue_add
kernel
|
C |
|
|
2 |
2513d |
2513d
|
5/28 |
2503d |
c769accdf3d8
vlan: Fix vlan insertion for packets without ethernet header
|
general protection fault in try_to_wake_up
kernel
|
syz |
|
|
1 |
2515d |
2511d
|
5/28 |
2503d |
c769accdf3d8
vlan: Fix vlan insertion for packets without ethernet header
|
general protection fault in hrtimer_active (2)
kernel
|
C |
|
|
10612 |
2537d |
2541d
|
4/28 |
2534d |
b7e31be38558
KVM: x86: fix vcpu initialization with userspace lapic
|
general protection fault in binder_poll
kernel
|
C |
|
|
159 |
2546d |
2629d
|
4/28 |
2542d |
f88982679f54
binder: check for binder_thread allocation failure in binder_poll()
|
KASAN: slab-out-of-bounds Read in string
kernel
|
C |
|
|
129 |
2565d |
2575d
|
4/28 |
2554d |
da17c73b6eb7
netfilter: x_tables: avoid out-of-bounds reads in xt_request_find_{match|target}
|
WARNING in do_debug
kernel
|
C |
|
|
905 |
2561d |
2661d
|
4/28 |
2556d |
efdab992813f
KVM: x86: fix escape of guest dr6 to the host
|
kernel BUG at drivers/android/binder_alloc.c:LINE!
kernel
|
C |
|
|
856 |
2625d |
2629d
|
4/28 |
2568d |
fb2c445277e7
ANDROID: binder: fix transaction leak.
|
WARNING in fpu__copy
kernel
|
|
|
|
8 |
2610d |
2611d
|
4/28 |
2569d |
5663d8f9bbe4
kvm: x86: fix WARN due to uninitialized guest FPU state
|
general protection fault in lockdep_invariant_state (2)
kernel
|
C |
|
|
114 |
2624d |
2653d
|
4/28 |
2572d |
5e351ad10699
locking/lockdep: Fix possible NULL deref
|
BUG: unable to handle kernel paging request in ipcget
kernel
|
|
|
|
2 |
2611d |
2608d
|
3/28 |
2589d |
d76c68109f37
crypto: pcrypt - fix freeing pcrypt instances
|
BUG: unable to handle kernel paging request in __switch_to
kernel
|
|
|
|
1 |
2631d |
2627d
|
3/28 |
2597d |
7fb983b4dd56
x86/entry: Fix assumptions that the HW TSS is at the beginning of cpu_tss
|
BUG: unable to handle kernel paging request in copy_siginfo_to_user
kernel
|
|
|
|
1 |
2625d |
2620d
|
3/28 |
2597d |
7fb983b4dd56
x86/entry: Fix assumptions that the HW TSS is at the beginning of cpu_tss
|
BUG: unable to handle kernel paging request in __put_user_8
kernel
|
|
|
|
1 |
2628d |
2622d
|
3/28 |
2597d |
7fb983b4dd56
x86/entry: Fix assumptions that the HW TSS is at the beginning of cpu_tss
|
BUG: unable to handle kernel paging request in __schedule
kernel
|
|
|
|
2 |
2627d |
2622d
|
3/28 |
2597d |
7fb983b4dd56
x86/entry: Fix assumptions that the HW TSS is at the beginning of cpu_tss
|
general protection fault in hrtimer_active
kernel
|
C |
|
|
669 |
2650d |
2674d
|
3/28 |
2633d |
aec72f3392b1
net-tun: fix panics at dismantle time
|
WARNING in free_kthread_struct
kernel
|
C |
|
|
136405 |
2650d |
2653d
|
3/28 |
2633d |
e10237cc76ef
kthread: zero the kthread data structure
|
WARNING in get_pi_state
kernel
|
C |
|
|
42 |
2659d |
2661d
|
3/28 |
2650d |
153fbd1226fb
futex: Fix more put_pi_state() vs. exit_pi_state_list() races
|
KASAN: use-after-free Read in do_raw_spin_unlock
kernel
|
syz |
|
|
3 |
2659d |
2661d
|
3/28 |
2650d |
153fbd1226fb
futex: Fix more put_pi_state() vs. exit_pi_state_list() races
|
KASAN: use-after-free Read in __lock_acquire
kernel
|
syz |
|
|
894 |
2650d |
2659d
|
3/28 |
2650d |
153fbd1226fb
futex: Fix more put_pi_state() vs. exit_pi_state_list() races
|
WARNING in __switch_to
kernel
|
C |
|
|
535 |
2695d |
2741d
|
3/28 |
2668d |
814fb7bb7db5
x86/fpu: Don't let userspace set bogus xcomp_bv
|