|
WARNING: suspicious RCU usage in mas_walk (3)
mm
|
4 |
C |
done |
|
12 |
946d |
960d
|
1/29 |
never |
mempolicy: migration attempt to match interleave nodes: fix
|
|
KASAN: null-ptr-deref Write in sys_io_uring_register
mm
|
12 |
C |
done |
|
15 |
532d |
539d
|
1/29 |
never |
xarray-extract-helper-from-__xa_insertcmpxchg-fix
|
|
INFO: task hung in bchfs_fpunch (2)
mm
fs
prio:high
|
1 |
C |
done |
|
2 |
293d |
337d
|
2/29 |
never |
bcachefs: Fix readahead involved deadlock
|
|
KASAN: slab-use-after-free Read in do_sync_mmap_readahead
prio:high
mm
|
19 |
C |
done |
|
3 |
339d |
343d
|
2/29 |
never |
mm-filemap-allow-arch-to-request-folio-size-for-exec-memory-fix
|
|
KASAN: slab-use-after-free Read in finish_fault
mm
|
19 |
C |
done |
|
8 |
711d |
713d
|
1/29 |
never |
mm-memory-extend-finish_fault-to-support-large-folio-fix
|
|
WARNING in page_add_anon_rmap
mm
|
-1 |
C |
done |
|
1041 |
981d |
982d
|
1/29 |
never |
mm-rmap-simplify-pageanonexclusive-sanity-checks-when-adding-anon-rmap-fix
|
|
WARNING in folio_add_new_anon_rmap
mm
|
-1 |
C |
error |
|
14 |
74d |
73d
|
2/29 |
never |
userfaultfd-introduce-struct-mfill_state-fix
|
|
general protection fault in vma_is_shmem
io-uring
mm
|
2 |
C |
error |
|
28 |
1374d |
1375d
|
1/29 |
never |
mm/gup.c: Fix return value for __gup_longterm_locked()
|
|
KASAN: use-after-free Read in __vma_adjust
mm
|
19 |
C |
done |
|
10 |
1389d |
1445d
|
1/29 |
never |
fs/userfaultfd: fix vma iteration in mas_for_each() loop
|
|
general protection fault in shmem_mapping
mm
|
2 |
C |
done |
|
17 |
464d |
467d
|
1/29 |
never |
mm/huge_memory: do not drop the original folio during truncate
|
|
INFO: task hung in remove_inode_hugepages
fs
mm
|
1 |
C |
done |
|
52 |
596d |
688d
|
1/29 |
never |
INFO: task hung in remove_inode_hugepages
|
|
BUG: unable to handle kernel paging request in alloc_huge_page
mm
|
8 |
C |
unreliable |
|
491 |
1748d |
1747d
|
1/29 |
never |
mm/hugetlb: Initialize page to NULL in alloc_buddy_huge_page_with_mpol()
|
|
WARNING in page_counter_uncharge (2)
prio:high
cgroups
mm
|
-1 |
C |
error |
|
7 |
25d |
60d
|
2/29 |
never |
mm/hugetlb: fix hugetlb cgroup rsvd charge/uncharge mismatch
|
|
kernel BUG in mfill_atomic_copy
mm
|
-1 |
C |
error |
|
3 |
1052d |
1048d
|
1/29 |
never |
mm: userfaultfd: check for start + len overflow in validate_range: fix
|
|
KASAN: slab-use-after-free Read in madvise_collapse
mm
|
19 |
C |
error |
|
5 |
1038d |
1039d
|
1/29 |
never |
mm/khugepaged: collapse_pte_mapped_thp() with mmap_read_lock(): fix
|
|
kernel BUG in collapse_file (3)
mm
|
-1 |
C |
done |
|
14 |
1038d |
1045d
|
1/29 |
never |
mm/khugepaged: collapse_pte_mapped_thp() with mmap_read_lock(): fix
|
|
possible deadlock in collapse_file
mm
|
4 |
C |
done |
|
189 |
1178d |
1179d
|
1/29 |
never |
mm/khugepaged: fix vm_lock/i_mmap_rwsem inversion in retract_page_tables
|
|
KASAN: slab-use-after-free Read in move_pages_pte
mm
|
19 |
C |
done |
|
3 |
537d |
536d
|
1/29 |
never |
mm: pgtable: make ptlock be freed by RCU
|
|
kernel BUG in vma_replace_policy
mm
|
-1 |
C |
done |
|
6 |
985d |
994d
|
1/29 |
never |
mm: lock VMAs skipped by a failed queue_pages_range()
|
|
kernel BUG in free_bprm
fs
mm
|
-1 |
C |
done |
|
445 |
567d |
568d
|
1/29 |
never |
exec: NULL out bprm->argv0 when it is an ERR_PTR
|
|
WARNING in folio_memcg
prio:low
mm
|
-1 |
C |
done |
|
3851 |
163d |
646d
|
1/29 |
never |
mm: kmem: fix split_page_memcg()
|
|
WARNING in vma_merge
mm
|
-1 |
C |
done |
|
18115 |
912d |
1491d
|
1/29 |
never |
mm/mlock: use maple state in apply_mlockall_flags()
|
|
WARNING in handle_userfault
mm
|
-1 |
C |
error |
|
71 |
1050d |
1057d
|
1/29 |
never |
mm: fix a lockdep issue in vma_assert_write_locked
|
|
KASAN: slab-use-after-free Read in handle_mm_fault
mm
|
19 |
C |
done |
|
107 |
677d |
680d
|
1/29 |
never |
mm: check for VM_DROPPABLE in vma prior to handling mm fault
|
|
KASAN: slab-out-of-bounds Read in shrink_folio_list
mm
|
19 |
C |
|
|
683 |
1052d |
1053d
|
1/29 |
never |
mm: call folio_mapping() inside folio_needs_release()
|
|
general protection fault in vma_interval_tree_remove
mm
|
10 |
C |
done |
|
14 |
728d |
1486d
|
1/29 |
never |
mm/mmap: fix advanced maple tree API for mmap_region()
mm/mmap: qvoid dereferencing next on null in BUG_ON()
|
|
kernel BUG in swap_cgroup_record (2)
prio:high
mm
cgroups
|
-1 |
C |
error |
|
227 |
134d |
138d
|
2/29 |
never |
mm/swap_cgroup: fix kernel BUG in swap_cgroup_record
|
|
KASAN: slab-use-after-free Read in mremap
mm
|
19 |
C |
done |
|
122 |
281d |
284d
|
2/29 |
never |
mm/mremap: do not incorrectly reference invalid VMA in VM_WARN_ON_ONCE()
|
|
WARNING in vma_mark_detached
prio:high
mm
|
-1 |
C |
error |
|
8 |
14d |
37d
|
29/29 |
5d17h |
619eab23e1ce
mm/vma: do not try to unmap a VMA if mmap_prepare() invoked from mmap()
|
|
WARNING in deferred_split_folio
mm
|
-1 |
syz |
error |
|
4 |
57d |
56d
|
29/29 |
6d14h |
3bac01168982
mm: fix deferred split queue races during migration
|
|
kernel BUG in resv_map_release (3)
mm
|
-1 |
C |
inconclusive |
error |
35 |
53d |
561d
|
29/29 |
6d14h |
0217c7fb4de4
mm/userfaultfd: fix hugetlb fault mutex hash calculation
|
|
general protection fault in rwsem_mark_wake
mm
prio:high
|
2 |
C |
error |
|
9235 |
68d |
71d
|
29/29 |
6d14h |
68bcd8b6e0b1
locking/rwsem: Fix logic error in rwsem_del_waiter()
|
|
possible deadlock in gup_fast_fallback (2)
mm
|
4 |
C |
|
|
21 |
23d |
111d
|
29/29 |
21d |
b5cbacd7f86f
procfs: avoid fetching build ID while holding VMA lock
|
|
WARNING in folio_remove_rmap_ptes
mm
|
-1 |
C |
|
|
1 |
142d |
155d
|
29/29 |
21d |
61f67c230a5e
mm/vma: fix anon_vma UAF on mremap() faulted, unfaulted merge
|
|
INFO: rcu detected stall in purge_vmap_node
mm
|
1 |
C |
error |
|
2 |
139d |
135d
|
29/29 |
21d |
5747435e0fd4
mm/vmalloc: prevent RCU stalls in kasan_release_vmalloc_node
|
|
INFO: task hung in __rmap_walk_file
mm
|
1 |
C |
error |
|
7 |
139d |
229d
|
29/29 |
21d |
b7880cb166ab
migrate: correct lock ordering for hugetlb file folios
|
|
WARNING in blkdev_common_ioctl
mm
|
-1 |
C |
|
|
5 |
169d |
166d
|
29/29 |
126d |
a58383fa45c7
block: add allocation size check in blkdev_pr_read_keys()
|
|
WARNING in memory_failure
mm
|
-1 |
C |
|
|
4 |
224d |
246d
|
29/29 |
140d |
77008e1b2ef7
mm/huge_memory: do not change split_huge_page*() target order silently
|
|
WARNING: refcount bug in __vma_enter_locked
mm
|
13 |
C |
done |
|
27 |
175d |
183d
|
29/29 |
140d |
faf3c923523e
mm: fix vma_start_write_killable() signal handling
|
|
KMSAN: kernel-infoleak in hugetlbfs_read_iter
fs
mm
|
9 |
C |
|
|
7 |
199d |
198d
|
29/29 |
140d |
de8798965fd0
mm/memfd: fix information leak in hugetlb folios
|
|
WARNING in raw_ioctl
usb
mm
|
-1 |
C |
|
|
664 |
171d |
214d
|
29/29 |
140d |
a5160af78be7
usb: raw-gadget: cap raw_io transfer length to KMALLOC_MAX_SIZE
|
|
WARNING in hugetlb_vma_assert_locked
mm
|
-1 |
C |
|
|
8 |
244d |
246d
|
29/29 |
189d |
cec944dd329f
hugetlbfs: move lock assertions after early returns in huge_pmd_unshare()
dd83609b8898
hugetlbfs: skip VMAs without shareable locks in hugetlb_vmdelete_list
|
|
WARNING in xfs_init_fs_context
mm
|
-1 |
syz |
|
|
21 |
228d |
331d
|
29/29 |
190d |
0f41997b1b2b
xfs: don't use __GFP_NOFAIL in xfs_init_fs_context
|
|
general protection fault in unpin_user_pages_dirty_lock
mm
|
2 |
C |
|
|
4 |
261d |
262d
|
29/29 |
209d |
e3c05b6e370c
mm/gup: remove record_subpages()
|
|
WARNING in ext4_init_orphan_info
ext4
mm
|
-1 |
C |
done |
|
5 |
236d |
261d
|
29/29 |
210d |
0a6ce20c1564
ext4: verify orphan file size is not too big
|
|
WARNING: bad unlock balance in copy_process
mm
|
4 |
C |
|
|
304 |
235d |
361d
|
29/29 |
210d |
4ec3c15462b9
futex: Use correct exit on failure from futex_hash_allocate_default()
|
|
INFO: task hung in v9fs_file_fsync
fs
mm
|
1 |
C |
done |
|
14 |
242d |
282d
|
29/29 |
210d |
e8fe3f07a357
9p/trans_fd: p9_fd_request: kick rx thread if EPOLLIN
|
|
WARNING in max_vclocks_store
mm
net
|
-1 |
C |
|
|
3 |
270d |
505d
|
29/29 |
210d |
e9f35294e18d
ptp: Add a upper bound on max_vclocks
|
|
WARNING in nfsd_file_cache_init
mm
|
-1 |
C |
error |
|
4 |
234d |
232d
|
29/29 |
210d |
f7dfa0f31b13
slub: Don't call lockdep_unregister_key() for immature kmem_cache.
|
|
WARNING in try_to_migrate_one (3)
mm
|
-1 |
C |
done |
done |
6 |
267d |
291d
|
29/29 |
224d |
cf1b80dc31a1
mm: pass page directly instead of using folio_page
|
|
BUG: unable to handle kernel paging request in move_pages
mm
|
8 |
C |
|
|
4 |
299d |
314d
|
29/29 |
230d |
aba6faec0103
userfaultfd: fix a crash in UFFDIO_MOVE when PMD is a migration entry
|
|
WARNING in move_page_tables
mm
|
-1 |
C |
|
|
3 |
288d |
288d
|
29/29 |
230d |
772e5b4a5e83
mm/mremap: fix WARN with uffd that has remap events disabled
|
|
WARNING in follow_page_pte
input
usb
mm
|
-1 |
C |
done |
|
6 |
294d |
294d
|
29/29 |
230d |
cf1b80dc31a1
mm: pass page directly instead of using folio_page
|
|
WARNING in path_noexec
mm
fs
|
-1 |
C |
done |
|
14318 |
239d |
324d
|
29/29 |
239d |
secretmem: use SB_I_NOEXEC
|
|
WARNING in move_to_new_folio (2)
gfs2
mm
|
-1 |
C |
error |
|
398 |
303d |
323d
|
29/29 |
261d |
5c8f12cf1e64
gfs2: Set .migrate_folio in gfs2_{rgrp,meta}_aops
|
|
kernel BUG in try_to_unmap_one (2)
mm
|
-1 |
C |
|
|
7 |
331d |
356d
|
29/29 |
265d |
9f1e8cd0b7c4
mm/vmscan: fix hwpoisoned large folio handling in shrink_folio_list
|
|
kernel BUG in sanity_check_pinned_pages
mm
|
-1 |
C |
|
|
3 |
340d |
358d
|
29/29 |
265d |
5afb4bf9fc62
io_uring/rsrc: fix folio unpinning
|
|
possible deadlock in upgrade_mmap_lock_carefully (2)
ntfs3
mm
|
4 |
C |
error |
|
6 |
335d |
353d
|
29/29 |
265d |
a49f0abd8959
Revert "fs/ntfs3: Replace inode_trylock with inode_lock"
|
|
kernel BUG in alloc_hugetlb_folio_reserve
mm
|
-1 |
C |
done |
|
98 |
319d |
508d
|
29/29 |
265d |
c39b87456411
mm/hugetlb: don't crash when allocating a folio if there are no resv
|
|
WARNING in comedi_unlocked_ioctl
comedi
mm
|
-1 |
C |
|
|
262 |
310d |
327d
|
29/29 |
265d |
08ae4b20f5e8
comedi: Fail COMEDI_INSNLIST ioctl if n_insns is too large
|
|
BUG: Bad rss-counter state (5)
mm
|
-1 |
C |
done |
|
2365 |
318d |
744d
|
29/29 |
292d |
43e027e41423
mm: memory: extend finish_fault() to support large folio
|
|
WARNING in vma_modify
mm
|
-1 |
C |
done |
|
21 |
346d |
355d
|
29/29 |
294d |
0cf4b1687a18
mm/vma: reset VMA iterator on commit_merge() OOM failure
|
|
WARNING in move_to_new_folio
mm
|
-1 |
C |
done |
|
1366 |
323d |
409d
|
29/29 |
323d |
906d7ce3b59d
jfs: implement migrate_folio for jfs_metapage_aops
|
|
WARNING: locking bug in __set_page_owner
mm
|
4 |
C |
error |
inconclusive |
179425 |
478d |
570d
|
29/29 |
326d |
d40797d6720e
kasan: make kasan_record_aux_stack_noalloc() the default behaviour
|
|
general protection fault in lock_vma_under_rcu
mm
|
2 |
syz |
done |
|
3 |
457d |
456d
|
28/29 |
350d |
f35ab95ca0af
mm: replace vm_lock and detached flag with a reference count
|
|
general protection fault in sys_mremap
mm
|
2 |
C |
|
|
35 |
418d |
420d
|
28/29 |
350d |
36eed5400805
mm/mremap: do not set vrm->vma NULL immediately prior to checking it
|
|
KMSAN: uninit-value in __alloc_frozen_pages_noprof
mm
|
7 |
C |
|
|
6 |
446d |
460d
|
28/29 |
351d |
8fe9ed44dc29
mm/page_alloc: fix uninitialized variable
|
|
possible deadlock in efivarfs_actor
mm
|
4 |
C |
|
|
8 |
428d |
444d
|
28/29 |
351d |
dec1277875a5
efivarfs: use I_MUTEX_CHILD nested lock to traverse variables on resume
|
|
BUG: unable to handle kernel paging request in vma_merge_existing_range
mm
|
8 |
C |
done |
|
8 |
405d |
433d
|
28/29 |
351d |
41e6ddcaa0f1
mm/vma: add give_up_on_oom option on modify/merge, use in uffd release
|
|
BUG: sleeping function called from invalid context in folio_mc_copy
mm
|
5 |
C |
done |
|
5415 |
393d |
426d
|
28/29 |
351d |
2d900efff915
mm/migrate: fix sleep in atomic for large folios and buffer heads
|
|
possible deadlock in zswap_store
mm
|
4 |
C |
inconclusive |
|
24203 |
456d |
507d
|
28/29 |
385d |
4dff389c9f1d
Revert "mm: zswap: fix race between [de]compression and CPU hotunplug"
|
|
general protection fault in account_kernel_stack (3)
mm
|
2 |
C |
|
|
7 |
511d |
526d
|
28/29 |
386d |
4db3d750ac7e
nvmet: Don't overflow subsysnqn
|
|
WARNING in lock_list_lru_of_memcg
mm
|
-1 |
syz |
|
|
2 |
467d |
529d
|
28/29 |
386d |
62e72d2cf702
mm, madvise: fix potential workingset node list_lru leaks
|
|
general protection fault in do_migrate_pages
mm
|
2 |
C |
|
|
2 |
536d |
553d
|
28/29 |
386d |
091c1dd2d4df
mm/mempolicy: fix migrate_to_node() assuming there is at least one VMA in a MM
|
|
kernel BUG in const_folio_flags (2)
fs
mm
|
-1 |
syz |
|
|
3 |
490d |
550d
|
28/29 |
386d |
3203b3ab0fcf
mm/filemap: don't call folio_test_locked() without a reference in next_uptodate_folio()
|
|
KASAN: slab-use-after-free Read in __mmap_region
mm
|
19 |
C |
|
|
7 |
499d |
537d
|
28/29 |
386d |
42c4e4b20d9c
mm: correctly reference merged VMA
|
|
BUG: stack guard page was hit in sys_open
mm
v9fs
|
-1 |
C |
|
|
11 |
526d |
562d
|
28/29 |
386d |
4acb665cf4f3
netfs: Work around recursion by abandoning retry if nothing read
|
|
general protection fault in vsscanf (2)
mm
|
2 |
C |
|
|
11 |
522d |
527d
|
28/29 |
386d |
d3ac65d274b3
mm: huge_memory: handle strsep not finding delimiter
|
|
KASAN: out-of-bounds Read in copy_from_kernel_nofault
mm
|
17 |
C |
done |
|
1628 |
427d |
604d
|
28/29 |
386d |
e4137f08816b
mm, kasan, kmsan: instrument copy_from/to_kernel_nofault
|
|
WARNING: locking bug in __rmqueue_pcplist
mm
|
4 |
C |
|
|
11148 |
477d |
570d
|
28/29 |
386d |
d40797d6720e
kasan: make kasan_record_aux_stack_noalloc() the default behaviour
|
|
possible deadlock in page_cache_ra_unbounded
mm
fs
|
4 |
C |
error |
done |
163 |
492d |
1253d
|
28/29 |
448d |
6f861765464f
fs: Block writes to mounted block devices
|
|
general protection fault in swap_reclaim_full_clusters
mm
|
2 |
C |
|
|
1530 |
559d |
567d
|
28/29 |
527d |
dcf32ea7eced
mm: swapfile: fix cluster reclaim work crash on rotational devices
|
|
possible deadlock in lock_mm_and_find_vma (2)
mm
|
4 |
C |
|
|
6626 |
562d |
634d
|
28/29 |
559d |
58a039e679fe
mm: split critical region in remap_file_pages() and invoke LSMs in between
|
|
WARNING in copy_huge_pmd
mm
|
-1 |
C |
done |
|
361 |
594d |
611d
|
28/29 |
560d |
47fa30118f02
mm/huge_memory: check pmd_special() only after pmd_present()
|
|
memory leak in corrupted (2)
mm
exfat
|
3 |
syz |
|
|
432 |
619d |
786d
|
28/29 |
582d |
c290fe508eee
exfat: resolve memory leak from exfat_create_upcase_table()
|
|
possible deadlock in __mmap_lock_do_trace_start_locking
mm
|
4 |
C |
done |
done |
30 |
668d |
761d
|
27/29 |
637d |
7d6be67cfdd4
mm: mmap_lock: replace get_memcg_path_buf() with on-stack buffer
|
|
BUG: unable to handle kernel paging request in list_lru_add
mm
|
10 |
C |
done |
done |
11367 |
683d |
996d
|
27/29 |
637d |
aacd897d4d75
Revert "bcachefs: Mark bch_inode_info as SLAB_ACCOUNT"
|
|
possible deadlock in __mmap_lock_do_trace_released
mm
|
4 |
C |
done |
done |
5 |
677d |
694d
|
27/29 |
646d |
7d6be67cfdd4
mm: mmap_lock: replace get_memcg_path_buf() with on-stack buffer
|
|
KASAN: slab-use-after-free Read in lru_add_fn
nilfs
mm
|
19 |
C |
inconclusive |
|
68 |
700d |
748d
|
27/29 |
651d |
49ae997f8f0d
nilfs2: add missing check for inode numbers on directory entries
nilfs2: add missing check for inode numbers on directory entries
|
|
BUG: corrupted list in __folio_undo_large_rmappable
mm
|
8 |
C |
error |
|
36 |
686d |
686d
|
27/29 |
651d |
1390a3334a48
mm/hugetlb: fix kernel NULL pointer dereference when migrating hugetlb folio
|
|
inconsistent lock state in valid_state (3)
mm
|
4 |
C |
error |
|
376 |
663d |
712d
|
27/29 |
651d |
7d6be67cfdd4
mm: mmap_lock: replace get_memcg_path_buf() with on-stack buffer
|
|
possible deadlock in try_to_wake_up (5)
mm
|
4 |
C |
|
|
88 |
654d |
727d
|
27/29 |
651d |
7d6be67cfdd4
mm: mmap_lock: replace get_memcg_path_buf() with on-stack buffer
|
|
general protection fault in dequeue_hugetlb_folio_nodemask (2)
mm
|
2 |
C |
done |
|
14 |
709d |
715d
|
27/29 |
651d |
09a533622842
mm/hugetlb: guard dequeue_hugetlb_folio_nodemask against NUMA_NO_NODE uses
|
|
BUG: sleeping function called from invalid context in vma_alloc_folio_noprof
mm
|
5 |
C |
done |
|
1 |
681d |
680d
|
27/29 |
651d |
280e36f0d5b9
nsfs: use cleanup guard
|
|
UBSAN: shift-out-of-bounds in try_to_shrink_lruvec
mm
|
-1 |
C |
done |
|
4 |
727d |
729d
|
27/29 |
651d |
462966dc7d70
mm: vmscan: reset sc->priority on retry
|
|
WARNING in unmap_page_range (3)
mm
|
-1 |
C |
|
|
169 |
789d |
799d
|
26/29 |
676d |
f8572367eaff
mm/memory: fix missing pte marker for !page on pte zaps
|
|
INFO: rcu detected stall in sys_wait4 (4)
mm
|
1 |
C |
done |
done |
2 |
743d |
776d
|
26/29 |
684d |
fb66df20a720
net/sched: taprio: extend minimum interval restriction to entire cycle too
|
|
kernel BUG in __vma_reservation_common
mm
|
-1 |
C |
error |
|
8 |
718d |
751d
|
26/29 |
687d |
8daf9c702ee7
mm/hugetlb: do not call vma_add_reservation upon ENOMEM
|
|
KMSAN: uninit-value in virtqueue_add (4)
mm
|
7 |
C |
|
|
203184 |
715d |
877d
|
25/29 |
715d |
61b258b0d2f6
x86: call instrumentation hooks from copy_mc.c
|
|
WARNING in __page_table_check_ptes_set
mm
|
-1 |
C |
|
|
2 |
770d |
766d
|
25/29 |
721d |
c88033efe9a3
mm/userfaultfd: reset ptes when close() for wr-protected ones
|
|
WARNING in __mod_memcg_lruvec_state
cgroups
mm
|
-1 |
C |
|
|
270 |
750d |
785d
|
25/29 |
721d |
4f687281012e
mm: do not update memcg stats for NR_{FILE/SHMEM}_PMDMAPPED
|
|
possible deadlock in move_pages
mm
|
4 |
C |
|
|
206 |
790d |
799d
|
25/29 |
734d |
30af24facf0a
userfaultfd: fix deadlock warning when locking src and dst VMAs
|
|
KASAN: slab-use-after-free Read in __vma_reservation_common
mm
|
19 |
syz |
|
|
13 |
761d |
775d
|
25/29 |
734d |
37641efaa3fa
hugetlb: check for anon_vma prior to folio allocation
|
|
WARNING: refcount bug in __reset_page_owner
mm
|
13 |
C |
|
|
93128 |
768d |
799d
|
25/29 |
734d |
f5c12105c15f
mm,page_owner: fix refcount imbalance
|
|
BUG: unable to handle kernel paging request in copy_from_kernel_nofault (2)
mm
|
8 |
C |
|
|
2 |
775d |
785d
|
25/29 |
734d |
c6f48506ba30
arm32, bpf: Reimplement sign-extension mov instruction
|
|
WARNING in __hugetlb_cgroup_uncharge_folio
mm
|
-1 |
syz |
|
|
3 |
764d |
772d
|
25/29 |
734d |
b76b46902c2d
mm/hugetlb: fix missing hugetlb_lock for resv uncharge
|
|
kernel BUG in sg_init_one
mm
|
-1 |
C |
|
|
1032 |
790d |
800d
|
25/29 |
734d |
9c500835f279
mm: zswap: fix kernel BUG in sg_init_one
|
|
WARNING in hugetlb_change_protection (2)
mm
|
-1 |
C |
|
|
631 |
755d |
782d
|
25/29 |
734d |
c5977c95dff1
mm/userfaultfd: allow hugetlb change protection upon poison entry
|
|
BUG: bad usercopy in raw_getsockopt
mm
hardening
|
-1 |
C |
done |
|
4 |
827d |
827d
|
25/29 |
777d |
c8fba5d6df5e
can: raw: fix getsockopt() for new CAN_RAW_XL_VCID_OPTS
|
|
BUG: unable to handle kernel paging request in copy_from_kernel_nofault
mm
|
8 |
C |
done |
|
5 |
821d |
920d
|
25/29 |
789d |
32019c659ecf
x86/mm: Disallow vsyscall page read for copy_from_kernel_nofault()
|
|
kernel BUG in move_pages
mm
|
-1 |
C |
done |
|
2 |
871d |
867d
|
25/29 |
848d |
5d4747a6cc8e
userfaultfd: avoid huge_zero_page in UFFDIO_MOVE
|
|
WARNING in get_pte_pfn
mm
io-uring
|
-1 |
C |
error |
|
2 |
877d |
887d
|
25/29 |
848d |
c28ac3c7eb94
mm/mglru: skip special VMAs in lru_gen_look_around()
|
|
WARNING in __folio_rmap_sanity_checks
mm
|
-1 |
C |
done |
|
168 |
870d |
875d
|
25/29 |
848d |
9c5938694cd0
mm/rmap: silence VM_WARN_ON_FOLIO() in __folio_rmap_sanity_checks()
|
|
KMSAN: uninit-value in shrinker_alloc
mm
|
7 |
syz |
|
|
2 |
898d |
876d
|
25/29 |
848d |
7fba9420b726
mm: shrinker: use kvzalloc_node() from expand_one_shrinker_info()
|
|
general protection fault in hugetlb_vma_lock_write
mm
|
2 |
C |
done |
|
110 |
901d |
941d
|
25/29 |
858d |
187da0f8250a
hugetlb: fix null-ptr-deref in hugetlb_vma_lock_write
|
|
WARNING in unmap_page_range (2)
mm
|
-1 |
C |
done |
|
2112 |
898d |
924d
|
25/29 |
858d |
4980e837cab7
mm/pagemap: fix wr-protect even if PM_SCAN_WP_MATCHING not set
|
|
BUG: unable to handle kernel paging request in __pte_offset_map_lock
mm
|
8 |
C |
|
|
2 |
933d |
944d
|
25/29 |
858d |
9aa1345d66b8
mm: fix oops when filemap_map_pmd() without prealloc_pte
|
|
WARNING in page_copy_sane
fs
mm
|
-1 |
C |
done |
|
3 |
986d |
982d
|
25/29 |
888d |
a08c7193e4f1
mm/filemap: remove hugetlb special casing in filemap.c
|
|
BUG: Bad page map (7)
mm
|
-1 |
C |
done |
|
19 |
969d |
991d
|
25/29 |
888d |
ce60f27bb62d
mm: abstract moving to the next PFN
|
|
WARNING in try_grab_page
xfs
mm
|
-1 |
C |
|
|
48 |
973d |
1059d
|
23/29 |
958d |
f443fd5af5db
crypto, cifs: fix error handling in extract_iter_to_sg()
|
|
possible deadlock in shmem_uncharge (2)
mm
|
4 |
C |
done |
|
29 |
1046d |
1044d
|
23/29 |
958d |
509f006932de
shmem: fix quota lock nesting in huge hole handling
|
|
KASAN: slab-out-of-bounds Read in mt_validate_nulls
mm
|
17 |
C |
error |
done |
15 |
1058d |
1056d
|
23/29 |
958d |
ae80b4041984
mm: validate the mm before dropping the mmap lock
|
|
kernel BUG in validate_mm (2)
mm
|
-1 |
C |
unreliable |
done |
217 |
1058d |
1057d
|
23/29 |
958d |
ae80b4041984
mm: validate the mm before dropping the mmap lock
|
|
WARNING in __gup_longterm_locked
mm
|
-1 |
C |
error |
|
90 |
1057d |
1058d
|
23/29 |
958d |
6cd06ab12d1a
gup: make the stack expansion warning a bit more targeted
|
|
inconsistent lock state in lru_gen_rotate_memcg
mm
|
4 |
C |
|
|
61 |
1062d |
1073d
|
23/29 |
972d |
814bc1de03ea
mm/mglru: make memcg_lru->lock irq safe
|
|
kernel BUG in page_table_check_clear
mm
|
-1 |
C |
error |
|
17 |
1085d |
1118d
|
22/29 |
1061d |
44d0fb387b53
mm: page_table_check: Ensure user pages are not slab pages
0143d148d1e8
usb: usbfs: Enforce page requirements for mmap
|
|
kernel BUG in find_mergeable_anon_vma
mm
|
-1 |
C |
error |
|
4 |
1180d |
1176d
|
22/29 |
1084d |
3dd443254941
mm: enable maple tree RCU mode by default
|
|
KASAN: null-ptr-deref Read in filemap_fault
mm
udf
|
11 |
C |
done |
|
112 |
1112d |
1125d
|
22/29 |
1084d |
38a55db9877c
filemap: Handle error return from __filemap_get_folio()
|
|
KMSAN: uninit-value in ondemand_readahead
fs
mm
|
7 |
C |
|
|
221 |
1181d |
1345d
|
22/29 |
1084d |
3e35102666f8
fs/cramfs/inode.c: initialize file_ra_state
|
|
KMSAN: kernel-infoleak in _copy_to_iter (8)
mm
|
21 |
C |
|
|
21180 |
1084d |
1178d
|
22/29 |
1084d |
8222d5910dae
xfrm: Zero padding when dumping algos and encap
|
|
WARNING in split_huge_page_to_list (2)
mm
|
-1 |
C |
error |
|
2334 |
1109d |
1372d
|
22/29 |
1084d |
4737edbbdd49
mm/huge_memory.c: warn with pr_warn_ratelimited instead of VM_WARN_ON_ONCE_FOLIO
|
|
KASAN: slab-use-after-free Read in mas_next_entry
mm
|
19 |
syz |
error |
|
3 |
1146d |
1149d
|
22/29 |
1084d |
f4e9e0e69468
mm/mempolicy: fix use-after-free of VMA iterator
|
|
kernel BUG in hpage_collapse_scan_file
mm
|
-1 |
C |
unreliable |
|
3 |
1136d |
1173d
|
22/29 |
1084d |
2ce0bdfebc74
mm: khugepaged: fix kernel BUG in hpage_collapse_scan_file()
|
|
WARNING in mbind_range
mm
|
-1 |
C |
error |
|
3 |
1234d |
1234d
|
22/29 |
1084d |
17dc622c7b0f
maple_tree: fix mas_prev() and mas_find() state handling
|
|
BUG: bad usercopy in con_font_op
hardening
mm
|
-1 |
C |
done |
|
1 |
1181d |
1181d
|
22/29 |
1084d |
18365ebf23f3
tty: vt: protect KD_FONT_OP_GET_TALL from unbound access
|
|
BUG: bad usercopy in put_cmsg
hardening
mm
|
-1 |
C |
|
|
3 |
1199d |
1200d
|
22/29 |
1084d |
2558b8039d05
net: use a bounce buffer for copying skb->mark
|
|
INFO: task hung in write_cache_pages (2)
mm
fs
|
1 |
C |
done |
|
36 |
1112d |
1182d
|
22/29 |
1084d |
fb3592c41a44
migrate_pages: fix deadlock in batched migration
|
|
WARNING: CPU: NUM PID: NUM at mm/page_alloc.c:LINE get_page_from_freeli
mm
erofs
|
-1 |
C |
error |
|
1 |
1255d |
1251d
|
22/29 |
1084d |
12724ba38992
erofs: fix kvcalloc() misuse with __GFP_NOFAIL
|
|
memory leak in prctl
mm
|
3 |
C |
|
|
1 |
1257d |
1253d
|
22/29 |
1084d |
a1193de562f5
mm: fix vma->anon_name memory leak for anonymous shmem VMAs
|
|
BUG: sleeping function called from invalid context in folio_copy
mm
|
5 |
C |
unreliable |
|
271 |
1769d |
1767d
|
22/29 |
1141d |
715cbfd6c5c5
mm/migrate: Add folio_migrate_copy()
|
|
WARNING in alloc_charge_hpage
mm
|
-1 |
C |
error |
|
112 |
1237d |
1307d
|
22/29 |
1188d |
e031ff96b334
mm: khugepaged: allow page allocation fallback to eligible nodes
dec1d352de5c
mm: replace VM_WARN_ON to pr_warn if the node is offline with __GFP_THISNODE
|
|
KASAN: use-after-free Read in mas_next_nentry
fs
mm
|
19 |
C |
error |
done |
343 |
1297d |
1491d
|
22/29 |
1188d |
59f2f4b8a757
fs/userfaultfd: Fix maple tree iterator in userfaultfd_unregister()
|
|
general protection fault in list_lru_add
mm
|
8 |
C |
done |
|
1125 |
1237d |
1525d
|
22/29 |
1188d |
ae085d7f9365
mm: kfence: fix missing objcg housekeeping for SLAB
|
|
WARNING in change_protection
mm
|
-1 |
C |
unreliable |
|
13 |
1330d |
1335d
|
22/29 |
1188d |
515778e2d790
mm/uffd: fix warning without PTE_MARKER_UFFD_WP compiled in
|
|
KASAN: use-after-free Read in unregister_shrinker (2)
mm
|
19 |
C |
error |
|
3799 |
1300d |
1344d
|
22/29 |
1188d |
bd86c69dae65
NFSD: unregister shrinker when nfsd_init_net() fails
|
|
KMSAN: uninit-value in mpol_rebind_mm (2)
mm
|
7 |
C |
|
|
11 |
1442d |
1566d
|
22/29 |
1188d |
018160ad314d
mm/mempolicy: fix uninit-value in mpol_rebind_policy()
|
|
kernel BUG in __filemap_get_folio
mm
|
-1 |
C |
done |
|
814 |
1327d |
1498d
|
22/29 |
1188d |
63b1898fffcd
XArray: Disallow sibling entries of nodes
|
|
KMSAN: uninit-value in mpol_rebind_task (2)
mm
|
7 |
C |
|
|
7 |
1444d |
1604d
|
22/29 |
1188d |
018160ad314d
mm/mempolicy: fix uninit-value in mpol_rebind_policy()
|
|
WARNING: locking bug in hugetlb_no_page
mm
|
4 |
C |
|
|
1 |
1292d |
1292d
|
22/29 |
1188d |
04ada095dcfc
hugetlb: don't delete vma_lock in hugetlb MADV_DONTNEED processing
|
|
KASAN: slab-out-of-bounds Read in __fscache_acquire_volume
fs
mm
|
17 |
C |
done |
done |
1 |
1367d |
1366d
|
22/29 |
1188d |
9f0933ac026f
fscache: fix OOB Read in __fscache_acquire_volume
|
|
BUG: sleeping function called from invalid context in break_ksm
mm
|
5 |
C |
|
|
9 |
1315d |
1315d
|
22/29 |
1188d |
d7c0e68dab98
mm/ksm: convert break_ksm() to use walk_page_range_vma()
|
|
general protection fault in hugetlbfs_parse_param
mm
|
2 |
C |
|
|
5 |
1304d |
1315d
|
22/29 |
1188d |
26215b7ee923
hugetlbfs: fix null-ptr-deref in hugetlbfs_parse_param()
|
|
memory leak in xas_nomem
mm
|
3 |
C |
|
|
1 |
1464d |
1460d
|
22/29 |
1188d |
69a37a8ba1b4
mm/huge_memory: Fix xarray node memory leak
|
|
WARNING in find_vma
mm
|
-1 |
C |
done |
|
2616 |
1365d |
1388d
|
22/29 |
1188d |
d6f35446d076
binder_alloc: Add missing mmap_lock calls when using the VMA
44e602b4e52f
binder_alloc: add missing mmap_lock calls when using the VMA
|
|
WARNING in erofs_iget
erofs
mm
|
-1 |
C |
|
|
6 |
1309d |
1359d
|
22/29 |
1188d |
1dd73601a1cb
erofs: fix order >= MAX_ORDER warning due to crafted negative i_size
|
|
WARNING in nsim_map_alloc_elem
mm
|
-1 |
C |
error |
|
7 |
1382d |
1403d
|
22/29 |
1188d |
d0b80a9edb1a
netdevsim: Avoid allocation warnings triggered from user space
|
|
BUG: unable to handle kernel paging request in truncate_inode_partial_folio
fs
mm
|
8 |
C |
error |
|
4 |
1389d |
1428d
|
22/29 |
1188d |
84ac013046cc
secretmem: fix unhandled fault in truncate
|
|
WARNING in hugetlb_wp
mm
|
-1 |
C |
error |
|
3 |
1300d |
1306d
|
22/29 |
1188d |
f347454d0341
mm/gup: disallow FOLL_FORCE|FOLL_WRITE on hugetlb mappings
|
|
WARNING in register_shrinker_prepared
f2fs
mm
|
-1 |
C |
error |
|
64 |
1449d |
1451d
|
22/29 |
1188d |
5035ebc644ae
mm: shrinkers: introduce debugfs interface for memory shrinkers
|
|
WARNING in __split_huge_page_tail
arch
mm
io-uring
|
-1 |
C |
error |
|
155 |
1237d |
1309d
|
22/29 |
1188d |
5aae9265ee1a
mm: prep_compound_tail() clear page->private
|
|
KASAN: use-after-free Read in register_shrinker_prepared (2)
mm
|
19 |
C |
done |
|
1145 |
1300d |
1338d
|
22/29 |
1188d |
bd86c69dae65
NFSD: unregister shrinker when nfsd_init_net() fails
|
|
BUG: unable to handle kernel NULL pointer dereference in smack_inode_permission
lsm
mm
|
10 |
C |
|
|
1 |
1294d |
1290d
|
22/29 |
1188d |
578b565b240a
9p/fd: Fix write overflow in p9_read_work
|
|
KASAN: invalid-free in free_prealloced_shrinker
mm
|
24 |
C |
done |
|
3 |
1408d |
1407d
|
22/29 |
1188d |
14773bfa70e6
mm: shrinkers: fix double kfree on shrinker name
|
|
KASAN: use-after-free Read in hugetlb_fault
mm
|
22 |
C |
|
|
383 |
1216d |
1312d
|
22/29 |
1188d |
04ada095dcfc
hugetlb: don't delete vma_lock in hugetlb MADV_DONTNEED processing
|
|
general protection fault in end_page_writeback
mm
nilfs
|
2 |
C |
error |
done |
2 |
1287d |
1318d
|
22/29 |
1188d |
512c5ca01a36
nilfs2: fix nilfs_sufile_mark_dirty() not set segment usage as dirty
|
|
BUG: sleeping function called from invalid context in vm_area_dup
mm
|
5 |
C |
|
|
3 |
1315d |
1315d
|
22/29 |
1188d |
d7c0e68dab98
mm/ksm: convert break_ksm() to use walk_page_range_vma()
|
|
KASAN: use-after-free Read in hugetlb_handle_userfault
mm
|
19 |
C |
|
|
4 |
1333d |
1356d
|
22/29 |
1188d |
958f32ce832b
mm: hugetlb: fix UAF in hugetlb_handle_userfault
|
|
BUG: Bad page map (5)
mm
|
19 |
C |
|
|
35 |
1229d |
1487d
|
22/29 |
1188d |
4d24de9425f7
mm: MADV_COLLAPSE: refetch vm_end after reacquiring mmap_lock
|
|
KASAN: use-after-free Read in mas_next_entry
fs
mm
|
19 |
C |
error |
|
16 |
1299d |
1312d
|
22/29 |
1188d |
59f2f4b8a757
fs/userfaultfd: Fix maple tree iterator in userfaultfd_unregister()
|
|
WARNING in sco_sock_sendmsg
mm
|
-1 |
C |
inconclusive |
|
2 |
1728d |
1728d
|
22/29 |
1322d |
0771cbb3b97d
Bluetooth: SCO: Replace use of memcpy_from_msg with bt_skb_sendmsg
|
|
WARNING in page_counter_cancel (3)
mm
cgroups
|
-1 |
C |
done |
|
22 |
1598d |
1648d
|
20/29 |
1541d |
269bda9e7da4
mptcp: Check reclaim amount before reducing allocation
|
|
WARNING: refcount bug in sys_memfd_secret
mm
|
13 |
C |
done |
done |
4217 |
1675d |
1678d
|
20/29 |
1541d |
87066fdd2e30
Revert "mm/secretmem: use refcount_t instead of atomic_t"
|
|
KASAN: use-after-free Read in unmap_page_range (2)
mm
|
19 |
C |
unreliable |
|
4 |
1651d |
1669d
|
20/29 |
1541d |
337546e83fc7
mm/oom_kill.c: prevent a race between process_mrelease and exit_mmap
|
|
WARNING in page_counter_uncharge
cgroups
mm
|
-1 |
C |
done |
done |
2 |
1609d |
1609d
|
20/29 |
1541d |
269bda9e7da4
mptcp: Check reclaim amount before reducing allocation
|
|
WARNING in new_slab
mm
|
-1 |
C |
inconclusive |
|
2 |
1588d |
1618d
|
20/29 |
1541d |
c12837d1bb31
ref_tracker: use __GFP_NOFAIL more carefully
|
|
kernel BUG in find_lock_entries
mm
|
-1 |
C |
done |
|
10 |
1589d |
1752d
|
20/29 |
1541d |
d417b49fff3e
mm/filemap.c: remove bogus VM_BUG_ON
|
|
kernel BUG at mm/vmalloc.c:LINE! (2)
mm
|
-1 |
C |
done |
done |
6605 |
1736d |
2147d
|
20/29 |
1584d |
537cf4e3cc2f
xsk: Fix umem cleanup bug at socket destruct
|
|
possible deadlock in __fs_reclaim_acquire
mm
|
4 |
syz |
unreliable |
|
672 |
1776d |
1788d
|
20/29 |
1659d |
187ad460b841
mm/page_alloc: avoid page allocator recursion with pagesets.lock held
|
|
BUG: sleeping function called from invalid context in stack_depot_save
mm
|
5 |
C |
unreliable |
|
8490 |
1758d |
1788d
|
20/29 |
1659d |
187ad460b841
mm/page_alloc: avoid page allocator recursion with pagesets.lock held
|
|
general protection fault in try_grab_compound_head
io-uring
mm
|
7 |
C |
done |
|
5 |
1761d |
1789d
|
20/29 |
1659d |
d08af0a59684
mm/hugetlb: fix refs calculation from unaligned @vaddr
|
|
WARNING in do_proc_bulk
mm
|
-1 |
C |
inconclusive |
|
3 |
1850d |
1851d
|
20/29 |
1659d |
4f2629ea67e7
USB: usbfs: Don't WARN about excessively large memory allocations
|
|
KMSAN: kernel-infoleak in copy_page_to_iter (2)
fs
mm
|
9 |
C |
|
|
2099 |
1755d |
2813d
|
20/29 |
1659d |
ce3aba43599f
ext4: fix kernel infoleak via ext4_extent_header
|
|
WARNING in tcindex_alloc_perfect_hash
mm
|
-1 |
C |
inconclusive |
|
349 |
1789d |
1964d
|
20/29 |
1659d |
3f2db250099f
net: sched: fix warning in tcindex_alloc_perfect_hash
|
|
KASAN: use-after-free Read in check_all_holdout_tasks_trace
mm
|
19 |
syz |
done |
|
4 |
1762d |
1832d
|
20/29 |
1659d |
1d10bf55d85d
rcu-tasks: Don't delete holdouts within trc_inspect_reader()
|
|
kernel BUG in remove_inode_hugepages
fs
mm
|
-1 |
C |
unreliable |
|
3 |
1744d |
1744d
|
20/29 |
1659d |
c7b1850dfb41
hugetlb: don't pass page cache pages to restore_reserve_on_error
|
|
KASAN: out-of-bounds Read in kfence_guarded_free
kasan
mm
|
17 |
C |
error |
|
20 |
1970d |
1981d
|
20/29 |
1811d |
2b8305260fb3
kfence, kasan: make KFENCE compatible with KASAN
|
|
BUG: sleeping function called from invalid context in mm_access
mm
|
5 |
C |
done |
|
684 |
1958d |
1961d
|
20/29 |
1874d |
38e891849003
kbuild: lto: fix module versioning
|
|
WARNING in rds_rdma_extra_size
mm
|
-1 |
C |
done |
|
165 |
1939d |
1964d
|
19/29 |
1904d |
a11148e6fcce
net/rds: restrict iovecs length for RDS_CMSG_RDMA_ARGS
|
|
kernel BUG at include/linux/highmem.h:LINE!
mm
|
-1 |
C |
error |
|
32 |
2008d |
2013d
|
19/29 |
1904d |
0060ef3b4e6d
mm: support THPs in zero_user_segments
|
|
WARNING in squashfs_read_table
mm
squashfs
|
-1 |
C |
inconclusive |
|
50 |
1934d |
1963d
|
19/29 |
1904d |
506220d2ba21
squashfs: add more sanity checks in xattr id lookup
|
|
WARNING in bpf_prog_test_run_raw_tp
mm
|
-1 |
C |
done |
|
36 |
1953d |
1964d
|
19/29 |
1904d |
7ac6ad051150
bpf: Reject too big ctx_size_in for raw_tp test run
|
|
WARNING in qrtr_tun_write_iter
mm
|
-1 |
C |
error |
|
57 |
1932d |
1963d
|
19/29 |
1904d |
2a80c1581237
net/qrtr: restrict user-controlled length in qrtr_tun_write_iter()
|
|
possible deadlock in hugetlb_cow
mm
|
4 |
C |
unreliable |
|
341 |
1974d |
1998d
|
19/29 |
1904d |
e7dd91c456a8
mm/hugetlb: fix deadlock in hugetlb_cow error path
|
|
INFO: rcu detected stall in sys_exit_group (6)
mm
|
1 |
C |
|
|
4 |
2065d |
2071d
|
19/29 |
1904d |
c583bcb8f5ed
rcu: Don't invoke try_invoke_on_locked_down_task() with irqs disabled
|
|
general protection fault in unlink_file_vma
mm
|
2 |
C |
done |
|
1 |
2090d |
2086d
|
15/29 |
2018d |
bc4fe4cdd602
mm: mmap: Fix general protection fault in unlink_file_vma()
|
|
INFO: rcu detected stall in exit_group
mm
|
1 |
C |
done |
done |
1 |
2055d |
2085d
|
15/29 |
2018d |
1d0e850a49a5
afs: Fix cell removal
|
|
WARNING in wp_page_copy
mm
|
-1 |
syz |
done |
done |
9 |
2291d |
2368d
|
15/29 |
2018d |
c3e5ea6ee574
mm: avoid data corruption on CoW fault into PFN-mapped VMA
|
|
kernel panic: System is deadlocked on memory
mm
|
2 |
C |
done |
|
43 |
2144d |
2142d
|
15/29 |
2018d |
9066e5cfb73c
mm, oom: make the calculation of oom badness more accurate
|
|
general protection fault in madvise_cold_or_pageout_pte_range
mm
|
2 |
C |
done |
|
3 |
2071d |
2081d
|
15/29 |
2052d |
ce2684254bd4
mm: validate pmd after splitting
|
|
KASAN: use-after-free Read in do_madvise
io-uring
mm
|
19 |
syz |
error |
|
4 |
2103d |
2105d
|
15/29 |
2064d |
7867fd7cc44e
mm: madvise: fix vma user-after-free
|
|
kernel BUG at mm/khugepaged.c:LINE!
mm
|
-1 |
C |
done |
|
30 |
2105d |
2117d
|
15/29 |
2078d |
f3f99d63a815
khugepaged: adjust VM_BUG_ON_MM() in __khugepaged_enter()
|
|
possible deadlock in shmem_fallocate (4)
mm
|
4 |
C |
done |
|
81 |
2129d |
2344d
|
15/29 |
2078d |
3e338d3c95c7
staging: android: ashmem: Fix lockdep warning for write operation
|
|
general protection fault in khugepaged
mm
|
2 |
C |
done |
|
3 |
2136d |
2148d
|
15/29 |
2078d |
594cced14ad3
khugepaged: fix null-pointer dereference due to race
|
|
general protection fault in unpin_user_pages
mm
|
2 |
C |
done |
|
13 |
2198d |
2198d
|
15/29 |
2140d |
f78cdbd75a57
rds: fix crash in rds_info_getsockopt()
|
|
WARNING in __mmdrop
mm
|
-1 |
syz |
done |
|
14 |
2495d |
2504d
|
15/29 |
2159d |
3d2c7d370475
Revert "vhost: access vq metadata through kernel virtual address"
|
|
WARNING in __vm_enough_memory (2)
mm
|
-1 |
syz |
done |
|
6 |
2230d |
2233d
|
15/29 |
2169d |
dadbd85f2afc
mm: Fix MREMAP_DONTUNMAP accounting on VMA merge
|
|
possible deadlock in shmem_mfill_atomic_pte
mm
|
4 |
C |
done |
|
82 |
2196d |
2248d
|
15/29 |
2169d |
94b7cc01da5a
mm: shmem: disable interrupt when acquiring info->lock in userfaultfd_copy path
|
|
possible deadlock in shmem_uncharge
mm
|
4 |
C |
done |
|
101 |
2197d |
2236d
|
15/29 |
2169d |
ea0dfeb4209b
shmem: fix possible deadlocks on shmlock_user_lock
|
|
WARNING: bad unlock balance in __get_user_pages_remote
mm
|
4 |
C |
done |
|
15 |
2240d |
2241d
|
15/29 |
2208d |
c7b6a566b985
mm/gup: Mark lock taken only after a successful retake
|
|
KASAN: stack-out-of-bounds Write in mpol_to_str
mm
|
21 |
C |
done |
|
23 |
2249d |
2253d
|
15/29 |
2208d |
aa9f7d5172fa
mm: mempolicy: require at least one nodeid for MPOL_PREFERRED
|
|
BUG: unable to handle kernel paging request in kernel_get_mempolicy
mm
|
8 |
C |
done |
|
1 |
2245d |
2242d
|
15/29 |
2208d |
ba841078cd05
mm/mempolicy: Allow lookup_node() to handle fatal signal
|
|
KASAN: slab-out-of-bounds Write in mpol_parse_str
mm
|
21 |
C |
done |
|
3 |
2328d |
2324d
|
15/29 |
2290d |
c7a91bc7c2e1
mm/mempolicy.c: fix out of bounds write in mpol_parse_str()
|
|
general protection fault in memcg_flush_percpu_vmstats
mm
cgroups
|
2 |
C |
error |
|
19 |
2400d |
2463d
|
14/29 |
2371d |
7961eee39784
mm: memcontrol: fix NULL-ptr deref in percpu stats flush
|
|
KASAN: slab-out-of-bounds Write in validate_chain
hardening
mm
|
21 |
syz |
done |
|
6 |
2517d |
2532d
|
12/29 |
2465d |
95fa145479fb
bpf: sockmap/tls, close can race with map free
|
|
KASAN: slab-out-of-bounds Read in corrupted (2)
hardening
mm
|
17 |
syz |
done |
|
3 |
2497d |
2547d
|
12/29 |
2465d |
95fa145479fb
bpf: sockmap/tls, close can race with map free
|
|
KASAN: use-after-free Read in corrupted (3)
mm
|
19 |
syz |
done |
|
1 |
2527d |
2527d
|
12/29 |
2465d |
95fa145479fb
bpf: sockmap/tls, close can race with map free
|
|
WARNING in cgroup_rstat_updated
cgroups
mm
|
-1 |
syz |
done |
|
1 |
2485d |
2485d
|
12/29 |
2465d |
95fa145479fb
bpf: sockmap/tls, close can race with map free
|
|
KASAN: use-after-free Read in unregister_shrinker
mm
|
19 |
syz |
done |
|
3 |
2543d |
2548d
|
12/29 |
2487d |
689d7ba4895b
nfsd: fix cleanup of nfsd_reply_cache_init on failure
|
|
memory leak in __memcg_init_list_lru_node
mm
|
3 |
C |
|
|
3 |
2543d |
2557d
|
12/29 |
2513d |
3510955b3271
mm/list_lru.c: fix memory leak in __memcg_init_list_lru_node
|
|
general protection fault in load_elf_binary
fs
mm
|
2 |
C |
done |
|
15 |
2611d |
2616d
|
12/29 |
2539d |
cc338010a233
fs/binfmt_elf.c: free PT_INTERP filename ASAP
|
|
WARNING: locking bug in copy_process
mm
|
4 |
C |
done |
|
3 |
2572d |
2574d
|
12/29 |
2539d |
c3b7112df86b
fork: do not release lock that wasn't taken
|
|
KASAN: use-after-free Read in get_mem_cgroup_from_mm
mm
cgroups
|
19 |
C |
done |
|
375 |
2585d |
2758d
|
12/29 |
2539d |
c3f3ce049f7d
userfaultfd: use RCU to free the task struct when fork fails
|
|
BUG: bad usercopy in __check_heap_object (3)
mm
hardening
|
-1 |
C |
|
|
287 |
2811d |
2881d
|
12/29 |
2542d |
1f4aace60b0e
fs/seq_file.c: simplify seq_file iteration code and interface
|
|
kernel panic: corrupted stack end in wb_workfn
mm
|
2 |
C |
done |
|
14 |
2704d |
2704d
|
12/29 |
2604d |
ef82bcfa671b
sctp: use memdup_user instead of vmemdup_user
|
|
WARNING: bad usercopy in fanotify_read
hardening
mm
|
-1 |
C |
done |
|
5 |
2633d |
2634d
|
11/29 |
2613d |
b2d22b6bb33a
fanotify: Allow copying of file handle to userspace
|
|
KASAN: use-after-free Read in filemap_fault
mm
fs
|
19 |
C |
|
|
277 |
2696d |
2707d
|
11/29 |
2613d |
6b4c9f446981
filemap: drop the mmap_sem for all blocking operations
|
|
possible deadlock in shmem_fallocate (2)
mm
|
4 |
C |
|
|
1325 |
2638d |
2847d
|
11/29 |
2617d |
fb4415a12632
staging: android: ashmem: Don't call fallocate() with ashmem_mutex held.
|
|
possible deadlock in __do_page_fault
fs
mm
|
4 |
C |
|
|
820 |
2638d |
2806d
|
11/29 |
2617d |
fb4415a12632
staging: android: ashmem: Don't call fallocate() with ashmem_mutex held.
|
|
kernel BUG at mm/slab.c:LINE! (3)
mm
|
-1 |
C |
done |
|
14 |
2624d |
2751d
|
11/29 |
2624d |
bc6e019b6ee6
fou: Prevent unbounded recursion in GUE error handler also with UDP-Lite
|
|
KASAN: stack-out-of-bounds in do_raw_spin_lock
hardening
mm
|
17 |
C |
|
|
1 |
2699d |
2699d
|
11/29 |
2639d |
44039e00171b
fou6: Prevent unbounded recursion in GUE error handler
|
|
KASAN: out-of-bounds Read in update_curr
hardening
mm
|
17 |
syz |
|
|
1 |
2699d |
2699d
|
11/29 |
2639d |
44039e00171b
fou6: Prevent unbounded recursion in GUE error handler
|
|
general protection fault in list_lru_count_one
mm
|
2 |
C |
|
|
12 |
2872d |
2871d
|
11/29 |
2679d |
8e04944f0ea8
mm,vmscan: Allow preallocating memory for register_shrinker().
|
|
general protection fault in transparent_hugepage_enabled
mm
|
2 |
C |
|
|
626 |
2702d |
2711d
|
11/29 |
2689d |
7635d9cbe832
mm, thp, proc: report THP eligibility for each vma
|
|
WARNING in userfaultfd_ioctl
mm
fs
|
-1 |
C |
|
|
11 |
2722d |
2731d
|
11/29 |
2707d |
01e881f5a1fc
userfaultfd: check VM_MAYWRITE was set after verifying the uffd is registered
|
|
WARNING in alloc_pages_vma
mm
|
-1 |
C |
|
|
98 |
2726d |
2729d
|
11/29 |
2717d |
356ff8a9a78f
Revert "mm, thp: consolidate THP gfp handling into alloc_hugepage_direct_gfpmask"
|
|
WARNING in __put_task_struct (2)
mm
|
-1 |
C |
|
|
17 |
2779d |
2788d
|
11/29 |
2753d |
fe9bc1644918
RDMA/restrack: Protect from reentry to resource return path
|
|
kernel BUG at mm/shmem.c:LINE!
mm
|
-1 |
C |
|
|
30 |
2879d |
2881d
|
11/29 |
2753d |
552446a41661
shmem: Convert shmem_add_to_page_cache to XArray
|
|
WARNING in try_charge
xfs
cgroups
mm
|
-1 |
syz |
|
|
649 |
2800d |
2853d
|
10/29 |
2800d |
3100dab2aa09
mm: memcontrol: print proper OOM header when no eligible victim left
|
|
BUG: unable to handle kernel paging request in kfree (2)
mm
|
8 |
C |
|
|
297 |
2827d |
2879d
|
10/29 |
2802d |
7913690dcc5e
net/9p/client.c: version pointer uninitialized
|
|
WARNING: bad usercopy in __kvm_write_guest_page
hardening
mm
|
-1 |
C |
|
|
4 |
2930d |
2923d
|
8/29 |
2833d |
0a06d4256674
KVM: vmx: use local variable for current_vmptr when emulating VMPTRST
|
|
kernel BUG at fs/userfaultfd.c:LINE! (2)
fs
mm
|
-1 |
C |
|
|
8 |
2854d |
2872d
|
8/29 |
2849d |
31e810aa1033
userfaultfd: remove uffd flags from vma->vm_flags if UFFD_EVENT_FORK fails
|
|
kernel BUG at mm/slab.c:LINE! (2)
hardening
mm
|
-1 |
C |
|
|
701 |
2865d |
2879d
|
8/29 |
2850d |
6e6fddc78323
bpf: fix panic due to oob in bpf_prog_test_run_skb
|
|
kernel BUG at mm/gup.c:LINE!
mm
|
-1 |
syz |
|
|
4 |
2886d |
2884d
|
8/29 |
2864d |
24962af7e104
fs, elf: make sure to page align bss in load_elf_library
bb177a732c43
mm: do not bug_on on incorrect length in __mm_populate()
|
|
KASAN: use-after-free Read in corrupted
mm
|
19 |
C |
|
|
2 |
2933d |
2936d
|
8/29 |
2879d |
543b8f8662fe
fuse: don't keep dead fuse_conn at fuse_fill_super().
|
|
WARNING: refcount bug in should_fail
mm
|
13 |
C |
|
|
3 |
2980d |
3011d
|
5/29 |
2941d |
8e04944f0ea8
mm,vmscan: Allow preallocating memory for register_shrinker().
|
|
general protection fault in kernfs_kill_sb
mm
|
2 |
C |
|
|
29 |
2941d |
2978d
|
5/29 |
2941d |
8e04944f0ea8
mm,vmscan: Allow preallocating memory for register_shrinker().
|
|
general protection fault in __mem_cgroup_free
cgroups
mm
|
2 |
C |
|
|
22 |
2967d |
2979d
|
5/29 |
2941d |
4eaf431f6f71
memcg: fix per_node_info cleanup
|
|
possible deadlock in shmem_file_llseek
mm
|
4 |
C |
|
|
4432 |
2996d |
3059d
|
4/29 |
2987d |
cb57469c9573
staging: android: ashmem: Fix lockdep issue during llseek
|
|
possible deadlock in get_user_pages_unlocked
mm
|
4 |
C |
|
|
5 |
3013d |
3036d
|
4/29 |
2987d |
96312e61282a
mm/gup.c: teach get_user_pages_unlocked to handle FOLL_NOWAIT
|
|
kernel panic: Out of memory and no killable processes... (2)
mm
|
2 |
C |
|
|
1 |
3041d |
3041d
|
4/29 |
2987d |
0537250fdc6c
netfilter: x_tables: make allocation less aggressive
|
|
KASAN: use-after-free Read in __do_page_fault
mm
|
19 |
syz |
|
|
679 |
3120d |
3131d
|
4/29 |
3024d |
cb0631fd3cf9
x86/mm: fix use-after-free of vma during userfaultfd fault
|
|
WARNING in usercopy_warn
hardening
mm
|
-1 |
C |
|
|
171 |
3032d |
3050d
|
4/29 |
3026d |
79a8a642bf05
net: Whitelist the skbuff_head_cache "cb" field
|
|
WARNING in __check_heap_object
hardening
mm
|
-1 |
C |
|
|
5173 |
3051d |
3123d
|
4/29 |
3033d |
ab9ee8e38b29
sctp: Define usercopy region in SCTP proto slab cache
|
|
WARNING in __alloc_pages_slowpath
mm
|
-1 |
C |
|
|
9435 |
3036d |
3065d
|
4/29 |
3033d |
0c75f10312a3
staging: android: ion: Add __GFP_NOWARN for system contig heap
|
|
general protection fault in page_mapping
fs
mm
|
2 |
C |
|
|
46 |
3060d |
3088d
|
4/29 |
3037d |
7d11f77f84b2
RDS: null pointer dereference in rds_atomic_free_op
|
|
BUG: unable to handle kernel NULL pointer dereference in page_mapping
fs
mm
|
10 |
C |
|
|
4 |
3080d |
3083d
|
4/29 |
3037d |
7d11f77f84b2
RDS: null pointer dereference in rds_atomic_free_op
|
|
kernel BUG at fs/userfaultfd.c:LINE!
mm
fs
|
-1 |
C |
|
|
3 |
3080d |
3078d
|
4/29 |
3037d |
0cbb4b4f4c44
userfaultfd: clear the vma->vm_userfaultfd_ctx if UFFD_EVENT_FORK fails
|
|
KASAN: use-after-free Read in handle_userfault
fs
mm
|
19 |
C |
|
|
151 |
3071d |
3134d
|
3/29 |
3059d |
0cbb4b4f4c44
userfaultfd: clear the vma->vm_userfaultfd_ctx if UFFD_EVENT_FORK fails
|
|
WARNING in free_kthread_struct
mm
|
-1 |
C |
|
|
136405 |
3119d |
3123d
|
3/29 |
3102d |
e10237cc76ef
kthread: zero the kthread data structure
|