|
WARNING in task_participate_group_stop (2)
prio:low
kernel
|
-1 |
C |
inconclusive |
unreliable |
25 |
43d |
2981d
|
28/29 |
never |
90918794a4e2
signal: clear JOBCTL_PENDING_MASK for caller in zap_other_threads()
|
|
general protection fault in follow_pfnmap_start
kernel
|
2 |
C |
|
|
38 |
620d |
635d
|
1/29 |
never |
mm: fix null pointer dereference in pfnmap_lockdep_assert
|
|
WARNING in follow_pte
kernel
|
-1 |
C |
|
|
230 |
645d |
724d
|
1/29 |
never |
mm: fix mmap_assert_locked() in follow_pte()
|
|
general protection fault in remove_waiter
prio:high
kernel
|
2 |
syz |
|
|
6 |
49d |
60d
|
28/29 |
never |
40a25d59e85b
locking/rtmutex: Skip remove_waiter() when waiter is not enqueued
|
|
WARNING in do_notify_parent
prio:low
kernel
|
-1 |
C |
error |
|
195082 |
6d04h |
119d
|
28/29 |
never |
09e7827e7857
kernel/fork: validate exit_signal in kernel_clone()
|
|
INFO: task hung in bch2_copygc_stop
prio:high
kernel
|
1 |
C |
done |
|
31386 |
259d |
758d
|
2/29 |
never |
bcachefs: Increase BCH_MIN_NR_NBUCKETS
|
|
WARNING in get_from_partial_node
prio:low
kernel
|
-1 |
C |
|
|
133 |
38d |
74d
|
28/29 |
never |
5f41161059fd
debugobjects: Do not fill_pool() if pi_blocked_on
|
|
INFO: task hung in restrict_one_thread_callback
lsm
kernel
|
1 |
C |
|
|
39 |
97d |
128d
|
29/29 |
38d |
ff88df67dbf7
landlock: Serialize TSYNC thread restriction
|
|
WARNING in _cpu_down
kernel
prio:low
|
-1 |
C |
|
|
37 |
98d |
110d
|
29/29 |
38d |
c8c4a2972f83
padata: Put CPU offline callback in ONLINE section to allow failure
|
|
WARNING in __mmdrop (2)
kernel
|
-1 |
C |
|
|
7 |
135d |
138d
|
29/29 |
52d |
61dc9f776705
procfs: fix possible double mmput() in do_procmap_query()
|
|
memory leak in do_timer_create
kernel
|
3 |
C |
|
|
1 |
228d |
227d
|
29/29 |
171d |
e0fd4d42e27f
posix-timers: Plug potential memory leak in do_timer_create()
|
|
WARNING in driver_unregister (2)
kernel
|
-1 |
C |
error |
|
3214 |
202d |
358d
|
29/29 |
171d |
72262330f7b3
comedi: c6xdigio: Fix invalid PNP driver unregistration
|
|
KASAN: vmalloc-out-of-bounds Read in run_irq_workd
kernel
|
17 |
C |
error |
|
225 |
239d |
301d
|
29/29 |
171d |
4e9077638301
bpf: Sync pending IRQ work before freeing ring buffer
|
|
KASAN: slab-out-of-bounds Read in __cpa_addr
kernel
|
17 |
C |
done |
|
601 |
251d |
265d
|
29/29 |
222d |
f25785f9b088
x86/mm: Fix overflow in __cpa_addr()
|
|
general protection fault in try_to_wake_up (3)
kernel
|
2 |
syz |
|
|
23 |
279d |
298d
|
29/29 |
241d |
b549113738e8
futex: Prevent use-after-free during requeue-PI
|
|
KMSAN: kernel-infoleak in vmci_host_unlocked_ioctl (3)
kernel
|
9 |
C |
|
|
20 |
345d |
373d
|
29/29 |
291d |
8282013b5605
vmci: Prevent the dispatching of uninitialized payloads
vmci: Prevent the dispatching of uninitialized payloads
|
|
KASAN: wild-memory-access Read in get_futex_key
kernel
|
17 |
C |
|
|
34 |
370d |
396d
|
29/29 |
325d |
8337204c5889
futex: Handle invalid node numbers supplied by user
|
|
INFO: task hung in __bch2_fsck_err
kernel
|
1 |
syz |
|
|
2 |
464d |
460d
|
29/29 |
325d |
0acb385ec19c
bcachefs: Fix possible console lock involved deadlock
|
|
possible deadlock in console_flush_all (3)
kernel
|
4 |
C |
error |
|
52145 |
325d |
714d
|
29/29 |
325d |
0acb385ec19c
bcachefs: Fix possible console lock involved deadlock
|
|
INFO: task hung in uevent_show (2)
kernel
|
1 |
C |
inconclusive |
|
8325 |
357d |
595d
|
29/29 |
345d |
dc1771f71854
Revert "drivers: core: synchronize really_probe() and dev_uevent()"
|
|
WARNING in get_pat_info
kernel
|
-1 |
C |
done |
done |
36 |
393d |
658d
|
29/29 |
354d |
f8e97613fed2
mm: convert VM_PFNMAP tracking to pfnmap_track() + pfnmap_untrack()
|
|
KASAN: slab-use-after-free Write in binder_remove_device
kernel
|
22 |
C |
done |
|
7 |
398d |
400d
|
29/29 |
355d |
9857af0fcff3
binder: fix yet another UAF in binder_devices
|
|
KCSAN: data-race in process_one_work / process_one_work
kernel
|
6 |
syz |
|
|
231 |
1030d |
933d
|
29/29 |
355d |
70e1683ca3a6
workqueue: Fix race condition in wq->stats incrementation
|
|
general protection fault in native_tss_update_io_bitmap
kernel
|
2 |
C |
error |
|
7 |
403d |
487d
|
29/29 |
355d |
8b68e978718f
x86/iopl: Cure TIF_IO_BITMAP inconsistencies
|
|
possible deadlock in get_partial_node (2)
kernel
|
4 |
C |
done |
done |
4 |
474d |
496d
|
28/29 |
382d |
3a04334d6282
bcachefs: Fix b->written overflow
|
|
KASAN: slab-use-after-free Read in binder_release_work
kernel
|
19 |
C |
done |
done |
2151 |
563d |
633d
|
28/29 |
417d |
7e20434cbca8
binder: fix freeze UAF in binder_release_work()
|
|
WARNING in bitmap_parselist_user
kernel
|
-1 |
C |
|
|
35 |
538d |
557d
|
28/29 |
417d |
dd2a5b5514ab
mm/util: make memdup_user_nul() similar to memdup_user()
|
|
WARNING: locking bug in get_random_u8
kernel
|
4 |
syz |
|
|
70 |
517d |
588d
|
28/29 |
417d |
d40797d6720e
kasan: make kasan_record_aux_stack_noalloc() the default behaviour
|
|
WARNING in posixtimer_send_sigqueue (2)
kernel
|
-1 |
C |
done |
|
557 |
510d |
557d
|
28/29 |
417d |
8c4840277b6d
signal/posixtimers: Handle ignore/blocked sequences correctly
|
|
WARNING in posixtimer_send_sigqueue
kernel
|
-1 |
C |
error |
|
196 |
559d |
591d
|
28/29 |
559d |
cdc905d16b07
posix-timers: Fix spurious warning on double enqueue versus do_exit()
|
|
WARNING: locking bug in try_to_wake_up
kernel
|
19 |
C |
error |
|
157 |
593d |
773d
|
28/29 |
592d |
41fd1e94066a
btrfs: wait for fixup workers before stopping cleaner kthread during umount
|
|
KASAN: stack-out-of-bounds Read in profile_pc
kernel
|
17 |
C |
error |
done |
9302 |
729d |
1854d
|
28/29 |
605d |
093d9603b600
x86: stop playing stack games in profile_pc()
|
|
kernel BUG in binder_inc_ref_for_node
kernel
|
-1 |
C |
error |
|
16721 |
685d |
715d
|
28/29 |
632d |
11512c197d38
binder: fix descriptor lookup for context manager
|
|
KMSAN: uninit-value in profile_hits (3)
kernel
|
19 |
C |
|
|
1529 |
700d |
914d
|
27/29 |
674d |
7c51f7bbf057
profiling: remove prof_cpu_mask
|
|
possible deadlock in __hrtimer_run_queues (2)
kernel
|
4 |
C |
error |
done |
16 |
793d |
825d
|
26/29 |
737d |
98e948fb60d4
bpf: Allow delete from sockmap/sockhash only if update is allowed
|
|
WARNING: suspicious RCU usage in __do_softirq
kernel
|
4 |
C |
|
|
199 |
790d |
816d
|
25/29 |
766d |
1dd1eff161bd
softirq: Fix suspicious RCU usage in __do_softirq()
|
|
general protection fault in timerqueue_del (2)
kernel
|
2 |
C |
done |
done |
3 |
920d |
1062d
|
25/29 |
878d |
6f861765464f
fs: Block writes to mounted block devices
|
|
general protection fault in __hrtimer_run_queues (3)
kernel
|
17 |
C |
error |
done |
2 |
930d |
1095d
|
25/29 |
879d |
6f861765464f
fs: Block writes to mounted block devices
|
|
possible deadlock in __run_timers
kernel
|
4 |
C |
error |
done |
1 |
927d |
923d
|
25/29 |
879d |
6f861765464f
fs: Block writes to mounted block devices
|
|
general protection fault in usb_hub_create_port_device
kernel
|
2 |
C |
done |
done |
4 |
1020d |
1026d
|
25/29 |
920d |
fd6f7ad2fd4d
driver core: return an error when dev_set_name() hasn't happened
|
|
general protection fault in serio_handle_event
kernel
|
2 |
C |
done |
done |
6 |
1015d |
1024d
|
25/29 |
920d |
fd6f7ad2fd4d
driver core: return an error when dev_set_name() hasn't happened
|
|
general protection fault in nfc_register_device
kernel
|
11 |
C |
done |
|
190 |
921d |
1035d
|
25/29 |
920d |
fd6f7ad2fd4d
driver core: return an error when dev_set_name() hasn't happened
|
|
general protection fault in wpan_phy_register
kernel
|
2 |
C |
done |
done |
7 |
1012d |
1019d
|
25/29 |
920d |
fd6f7ad2fd4d
driver core: return an error when dev_set_name() hasn't happened
|
|
general protection fault in hci_register_dev
kernel
|
2 |
C |
unreliable |
done |
4 |
1017d |
1024d
|
25/29 |
920d |
fd6f7ad2fd4d
driver core: return an error when dev_set_name() hasn't happened
|
|
KASAN: slab-use-after-free Read in pwq_release_workfn
kernel
|
19 |
C |
unreliable |
|
79 |
982d |
1032d
|
25/29 |
920d |
643445531829
workqueue: Fix UAF report by KASAN in pwq_release_workfn()
|
|
memory leak in binder_transaction (2)
kernel
|
3 |
C |
|
|
2 |
1020d |
1315d
|
25/29 |
920d |
1aa3aaf8953c
binder: fix memory leaks of spam and pending work
|
|
BUG: MAX_LOCKDEP_CHAIN_HLOCKS too low! (2)
kernel
|
-1 |
C |
|
|
2688 |
990d |
1947d
|
23/29 |
989d |
39285e124edb
net: team: do not use dynamic lockdep key
|
|
kernel BUG in workingset_activation (2)
kernel
|
-1 |
C |
inconclusive |
done |
40 |
1128d |
1320d
|
22/29 |
1092d |
0143d148d1e8
usb: usbfs: Enforce page requirements for mmap
|
|
memory leak in copy_process (5)
kernel
|
3 |
C |
|
|
1 |
1212d |
1208d
|
22/29 |
1115d |
2aab4b969002
af_unix: fix struct pid leaks in OOB support
|
|
general protection fault in hrtimer_active (5)
kernel
|
2 |
C |
error |
|
22 |
1230d |
1234d
|
22/29 |
1115d |
4fab64126891
net/sched: fix error recovery in qdisc_create()
|
|
KMSAN: uninit-value in qdisc_run
kernel
|
7 |
C |
|
|
2 |
1327d |
1264d
|
22/29 |
1115d |
3a415d59c1db
net/sched: sch_taprio: fix possible use-after-free
|
|
kernel BUG in __text_poke
kernel
|
-1 |
C |
|
|
80 |
1419d |
1595d
|
22/29 |
1219d |
1d5f82d9dd47
bpf, x86: fix freeing of not-finalized bpf_prog_pack
d24d2a2b0a81
bpf: bpf_prog_pack: Set proper size before freeing ro_header
|
|
inconsistent lock state in fs_reclaim_acquire (3)
kernel
|
4 |
C |
|
|
2 |
1334d |
1340d
|
22/29 |
1219d |
2d1f274b95c6
skmsg: pass gfp argument to alloc_sk_msg()
|
|
WARNING in exit_tasks_rcu_finish
kernel
|
-1 |
C |
done |
|
20 |
1474d |
1476d
|
22/29 |
1219d |
0356d4e66214
rcu-tasks: Track blocked RCU Tasks Trace readers
|
|
KASAN: use-after-free Read in dev_uevent
kernel
|
19 |
syz |
|
|
54 |
1227d |
2200d
|
22/29 |
1219d |
16b1941eac2b
usb: gadget: Fix use-after-free bug by not setting udc->dev.driver
|
|
memory leak in watch_queue_set_size
kernel
|
3 |
C |
|
|
1 |
1562d |
1554d
|
22/29 |
1219d |
b490207017ba
watch_queue: Free the page array when watch_queue is dismantled
|
|
BUG: unable to handle kernel paging request in get_desc
kernel
|
8 |
syz |
error |
|
8 |
1320d |
1331d
|
22/29 |
1219d |
97650148a15e
x86/mm: Populate KASAN shadow for entire per-CPU range of CPU entry area
|
|
KASAN: use-after-free Read in notifier_call_chain
kernel
|
19 |
C |
error |
|
157 |
1312d |
1318d
|
22/29 |
1219d |
5daadc86f27e
net: tun: Fix use-after-free in tun_detach()
|
|
KMSAN: kernel-infoleak in vmci_host_unlocked_ioctl (2)
kernel
|
9 |
C |
|
|
2 |
1369d |
1368d
|
22/29 |
1219d |
e5b0d06d9b10
misc/vmw_vmci: fix an infoleak in vmci_host_do_receive_datagram()
|
|
WARNING in binder_alloc_vma_close
kernel
|
-1 |
C |
done |
|
18 |
1372d |
1462d
|
22/29 |
1219d |
b0cab80ecd54
android: binder: fix lockdep check on clearing vma
|
|
KASAN: slab-out-of-bounds Write in watch_queue_set_filter
kernel
|
21 |
C |
inconclusive |
|
7 |
1560d |
1563d
|
22/29 |
1219d |
c993ee0f9f81
watch_queue: Fix filter limit check
|
|
BUG: sleeping function called from invalid context in binder_ioctl
kernel
|
5 |
C |
done |
|
30 |
1497d |
1503d
|
22/29 |
1219d |
aed86f8add0e
binder: fix atomic sleep when get extended error
|
|
general protection fault in reweight_entity
kernel
|
2 |
C |
error |
done |
10 |
1595d |
1649d
|
22/29 |
1219d |
13765de8148f
sched/fair: Fix fault in reweight_entity
|
|
kernel BUG in __page_mapcount
kernel
|
-1 |
C |
error |
|
45 |
1619d |
1854d
|
22/29 |
1219d |
24d7275ce279
fs/proc: task_mmu.c: don't read mapcount for migration entry
|
|
kernel BUG in binder_alloc_deferred_release
kernel
|
-1 |
C |
done |
|
4 |
1467d |
1469d
|
22/29 |
1219d |
a43cfc87caaf
android: binder: stop saving a pointer to the VMA
|
|
general protection fault in shm_close
kernel
|
2 |
C |
done |
|
48 |
1320d |
1322d
|
22/29 |
1219d |
b6305049f306
ipc/shm: call underlying open/close vm_ops
|
|
general protection fault in binder_alloc_new_buf
kernel
|
12 |
C |
error |
|
315 |
1376d |
1407d
|
22/29 |
1219d |
1da52815d5f1
binder: fix alloc->vma_vm_mm null-ptr dereference
|
|
KASAN: use-after-free Read in __post_watch_notification
kernel
|
19 |
C |
inconclusive |
|
1 |
1433d |
1431d
|
22/29 |
1219d |
e64ab2dbd882
watch_queue: Fix missing locking in add_watch_to_object()
|
|
KASAN: use-after-free Read in task_work_run (2)
kernel
|
19 |
C |
unreliable |
|
18 |
1298d |
1391d
|
22/29 |
1219d |
517e6a301f34
perf: Fix perf_pending_task() UaF
|
|
memory leak in do_seccomp (2)
kernel
|
3 |
C |
|
|
4 |
1403d |
1952d
|
22/29 |
1219d |
a1140cb215fa
seccomp: Move copy_seccomp() to no failure path.
|
|
general protection fault in binder_alloc_print_pages
kernel
|
12 |
C |
error |
|
157 |
1376d |
1407d
|
22/29 |
1219d |
1da52815d5f1
binder: fix alloc->vma_vm_mm null-ptr dereference
|
|
KASAN: null-ptr-deref Read in __free_pages
kernel
|
11 |
C |
inconclusive |
|
21 |
1299d |
1560d
|
22/29 |
1219d |
a635415a064e
watch_queue: Fix NULL dereference in error cleanup
|
|
KASAN: use-after-free Read in net_tx_action
kernel
|
19 |
C |
inconclusive |
|
3 |
1355d |
1399d
|
22/29 |
1219d |
ebda44da44f6
net: sched: fix race condition in qdisc_graft()
|
|
KASAN: use-after-free Read in post_one_notification
kernel
|
19 |
C |
inconclusive |
|
19 |
1360d |
1559d
|
22/29 |
1219d |
353f7988dd84
watchqueue: make sure to serialize 'wqueue->defunct' properly
|
|
memory leak in setup_mq_sysctls
kernel
|
3 |
C |
|
|
2 |
1297d |
1469d
|
22/29 |
1219d |
db7cfc380900
ipc: Free mq_sysctls if ipc namespace creation failed
|
|
WARNING in __queue_work (3)
kernel
|
-1 |
syz |
error |
|
953 |
1320d |
2154d
|
22/29 |
1219d |
877afadad2dc
Bluetooth: When HCI work queue is drained, only queue chained work
|
|
WARNING in static_key_slow_try_dec (3)
kernel
|
-1 |
C |
|
|
26 |
1231d |
1391d
|
22/29 |
1219d |
921ebde3c0d2
netfilter: nf_tables: fix nft_counters_enabled underflow at nf_tables_addchain()
|
|
WARNING in static_key_slow_try_dec (2)
kernel
|
-1 |
C |
unreliable |
|
5417 |
1711d |
1779d
|
20/29 |
1572d |
f7d8a19f9a05
Revert "KVM: x86: Open code necessary bits of kvm_lapic_set_base() at vCPU RESET"
|
|
WARNING in emulate_vsyscall
kernel
|
-1 |
C |
done |
done |
3890 |
1736d |
1916d
|
20/29 |
1572d |
d4ffd5df9d18
x86/fault: Fix wrong signal when vsyscall fails with pkey
|
|
WARNING in hrtimer_forward
kernel
|
-1 |
C |
done |
done |
217 |
1617d |
2102d
|
20/29 |
1572d |
313bbd1990b6
mac80211-hwsim: fix late beacon hrtimer handling
|
|
INFO: rcu detected stall in br_multicast_query_expired
kernel
|
1 |
C |
inconclusive |
|
2 |
1650d |
1650d
|
20/29 |
1572d |
f83a112bd91a
net: bridge: mcast: add and enforce startup query interval minimum
|
|
WARNING in trc_read_check_handler
kernel
|
-1 |
C |
unreliable |
done |
40 |
1699d |
1788d
|
20/29 |
1572d |
96017bf90397
rcu-tasks: Simplify trc_read_check_handler() atomic operations
|
|
general protection fault in hrtimer_active (3)
kernel
|
2 |
syz |
done |
error |
34 |
1607d |
1912d
|
20/29 |
1572d |
e28587cc491e
sit: do not call ipip6_dev_free() from sit_init_net()
|
|
KASAN: use-after-free Write in dec_rlimit_ucounts
kernel
|
22 |
C |
|
|
4 |
1773d |
1807d
|
20/29 |
1690d |
345daff2e994
ucounts: Fix race condition between alloc_ucounts and put_ucounts
bbb6d0f3e1fe
ucounts: Increase ucounts reference counter before the security hook
|
|
memory leak in kobject_set_name_vargs (4)
kernel
|
3 |
C |
|
|
171 |
1758d |
2045d
|
20/29 |
1691d |
8fd0c1b0647a
nilfs2: fix memory leak in nilfs_sysfs_delete_device_group
|
|
WARNING in ex_handler_fprestore
kernel
|
-1 |
C |
done |
|
5 |
1853d |
1861d
|
20/29 |
1691d |
484cea4f362e
x86/fpu: Prevent state corruption in __fpu__restore_sig()
|
|
BUG: using smp_processor_id() in preemptible code in clock_was_set
kernel
|
4 |
C |
done |
|
231 |
1780d |
1781d
|
20/29 |
1691d |
9482fd71dbb8
hrtimer: Use raw_cpu_ptr() in clock_was_set()
|
|
BUG: unable to handle kernel paging request in csum_partial (3)
kernel
|
8 |
C |
done |
|
1 |
1778d |
1809d
|
20/29 |
1691d |
9cf448c200ba
ip6_gre: add validation for csum_start
1d011c4803c7
ip_gre: add validation for csum_start
|
|
KASAN: use-after-free Write in get_ucounts
kernel
|
22 |
syz |
unreliable |
done |
7 |
1788d |
1816d
|
20/29 |
1691d |
345daff2e994
ucounts: Fix race condition between alloc_ucounts and put_ucounts
|
|
memory leak in __send_signal
kernel
|
3 |
syz |
|
|
3 |
1833d |
1847d
|
20/29 |
1691d |
399f8dd9a866
signal: Prevent sigqueue caching after task got released
|
|
BUG: scheduling while atomic: syz-executor/ADDR
kernel
|
-1 |
C |
done |
|
5 |
1766d |
1823d
|
20/29 |
1691d |
72ff2bf04db2
crypto: aesni - xts_crypt() return if walk.nbytes is 0
|
|
memory leak in copy_process (2)
kernel
|
3 |
C |
|
|
2 |
1932d |
1931d
|
20/29 |
1691d |
f60a85cad677
bpf: Fix umd memory leak in copy_process()
|
|
UBSAN: shift-out-of-bounds in profile_init
kernel
|
-1 |
C |
unreliable |
|
23 |
1759d |
1809d
|
20/29 |
1691d |
2d186afd04d6
profiling: fix shift-out-of-bounds bugs
|
|
UBSAN: shift-out-of-bounds in load_balance
kernel
|
-1 |
syz |
|
|
2167 |
1876d |
1981d
|
20/29 |
1691d |
39a2a6eb5c9b
sched/fair: Fix shift-out-of-bounds in load_balance()
|
|
KASAN: use-after-free Read in firmware_fallback_sysfs
kernel
|
19 |
C |
error |
|
16514 |
1773d |
1973d
|
20/29 |
1691d |
75d95e2e39b2
firmware_loader: fix use-after-free in firmware_fallback_sysfs
|
|
WARNING in futex_requeue
kernel
|
-1 |
syz |
|
|
4 |
1756d |
1760d
|
20/29 |
1691d |
4f07ec0d76f2
futex: Prevent inconsistent state and exit race
|
|
WARNING in __static_key_slow_dec
kernel
|
-1 |
C |
unreliable |
|
19 |
1754d |
1758d
|
20/29 |
1691d |
6d5f1ef83868
bonding: Fix negative jump label count on nested bonding
|
|
KASAN: global-out-of-bounds Read in netlink_policy_dump_add_policy (2)
kernel
|
17 |
C |
done |
|
2 |
1965d |
1965d
|
20/29 |
1859d |
33b347503f01
vdpa: Define vdpa mgmt device, ops and a netlink interface
|
|
KASAN: use-after-free Read in __cpuhp_state_remove_instance
kernel
|
19 |
C |
unreliable |
done |
2726 |
1926d |
1948d
|
20/29 |
1895d |
470ec4ed8c91
io-wq: fix double put of 'wq' in error path
|
|
WARNING in qp_broker_alloc
kernel
|
-1 |
C |
inconclusive |
|
24 |
1950d |
1986d
|
20/29 |
1905d |
2fd10bcf0310
drivers/misc/vmw_vmci: restrict too big queue size in qp_host_alloc_queue
|
|
general protection fault in rose_transmit_clear_request
kernel
|
2 |
C |
done |
|
5 |
2065d |
2530d
|
19/29 |
1936d |
3b3fd068c56e
rose: Fix Null pointer dereference in rose_send_frame()
|
|
KMSAN: kernel-infoleak in vmci_host_unlocked_ioctl
kernel
|
9 |
C |
|
|
22 |
1965d |
2049d
|
19/29 |
1936d |
31dcb6c30a26
misc: vmw_vmci: fix kernel info-leak by initializing dbells in vmci_ctx_get_chkpt_doorbells()
|
|
BUG: unable to handle kernel NULL pointer dereference in call_rcu
kernel
|
10 |
C |
done |
|
85 |
2006d |
2009d
|
19/29 |
1936d |
13384f6125ad
kasan: fix null pointer dereference in kasan_record_aux_stack
|
|
memory leak in copy_process
kernel
|
3 |
C |
|
|
23 |
1953d |
2050d
|
19/29 |
1936d |
450677dcb0cc
mm/madvise: fix memory leak from process_madvise
|
|
INFO: rcu detected stall in process_one_work (3)
kernel
|
1 |
C |
done |
done |
1 |
2090d |
2131d
|
15/29 |
2050d |
1d0e850a49a5
afs: Fix cell removal
|
|
WARNING in binder_transaction_buffer_release (2)
kernel
|
-1 |
C |
done |
done |
442 |
2182d |
2223d
|
15/29 |
2050d |
e8b8ae7ce32e
binder: Remove bogus warning on failed same-process transaction
|
|
KASAN: unknown-crash Read in do_exit
kernel
|
17 |
C |
inconclusive |
done |
2 |
2107d |
2113d
|
15/29 |
2050d |
a49145acfb97
fbmem: add margin check to fb_check_caps()
|
|
WARNING in syscall_exit_to_user_mode
kernel
|
-1 |
C |
done |
done |
1 |
2087d |
2116d
|
15/29 |
2050d |
a49145acfb97
fbmem: add margin check to fb_check_caps()
|
|
WARNING in get_signal
kernel
|
-1 |
C |
done |
|
2 |
2092d |
2094d
|
15/29 |
2050d |
7b3c36fc4c23
ptrace: fix task_join_group_stop() for the case when current is traced
|
|
kernel panic: stack is corrupted in get_kernel_gp_address
kernel
|
2 |
syz |
done |
done |
1 |
2083d |
2115d
|
15/29 |
2050d |
a49145acfb97
fbmem: add margin check to fb_check_caps()
|
|
KASAN: out-of-bounds Read in __switch_to (2)
kernel
|
17 |
syz |
done |
done |
1 |
2098d |
2094d
|
15/29 |
2050d |
a49145acfb97
fbmem: add margin check to fb_check_caps()
|
|
WARNING in arch_install_hw_breakpoint
kernel
|
-1 |
C |
inconclusive |
done |
8 |
2536d |
2653d
|
15/29 |
2050d |
e898e69d6b94
x86/hw_breakpoints: Make default case in hw_breakpoint_arch_parse() return an error
|
|
general protection fault in qp_release_pages
kernel
|
2 |
C |
done |
|
2 |
2085d |
2085d
|
15/29 |
2050d |
90ca6333fd65
VMCI: check return value of get_user_pages_fast() for errors
|
|
KASAN: stack-out-of-bounds Read in csd_lock_record
kernel
|
17 |
C |
|
|
226 |
2180d |
2185d
|
15/29 |
2050d |
35feb60474bf
kernel/smp: Provide CSD lock timeout diagnostics
|
|
WARNING in irqentry_exit
kernel
|
-1 |
C |
error |
done |
2080 |
2084d |
2151d
|
15/29 |
2050d |
4d004099a668
lockdep: Fix lockdep recursion
|
|
memory leak in do_seccomp
kernel
|
3 |
C |
|
|
6 |
2119d |
2146d
|
15/29 |
2087d |
a566a9012acd
seccomp: don't leak memory when filter install races
|
|
INFO: rcu detected stall in cleanup_net (4)
kernel
|
1 |
C |
done |
|
5 |
2122d |
2118d
|
15/29 |
2087d |
b5b73b26b3ca
taprio: Fix allowing too small intervals
|
|
general protection fault in x86_fsgsbase_read_task
kernel
|
2 |
C |
done |
|
2 |
2144d |
2144d
|
15/29 |
2110d |
8ab49526b53d
x86/fsgsbase/64: Fix NULL deref in 86_fsgsbase_read_task
|
|
WARNING in idtentry_exit_cond_rcu
kernel
|
-1 |
syz |
|
|
6 |
2184d |
2180d
|
15/29 |
2110d |
bce9b042ec73
x86/traps: Disable interrupts in exc_aligment_check()
|
|
general protection fault in syscall_return_slowpath
kernel
|
2 |
syz |
inconclusive |
done |
1 |
2216d |
2303d
|
15/29 |
2110d |
033724d68642
fbdev: Detect integer underflow at "struct fbcon_ops"->clear_margins.
|
|
KASAN: stack-out-of-bounds Read in update_stack_state
kernel
|
17 |
C |
unreliable |
done |
388 |
2354d |
3048d
|
15/29 |
2139d |
4ee7c60de83a
init, tracing: Add initcall trace events
|
|
PANIC: double fault in fixup_bad_iret
kernel
|
2 |
C |
error |
|
11753 |
2180d |
2220d
|
15/29 |
2157d |
5144f8a8dfd7
compiler_types.h: Add __no_sanitize_{address,undefined} to noinstr
|
|
WARNING in enqueue_task_dl
kernel
|
-1 |
C |
done |
|
13 |
2201d |
2778d
|
15/29 |
2157d |
740797ce3a12
sched/core: Fix PI boosting between RT and DEADLINE tasks
|
|
PANIC: double fault in check_preemption_disabled
kernel
|
2 |
C |
|
|
2181 |
2188d |
2193d
|
15/29 |
2157d |
c7aadc09321d
x86/entry: Increase entry_stack size to a full page
|
|
BUG: MAX_LOCKDEP_CHAINS too low!
kernel
|
-1 |
C |
done |
|
17240 |
2171d |
2830d
|
15/29 |
2171d |
e7511f560f54
bonding: remove useless stats_lock_key
1a33e10e4a95
net: partially revert dynamic lockdep key changes
|
|
KASAN: use-after-free Read in __hrtimer_run_queues
kernel
|
19 |
C |
done |
|
299 |
2272d |
2279d
|
15/29 |
2240d |
73d20564e0dc
hrtimer: Don't dereference the hrtimer pointer after the callback
|
|
WARNING: kobject bug in ib_register_device
kernel
|
-1 |
C |
done |
|
14 |
2277d |
2316d
|
15/29 |
2240d |
7aefa6237cfe
RDMA/nl: Do not permit empty devices names during RDMA_NLDEV_CMD_NEWLINK/SET
|
|
INFO: rcu detected stall in hash_ip4_gc
kernel
|
1 |
C |
done |
|
1 |
2346d |
2344d
|
15/29 |
2264d |
f66ee0410b1c
netfilter: ipset: Fix "INFO: rcu detected stall in hash_xxx" reports
|
|
WARNING in switch_fpu_return
kernel
|
-1 |
syz |
done |
done |
11 |
2336d |
2369d
|
15/29 |
2285d |
2620fe268e80
KVM: x86: Revert "KVM: X86: Fix fpu state crash in kvm guest"
|
|
KMSAN: uninit-value in __request_module (3)
kernel
|
7 |
C |
|
|
58 |
2322d |
2350d
|
15/29 |
2321d |
36d79af7fb59
net-backports: net_sched: use validated TCA_KIND attribute in tc_new_tfilter()
|
|
kernel panic: stack is corrupted in __lock_acquire (4)
kernel
|
2 |
syz |
error |
error |
75 |
2417d |
2575d
|
15/29 |
2321d |
4da6a196f93b
bpf: Sockmap/tls, during free we may call tcp_bpf_unhash() in loop
|
|
BUG: sleeping function called from invalid context in tpk_write
kernel
|
5 |
C |
done |
|
12 |
2353d |
2394d
|
15/29 |
2321d |
9a655c77ff8f
ttyprintk: fix a potential deadlock in interrupt context issue
|
|
BUG: unable to handle kernel paging request in do_csum (2)
kernel
|
8 |
C |
done |
|
6 |
2345d |
2347d
|
15/29 |
2321d |
6cd021a58c18
udp: segment looped gso packets correctly
|
|
general protection fault in tss_update_io_bitmap
kernel
|
2 |
C |
done |
|
65 |
2405d |
2411d
|
15/29 |
2389d |
e3cb0c7102f0
x86/ioperm: Fix use of deprecated config option
|
|
KASAN: use-after-free Read in tick_sched_handle (3)
kernel
|
19 |
C |
|
done |
12 |
2722d |
2777d
|
13/29 |
2422d |
bc6e019b6ee6
fou: Prevent unbounded recursion in GUE error handler also with UDP-Lite
|
|
general protection fault in put_pid
kernel
|
2 |
syz |
done |
done |
3 |
2746d |
2755d
|
13/29 |
2424d |
a8e911d13540
x86_64: increase stack size for KASAN_EXTRA
|
|
general protection fault in propagate_entity_cfs_rq
kernel
|
2 |
C |
|
done |
1 |
2907d |
2907d
|
13/29 |
2424d |
bab2c80e5a6c
nsh: set mac len based on inner packet
|
|
WARNING: lock held when returning to user space in rcu_lock_acquire
kernel
|
4 |
C |
done |
|
3 |
2460d |
2460d
|
13/29 |
2447d |
73956fc07dd7
membarrier: Fix RCU locking bug caused by faulty merge
|
|
general protection fault in make_kuid
kernel
|
2 |
C |
done |
|
4 |
2507d |
2532d
|
13/29 |
2447d |
1dd9bc08cf14
vfs: set fs_context::user_ns for reconfigure
|
|
WARNING in rcu_note_context_switch
kernel
|
-1 |
C |
done |
|
1 |
2462d |
2462d
|
13/29 |
2447d |
73956fc07dd7
membarrier: Fix RCU locking bug caused by faulty merge
|
|
WARNING: lock held when returning to user space in membarrier_private_expedited
kernel
|
4 |
C |
done |
|
7 |
2460d |
2462d
|
13/29 |
2447d |
73956fc07dd7
membarrier: Fix RCU locking bug caused by faulty merge
|
|
KMSAN: uninit-value in __request_module
kernel
|
7 |
C |
|
|
13 |
2457d |
2477d
|
13/29 |
2447d |
62794fc4fbf5
net_sched: add max len check for TCA_KIND
|
|
memory leak in llcp_sock_bind
kernel
|
3 |
C |
done |
|
2 |
2469d |
2533d
|
13/29 |
2447d |
a0c2dc1fe63e
nfc: fix memory leak in llcp_sock_bind()
|
|
INFO: rcu detected stall in sys_exit_group
kernel
|
1 |
C |
done |
|
1 |
2479d |
2475d
|
13/29 |
2454d |
d4d6ec6dac07
sch_hhf: ensure quantum and hhf_non_hh_weight are non-zero
|
|
KASAN: slab-out-of-bounds Read in bpf_int_jit_compile
kernel
|
17 |
C |
done |
|
1 |
2534d |
2531d
|
12/29 |
2486d |
7c2e988f400e
bpf: fix x64 JIT code generation for jmp to 1st insn
|
|
KASAN: slab-out-of-bounds Read in do_jit
kernel
|
17 |
C |
done |
|
16 |
2486d |
2531d
|
12/29 |
2486d |
7c2e988f400e
bpf: fix x64 JIT code generation for jmp to 1st insn
|
|
BUG: unable to handle kernel paging request in hrtimer_interrupt
kernel
|
8 |
syz |
done |
|
2 |
2529d |
2565d
|
12/29 |
2496d |
95fa145479fb
bpf: sockmap/tls, close can race with map free
|
|
general protection fault in rcu_core
kernel
|
2 |
syz |
done |
|
1 |
2545d |
2545d
|
12/29 |
2496d |
95fa145479fb
bpf: sockmap/tls, close can race with map free
|
|
general protection fault in mm_update_next_owner
kernel
|
2 |
syz |
done |
done |
1 |
2576d |
2576d
|
12/29 |
2496d |
95fa145479fb
bpf: sockmap/tls, close can race with map free
|
|
KASAN: use-after-free Write in validate_chain
kernel
|
22 |
syz |
done |
|
3 |
2553d |
2563d
|
12/29 |
2496d |
95fa145479fb
bpf: sockmap/tls, close can race with map free
|
|
KASAN: use-after-free Read in psi_task_change
kernel
|
19 |
syz |
done |
|
1 |
2530d |
2529d
|
12/29 |
2496d |
95fa145479fb
bpf: sockmap/tls, close can race with map free
|
|
KASAN: slab-out-of-bounds Write in check_noncircular
kernel
|
21 |
syz |
done |
|
1 |
2536d |
2536d
|
12/29 |
2496d |
95fa145479fb
bpf: sockmap/tls, close can race with map free
|
|
WARNING in mark_lock
kernel
|
-1 |
syz |
done |
|
2 |
2505d |
2560d
|
12/29 |
2496d |
95fa145479fb
bpf: sockmap/tls, close can race with map free
|
|
kernel panic: stack is corrupted in validate_chain
kernel
|
2 |
syz |
done |
|
1 |
2559d |
2559d
|
12/29 |
2496d |
95fa145479fb
bpf: sockmap/tls, close can race with map free
|
|
BUG: unable to handle kernel paging request in cpuacct_account_field
kernel
|
8 |
syz |
done |
done |
1 |
2564d |
2563d
|
12/29 |
2496d |
95fa145479fb
bpf: sockmap/tls, close can race with map free
|
|
WARNING: held lock freed in nr_release
kernel
|
4 |
C |
done |
|
344 |
2517d |
2538d
|
12/29 |
2496d |
4638faac0327
netrom: hold sock when setting skb->destructor
|
|
general protection fault in rb_erase (2)
kernel
|
2 |
syz |
done |
|
4 |
2525d |
2733d
|
12/29 |
2496d |
95fa145479fb
bpf: sockmap/tls, close can race with map free
|
|
KASAN: slab-out-of-bounds Read in usage_accumulate
kernel
|
17 |
syz |
done |
|
3 |
2559d |
2578d
|
12/29 |
2496d |
95fa145479fb
bpf: sockmap/tls, close can race with map free
|
|
WARNING: refcount bug in nr_rx_frame
kernel
|
13 |
C |
done |
|
15 |
2520d |
2537d
|
12/29 |
2496d |
4638faac0327
netrom: hold sock when setting skb->destructor
|
|
BUG: unable to handle kernel paging request in bpf_prog_ADDR
kernel
|
8 |
C |
done |
|
13 |
2519d |
2535d
|
12/29 |
2496d |
06a22d897d82
bpf: fix access to skb_shared_info->gso_segs
|
|
general protection fault in rb_next (3)
kernel
|
2 |
syz |
done |
done |
1 |
2569d |
2568d
|
12/29 |
2496d |
95fa145479fb
bpf: sockmap/tls, close can race with map free
|
|
general protection fault in finish_task_switch (2)
kernel
|
2 |
C |
|
done |
1538 |
2834d |
2878d
|
12/29 |
2501d |
26b471c7e2f7
KVM: nVMX: Fix bad cleanup on error of get/set nested state IOCTLs
|
|
memory leak in policydb_read
kernel
|
3 |
C |
done |
|
1 |
2534d |
2532d
|
12/29 |
2510d |
45385237f65a
selinux: fix memory leak in policydb_init()
|
|
WARNING in binder_transaction_buffer_release
kernel
|
-1 |
syz |
error |
|
38 |
2553d |
2595d
|
12/29 |
2510d |
49ed96943a8e
binder: prevent transactions to context manager from its own process.
|
|
memory leak in binder_transaction
kernel
|
3 |
C |
|
|
3 |
2559d |
2571d
|
12/29 |
2518d |
1909a671dbc3
binder: fix memory leak in error path
|
|
WARNING in static_key_slow_try_dec
kernel
|
-1 |
C |
done |
|
58 |
2541d |
2545d
|
12/29 |
2518d |
d44e3fa5d7e6
ipv6: fix static key imbalance in fl_create()
|
|
general protection fault in get_task_pid
kernel
|
2 |
C |
done |
|
24 |
2551d |
2553d
|
12/29 |
2525d |
28dd29c06d0d
fork: return proper negative error code
|
|
memory leak in kobject_set_name_vargs
kernel
|
3 |
C |
|
|
12 |
2553d |
2586d
|
12/29 |
2544d |
4f488fbca2a8
cfg80211: fix memory leak of wiphy device name
|
|
KMSAN: kernel-infoleak in copy_siginfo_to_user (2)
kernel
|
9 |
C |
|
|
15 |
2574d |
2604d
|
12/29 |
2544d |
f6e2aa91a46d
signal/ptrace: Don't leak unitialized kernel memory with PTRACE_PEEK_SIGINFO
|
|
kernel BUG at drivers/android/binder_alloc.c:LINE! (3)
kernel
|
-1 |
C |
done |
|
24 |
2579d |
2648d
|
12/29 |
2570d |
a3c7cd0cdf11
batman-adv: mcast: fix multicast tt/tvlv worker locking
|
|
BUG: unable to handle page fault for address = ADDR
kernel
|
-1 |
C |
done |
|
3 |
2621d |
2620d
|
12/29 |
2588d |
baf76f0c58ae
slip: make slhc_free() silently accept an error pointer
|
|
KASAN: use-after-free Read in seccomp_notify_release (2)
kernel
|
19 |
C |
done |
|
9 |
2651d |
2652d
|
12/29 |
2588d |
7a0df7fbc145
seccomp: Make NEW_LISTENER and TSYNC flags exclusive
|
|
kernel BUG at drivers/android/binder_alloc.c:LINE! (2)
kernel
|
-1 |
C |
|
|
1257 |
2649d |
2691d
|
11/29 |
2649d |
26528be6720b
binder: fix handling of misaligned binder object
|
|
KASAN: use-after-free Read in kobject_put
kernel
|
19 |
C |
|
|
12 |
2677d |
2808d
|
11/29 |
2649d |
e20a2e9c42c9
Bluetooth: Fix decrementing reference count twice in releasing socket
|
|
BUG: assuming atomic context at kernel/seccomp.c:LINE
kernel
|
-1 |
C |
|
|
709 |
2684d |
2685d
|
11/29 |
2649d |
e80d02dd7630
seccomp, bpf: disable preemption before calling into bpf prog
|
|
KASAN: use-after-free Read in update_blocked_averages
kernel
|
19 |
C |
done |
|
3 |
2771d |
2785d
|
11/29 |
2655d |
bc6e019b6ee6
fou: Prevent unbounded recursion in GUE error handler also with UDP-Lite
|
|
WARNING in update_load_avg
kernel
|
-1 |
C |
done |
|
1 |
2778d |
2777d
|
11/29 |
2656d |
bc6e019b6ee6
fou: Prevent unbounded recursion in GUE error handler also with UDP-Lite
|
|
KASAN: slab-out-of-bounds Read in tick_sched_handle
kernel
|
17 |
C |
done |
|
7 |
2722d |
2750d
|
11/29 |
2660d |
bc6e019b6ee6
fou: Prevent unbounded recursion in GUE error handler also with UDP-Lite
|
|
general protection fault in watchdog
kernel
|
2 |
C |
|
|
1 |
2753d |
2752d
|
11/29 |
2671d |
e2c8d550a973
netfilter: ebtables: account ebt_table_info to kmemcg
|
|
BUG: unable to handle kernel paging request in do_csum
kernel
|
8 |
C |
|
|
11 |
2764d |
2764d
|
11/29 |
2671d |
d5be7f632bad
net-backports: net: validate untrusted gso packets without csum offload
|
|
kernel panic: stack is corrupted in printk
kernel
|
2 |
C |
|
|
1 |
2731d |
2731d
|
11/29 |
2671d |
44039e00171b
fou6: Prevent unbounded recursion in GUE error handler
|
|
general protection fault in rb_erase_cached
kernel
|
2 |
C |
|
|
1 |
2731d |
2731d
|
11/29 |
2671d |
44039e00171b
fou6: Prevent unbounded recursion in GUE error handler
|
|
KASAN: out-of-bounds Read in __switch_to
kernel
|
17 |
C |
|
|
1 |
2731d |
2731d
|
11/29 |
2671d |
44039e00171b
fou6: Prevent unbounded recursion in GUE error handler
|
|
WARNING: locking bug in corrupted
kernel
|
4 |
C |
|
|
1 |
2720d |
2720d
|
11/29 |
2671d |
44039e00171b
fou6: Prevent unbounded recursion in GUE error handler
|
|
KASAN: use-after-free Read in seccomp_notify_release
kernel
|
19 |
C |
|
|
27 |
2676d |
2724d
|
11/29 |
2671d |
a811dc61559e
seccomp: fix UAF in user-trap code
|
|
KASAN: slab-out-of-bounds Write in fpstate_init
kernel
|
21 |
C |
|
|
15088 |
2743d |
2744d
|
11/29 |
2678d |
ed8e48122728
KVM: x86: fix size of x86_fpu_cache objects
|
|
WARNING in static_key_disable_cpuslocked
kernel
|
-1 |
syz |
|
|
5 |
2761d |
2780d
|
11/29 |
2725d |
9c48060141bd
udp: fix jump label misuse
|
|
WARNING in __rcu_read_unlock
kernel
|
-1 |
C |
|
|
2 |
2744d |
2751d
|
11/29 |
2725d |
11789039da53
fou: Prevent unbounded recursion in GUE error handler
|
|
BUG: corrupted list in cpu_stop_queue_work
kernel
|
8 |
C |
|
|
24 |
2903d |
2913d
|
11/29 |
2784d |
552446a41661
shmem: Convert shmem_add_to_page_cache to XArray
|
|
KASAN: use-after-free Read in finish_task_switch
kernel
|
19 |
C |
|
|
3047 |
2834d |
2878d
|
11/29 |
2812d |
26b471c7e2f7
KVM: nVMX: Fix bad cleanup on error of get/set nested state IOCTLs
|
|
KMSAN: uninit-value in do_msgrcv
kernel
|
7 |
C |
|
|
8 |
2860d |
2937d
|
8/29 |
2860d |
39cfffd774a2
ipc/util.c: use ipc_rcu_putref() for failues in ipc_addid()
615c999cd8a0
ipc: compute kern_ipc_perm.id under the ipc lock
e2652ae6bd74
ipc: reorganize initialization of kern_ipc_perm.seq
|
|
general protection fault in __delayacct_blkio_end
kernel
|
2 |
C |
|
|
50 |
2896d |
2991d
|
8/29 |
2880d |
b512719f771a
delayacct: fix crash in delayacct_blkio_end() after delayacct init failure
|
|
KASAN: stack-out-of-bounds Read in __handle_mm_fault (2)
kernel
|
17 |
C |
|
|
3 |
2899d |
2901d
|
8/29 |
2881d |
99ba2b5aba24
bpf: sockhash, disallow bpf_tcp_close and update in parallel
|
|
general protection fault in scheduler_tick
kernel
|
2 |
C |
|
|
1 |
2911d |
2911d
|
8/29 |
2881d |
99ba2b5aba24
bpf: sockhash, disallow bpf_tcp_close and update in parallel
|
|
BUG: unable to handle kernel NULL pointer dereference in corrupted (2)
kernel
|
10 |
C |
|
|
1 |
2902d |
2902d
|
8/29 |
2881d |
99ba2b5aba24
bpf: sockhash, disallow bpf_tcp_close and update in parallel
|
|
KASAN: slab-out-of-bounds Read in corrupted
kernel
|
17 |
C |
|
|
1 |
2902d |
2902d
|
8/29 |
2881d |
99ba2b5aba24
bpf: sockhash, disallow bpf_tcp_close and update in parallel
|
|
KASAN: stack-out-of-bounds Read in account_system_index_time
kernel
|
17 |
C |
|
|
2 |
2904d |
2911d
|
8/29 |
2881d |
99ba2b5aba24
bpf: sockhash, disallow bpf_tcp_close and update in parallel
|
|
KASAN: stack-out-of-bounds Read in add_wait_queue
kernel
|
17 |
C |
|
|
1 |
2911d |
2911d
|
8/29 |
2881d |
99ba2b5aba24
bpf: sockhash, disallow bpf_tcp_close and update in parallel
|
|
BUG: unable to handle kernel paging request in cpuacct_charge
kernel
|
8 |
syz |
|
|
2 |
2903d |
2903d
|
8/29 |
2881d |
99ba2b5aba24
bpf: sockhash, disallow bpf_tcp_close and update in parallel
|
|
KASAN: stack-out-of-bounds Read in timerqueue_add
kernel
|
17 |
C |
|
|
4 |
2899d |
2915d
|
8/29 |
2881d |
99ba2b5aba24
bpf: sockhash, disallow bpf_tcp_close and update in parallel
|
|
KASAN: stack-out-of-bounds Read in rcu_process_callbacks
kernel
|
17 |
C |
|
|
1 |
2905d |
2905d
|
8/29 |
2881d |
99ba2b5aba24
bpf: sockhash, disallow bpf_tcp_close and update in parallel
|
|
unexpected kernel reboot (2)
kernel
|
-1 |
C |
|
|
2073 |
2910d |
3001d
|
8/29 |
2910d |
0447378a4a79
kvm: vmx: Nested VM-entry prereqs for event inj.
|
|
WARNING: kernel stack regs at (ptrval) in syzkaller has bad 'bp' value (ptrval)
kernel
|
-1 |
C |
|
|
3 |
2987d |
2988d
|
8/29 |
2910d |
f044a84e040b
crypto: don't optimize keccakf()
|
|
kernel BUG at include/linux/mm.h:LINE!
kernel
|
-1 |
syz |
|
|
68 |
2943d |
2980d
|
5/29 |
2942d |
a466ef76b815
x86/kexec: Avoid double free_page() upon do_kexec_load() failure
|
|
WARNING in dev_vprintk_emit
kernel
|
-1 |
C |
|
|
77 |
2956d |
3083d
|
5/29 |
2942d |
814596495dd2
cfg80211: further limit wiphy names to 64 bytes
|
|
general protection fault in account_system_index_time
kernel
|
2 |
C |
|
|
2 |
3014d |
3014d
|
5/29 |
2967d |
ae4745730cf8
net: Fix untag for vlan packets without ethernet header
|
|
KASAN: use-after-free Read in alloc_pid
kernel
|
19 |
C |
|
|
7 |
3000d |
3010d
|
5/29 |
2972d |
8e04944f0ea8
mm,vmscan: Allow preallocating memory for register_shrinker().
|
|
WARNING: inconsistent lock state
kernel
|
-1 |
C |
|
|
22 |
2984d |
2988d
|
5/29 |
2972d |
6c1e851c4edc
random: fix possible sleeping allocation from irq context
|
|
KASAN: use-after-free Read in binder_release_work
kernel
|
19 |
C |
|
|
6 |
2986d |
3007d
|
5/29 |
2972d |
7aa135fcf263
ANDROID: binder: prevent transactions into own process.
|
|
inconsistent lock state in fs_reclaim_acquire
kernel
|
4 |
C |
|
|
36235 |
2973d |
2983d
|
5/29 |
2972d |
6c1e851c4edc
random: fix possible sleeping allocation from irq context
|
|
WARNING in __debug_object_init
kernel
|
-1 |
C |
|
|
192 |
3006d |
3016d
|
5/29 |
2972d |
bd03143007eb
alarmtimer: Init nanosleep alarm timer on stack
|
|
WARNING: kobject bug in device_add
kernel
|
-1 |
C |
|
|
563 |
2973d |
3012d
|
5/29 |
2972d |
3e14c6abbfb5
kobject: don't use WARN for registration failures
|
|
WARNING in binder_send_failed_reply
kernel
|
-1 |
C |
|
|
206 |
3047d |
3130d
|
5/29 |
3002d |
e46a3b3ba750
ANDROID: binder: remove WARN() for redundant txn error
|
|
general protection fault in timerqueue_add
kernel
|
2 |
C |
|
|
2 |
3014d |
3014d
|
5/29 |
3004d |
c769accdf3d8
vlan: Fix vlan insertion for packets without ethernet header
|
|
general protection fault in try_to_wake_up
kernel
|
2 |
syz |
|
|
1 |
3016d |
3012d
|
5/29 |
3004d |
c769accdf3d8
vlan: Fix vlan insertion for packets without ethernet header
|
|
general protection fault in hrtimer_active (2)
kernel
|
2 |
C |
|
|
10612 |
3038d |
3043d
|
4/29 |
3035d |
b7e31be38558
KVM: x86: fix vcpu initialization with userspace lapic
|
|
general protection fault in binder_poll
kernel
|
2 |
C |
|
|
159 |
3047d |
3130d
|
4/29 |
3043d |
f88982679f54
binder: check for binder_thread allocation failure in binder_poll()
|
|
KASAN: slab-out-of-bounds Read in string
kernel
|
17 |
C |
|
|
129 |
3066d |
3076d
|
4/29 |
3055d |
da17c73b6eb7
netfilter: x_tables: avoid out-of-bounds reads in xt_request_find_{match|target}
|
|
WARNING in do_debug
kernel
|
-1 |
C |
|
|
905 |
3062d |
3162d
|
4/29 |
3057d |
efdab992813f
KVM: x86: fix escape of guest dr6 to the host
|
|
kernel BUG at drivers/android/binder_alloc.c:LINE!
kernel
|
-1 |
C |
|
|
856 |
3126d |
3130d
|
4/29 |
3069d |
fb2c445277e7
ANDROID: binder: fix transaction leak.
|
|
general protection fault in lockdep_invariant_state (2)
kernel
|
2 |
C |
|
|
114 |
3125d |
3154d
|
4/29 |
3073d |
5e351ad10699
locking/lockdep: Fix possible NULL deref
|
|
general protection fault in hrtimer_active
kernel
|
2 |
C |
|
|
669 |
3151d |
3175d
|
3/29 |
3134d |
aec72f3392b1
net-tun: fix panics at dismantle time
|
|
WARNING in get_pi_state
kernel
|
-1 |
C |
|
|
42 |
3160d |
3162d
|
3/29 |
3151d |
153fbd1226fb
futex: Fix more put_pi_state() vs. exit_pi_state_list() races
|
|
KASAN: use-after-free Read in do_raw_spin_unlock
kernel
|
19 |
syz |
|
|
3 |
3160d |
3162d
|
3/29 |
3151d |
153fbd1226fb
futex: Fix more put_pi_state() vs. exit_pi_state_list() races
|
|
KASAN: use-after-free Read in __lock_acquire
kernel
|
19 |
syz |
|
|
894 |
3151d |
3160d
|
3/29 |
3151d |
153fbd1226fb
futex: Fix more put_pi_state() vs. exit_pi_state_list() races
|
|
WARNING in __switch_to
kernel
|
-1 |
C |
|
|
535 |
3196d |
3242d
|
3/29 |
3169d |
814fb7bb7db5
x86/fpu: Don't let userspace set bogus xcomp_bv
|