riscv/fixes test error: can't ssh into the instance
|
|
|
|
48 |
41d |
59d
|
27/28 |
never |
1ff95eb2bebd
riscv: Fix RISCV_ALTERNATIVE_EARLY
|
riscv/fixes boot error: can't ssh into the instance (3)
|
|
|
|
210 |
146d |
200d
|
25/28 |
145d |
f5c12105c15f
mm,page_owner: fix refcount imbalance
|
upstream boot error: can't ssh into the instance (16)
|
|
|
|
415 |
226d |
279d
|
25/28 |
203d |
f6564fce256a
mm, kmsan: fix infinite recursion due to RCU critical section
|
riscv/fixes boot error: failed to read from qemu: EOF
|
|
|
|
54 |
312d |
321d
|
25/28 |
256d |
420370f3ae3d
riscv: Check if the code to patch lies in the exit section
|
KASAN: use-after-free Read in j1939_session_get_by_addr
|
C |
done |
error |
66 |
1794d |
1806d
|
25/28 |
276d |
d966635b384b
can: j1939: transport: make sure the aborted session will be deactivated only once
|
riscv/fixes boot error: can't ssh into the instance (2)
|
|
|
|
109 |
495d |
501d
|
23/28 |
468d |
25abe0db9243
riscv: Fix kfence now that the linear mapping can be backed by PUD/P4D/PGD
|
kernel BUG in vmf_insert_pfn_prot
|
C |
done |
done |
1933 |
519d |
1123d
|
22/28 |
488d |
a5b44c4adb16
drm/fbdev-generic: Always use shadow buffering
|
unregister_netdevice: waiting for DEV to become free (7)
|
C |
inconclusive |
|
20422 |
494d |
696d
|
22/28 |
494d |
266e9b3475ba
RDMA/siw: Remove namespace check from siw_netdev_event()
|
INFO: task hung in tcindex_partial_destroy_work
|
C |
done |
unreliable |
84 |
1342d |
1477d
|
22/28 |
494d |
8c710f75256b
net/sched: Retire tcindex classifier
|
WARNING: fbcon: Driver 'vkmsdrmfb' missed to adjust virtual screen size (0x0 vs. 64x768)
|
C |
unreliable |
error |
24 |
827d |
826d
|
22/28 |
494d |
1935f0deb611
drm/fb-helper: set x/yres_virtual in drm_fb_helper_check_var
|
WARNING: can't access registers at entry_SYSCALL_64_after_hwframe
|
C |
|
|
15 |
601d |
606d
|
22/28 |
494d |
00c8f01c4e84
objtool: Fix ORC 'signal' propagation
|
WARNING in j1939_xtp_rx_abort_one
|
C |
done |
|
379 |
630d |
1167d
|
22/28 |
494d |
d0553680f94c
can: j1939: fix errant WARN_ON_ONCE in j1939_session_deactivate
|
upstream-arm64 build error
|
|
|
|
11 |
602d |
605d
|
22/28 |
494d |
d54170812ef1
arm64: fix .idmap.text assertion for large kernels
|
WARNING in submit_bio_checks
|
C |
done |
unreliable |
1851 |
937d |
1556d
|
22/28 |
546d |
57e95e4670d1
block: fix and cleanup bio_check_ro
|
KASAN: use-after-free Read in hci_cmd_timeout
|
C |
done |
error |
371 |
675d |
1987d
|
22/28 |
551d |
97dfaf073f58
Bluetooth: hci_sync: cancel cmd_timer if hci_open failed
|
WARNING in __dev_queue_xmit
|
C |
done |
|
16774 |
598d |
812d
|
22/28 |
598d |
dc633700f00f
net/af_packet: check len when min_header_len equals to 0
b12e924a2f5b
net/ieee802154: don't warn zero-sized raw_sendmsg()
3a4d061c699b
net/ieee802154: reject zero-sized raw_sendmsg()
|
INFO: task hung in addrconf_verify_work (6)
|
C |
done |
|
86 |
602d |
839d
|
22/28 |
598d |
ff1fa2081d17
net: tun: avoid disabling NAPI twice
|
KASAN: use-after-free Read in drm_gem_object_release_handle
|
C |
done |
|
362 |
679d |
1063d
|
22/28 |
598d |
24013314be6e
drm/shmem-helper: Remove errant put in error path
|
KASAN: slab-out-of-bounds Read in vxlan_vnifilter_dump_dev
|
C |
done |
|
30 |
928d |
929d
|
22/28 |
598d |
9d570741aec1
vxlan: do not feed vxlan_vnifilter_dump_dev with non vxlan devices
|
WARNING in bpf_check (3)
|
C |
done |
done |
1736 |
743d |
1677d
|
22/28 |
598d |
34dd3bad1a6f
bpf: Relax the requirement to use preallocated hash maps in tracing progs.
|
BUG: sleeping function called from invalid context in static_key_slow_inc
|
C |
done |
|
82 |
685d |
697d
|
22/28 |
598d |
af295e854a4e
l2tp: Don't sleep and disable BH under writer-side sk_callback_lock
|
KASAN: use-after-free Read in ath9k_hif_usb_rx_cb (2)
|
C |
done |
|
48810 |
795d |
1428d
|
22/28 |
598d |
0ac4827f78c7
ath9k: fix use-after-free in ath9k_hif_usb_rx_cb
|
KASAN: use-after-free Read in madvise_update_vma
|
C |
done |
|
38 |
962d |
980d
|
22/28 |
598d |
942341dcc574
mm: fix use-after-free when anon vma name is used after vma is freed
|
BUG: sleeping function called from invalid context in sk_psock_stop
|
C |
done |
|
232 |
799d |
857d
|
22/28 |
598d |
697fb80a5364
bpf: Fix sockmap calling sleepable function in teardown path
|
WARNING in __dma_map_sg_attrs
|
C |
inconclusive |
|
65 |
798d |
1048d
|
22/28 |
598d |
9e9fa6a9198b
udmabuf: Set the DMA mask for the udmabuf device (v2)
|
possible deadlock in p9_req_put
|
C |
done |
|
2815 |
708d |
798d
|
22/28 |
598d |
52f1c45dde91
9p: trans_fd/p9_conn_cancel: drop client lock earlier
|
WARNING in pskb_expand_head
|
C |
done |
done |
222 |
712d |
1359d
|
22/28 |
598d |
dbae2b062824
net: skb: introduce and use a single page frag cache
|
KASAN: use-after-free Read in __kernfs_remove
|
C |
done |
|
3985 |
737d |
781d
|
22/28 |
598d |
4abc99652812
kernfs: fix use-after-free in __kernfs_remove
|
INFO: task hung in synchronize_rcu (3)
|
C |
done |
done |
374 |
607d |
1545d
|
22/28 |
598d |
2d08935682ac
KVM: x86: Don't re-acquire SRCU lock in complete_emulated_io()
|
WARNING: suspicious RCU usage (5)
|
C |
done |
|
1 |
854d |
850d
|
20/28 |
843d |
f4e61f0c9add
x86/kvm: Fix broken irq restoration in kvm_wait
|
WARNING in drm_gem_shmem_vm_open
|
syz |
done |
done |
38 |
1018d |
1152d
|
20/28 |
885d |
0499f419b76f
video: vga16fb: Only probe for EGA and VGA 16 color graphic cards
|
INFO: task hung in usb_get_descriptor
|
C |
done |
done |
4149 |
947d |
1469d
|
20/28 |
885d |
363eaa3a450a
usbip: synchronize event handler with sysfs code paths
|
WARNING in cgroup_finalize_control
|
syz |
done |
done |
9 |
1089d |
1617d
|
20/28 |
951d |
7ee285395b21
cgroup: Make rebind_subsystems() disable v2 controllers all at once
|
WARNING in ref_tracker_dir_exit
|
C |
done |
|
16271 |
1007d |
1036d
|
20/28 |
951d |
34ac17ecbf57
ethtool: use ethnl_parse_header_dev_put()
|
WARNING in sta_info_insert_rcu
|
C |
done |
done |
2533 |
1045d |
1481d
|
20/28 |
951d |
a6555f844549
mac80211: Drop frames from invalid MAC address in ad-hoc mode
|
WARNING in loop_add
|
C |
done |
error |
64 |
1066d |
1880d
|
20/28 |
951d |
278167fd2f8f
block: add __must_check for *add_disk*() callers
|
kernel BUG at net/core/dev.c:LINE! (4)
|
C |
done |
done |
432 |
1035d |
1422d
|
20/28 |
951d |
f123cffdd8fe
net: netlink: af_netlink: Prevent empty skb by adding a check on len.
|
WARNING in bpf_warn_invalid_xdp_action
|
C |
done |
done |
8941 |
1007d |
1727d
|
20/28 |
951d |
2cbad989033b
bpf: Do not WARN in bpf_warn_invalid_xdp_action()
|
unregister_netdevice: waiting for DEV to become free (6)
|
C |
error |
|
13128 |
951d |
1070d
|
20/28 |
951d |
34ac17ecbf57
ethtool: use ethnl_parse_header_dev_put()
|
BUG: unable to handle kernel NULL pointer dereference in bpf
|
C |
done |
|
753 |
1008d |
1080d
|
20/28 |
951d |
ad10c381d133
bpf: Add missing map_delete_elem method to bloom filter map
|
unregister_netdevice: waiting for DEV to become free (5)
|
C |
done |
|
40035 |
1070d |
1315d
|
20/28 |
1070d |
0d7a7b2014b1
ipv6: remove extra dev_hold() for fallback tunnels
|
WARNING in taprio_change
|
C |
done |
|
746 |
1255d |
1491d
|
20/28 |
1070d |
ed8157f1ebf1
net: sched: tapr: prevent cycle_time == 0 in parse_taprio_schedule
|
WARNING in netlbl_cipsov4_add
|
C |
inconclusive |
|
4433 |
1133d |
1332d
|
20/28 |
1070d |
8ca34a13f7f9
net: cipso: fix warnings in netlbl_cipsov4_add_std
|
WARNING in cfg80211_connect
|
C |
done |
|
2320 |
1283d |
1474d
|
20/28 |
1070d |
1b5ab825d9ac
cfg80211: remove WARN_ON() in cfg80211_sme_connect
|
BUG: unable to handle kernel paging request in corrupted (3)
|
C |
done |
|
45 |
1078d |
1246d
|
20/28 |
1070d |
7a274727702c
io_uring: don't modify req->poll for rw
|
possible deadlock in loop_probe
|
C |
done |
|
20656 |
1191d |
1216d
|
20/28 |
1070d |
962bf783ef65
mtd: break circular locks in register_mtd_blktrans
|
linux-next build error (12)
|
|
|
|
63 |
1196d |
1295d
|
20/28 |
1070d |
7aae231ac93b
bpf: tcp: Limit calling some tcp cc functions to CONFIG_DYNAMIC_FTRACE
|
WARNING: suspicious RCU usage in bond_ipsec_add_sa (2)
|
C |
done |
|
540 |
1197d |
1484d
|
20/28 |
1070d |
b648eba4c69e
bonding: fix suspicious RCU usage in bond_ipsec_add_sa()
|
linux-next test error: unregister_netdevice: waiting for DEV to become free
|
|
|
|
2 |
1293d |
1293d
|
20/28 |
1070d |
0d7a7b2014b1
ipv6: remove extra dev_hold() for fallback tunnels
|
KASAN: slab-out-of-bounds Read in qrtr_endpoint_post (2)
|
C |
done |
|
41 |
1172d |
1536d
|
20/28 |
1070d |
ad9d24c9429e
net: qrtr: fix OOB Read in qrtr_endpoint_post
|
net-next test error: unregister_netdevice: waiting for DEV to become free
|
|
|
|
18 |
1293d |
1294d
|
20/28 |
1070d |
0d7a7b2014b1
ipv6: remove extra dev_hold() for fallback tunnels
|
BUG: MAX_LOCKDEP_ENTRIES too low!
|
C |
done |
|
179076 |
1255d |
1946d
|
20/28 |
1070d |
5dc33592e955
lockdep: Allow tuning tracing capacity constants.
|
possible deadlock in del_gendisk
|
C |
done |
|
158215 |
1133d |
1280d
|
20/28 |
1070d |
990e78116d38
block: loop: fix deadlock between open and remove
|
memory leak in rds_send_probe
|
C |
done |
|
27 |
1368d |
1910d
|
20/28 |
1070d |
49bfcbfd989a
net: rds: fix memory leak in rds_recvmsg
|
WARNING: still has locks held in io_sq_thread
|
C |
done |
|
8689 |
1282d |
1295d
|
20/28 |
1070d |
82734c5b1b24
io_uring: drop sqd lock before handling signals for SQPOLL
|
memory leak in h4_recv_buf
|
C |
done |
|
21 |
1179d |
1939d
|
20/28 |
1070d |
bb2853a6a421
tty: Fix data race between tiocsti() and flush_to_ldisc()
|
WARNING in sta_info_alloc
|
C |
done |
done |
145 |
1216d |
1469d
|
20/28 |
1070d |
0ee4d55534f8
mac80211: remove warning in ieee80211_get_sband()
|
WARNING: ODEBUG bug in cancel_delayed_work
|
C |
done |
|
3384 |
1086d |
1537d
|
20/28 |
1070d |
3a9d54b1947e
Bluetooth: Set CONF_NOT_COMPLETE as l2cap_chan default
|
possible deadlock in console_lock_spinning_enable
|
C |
done |
|
1693 |
1070d |
1943d
|
20/28 |
1070d |
c0070e1e6027
ttyprintk: Add TTY hangup callback.
|
WARNING in hsr_forward_skb
|
C |
done |
done |
1310 |
1284d |
2112d
|
20/28 |
1070d |
9d6803921a16
net: hsr: Reset MAC header for Tx path
|
INFO: task hung in hub_port_init
|
C |
done |
|
15888 |
1070d |
1469d
|
20/28 |
1070d |
258c81b341c8
usbip: give back URBs for unsent unlink requests during cleanup
|
net-next build error (3)
|
|
|
|
7 |
1348d |
1345d
|
20/28 |
1284d |
9c97921a51a0
net: fix building errors on powerpc when CONFIG_RETPOLINE is not set
|
INFO: task hung in addrconf_verify_work (4)
|
C |
done |
|
132 |
1332d |
1420d
|
20/28 |
1284d |
d349f9976868
net_sched: fix RTNL deadlock again caused by request_module()
|
general protection fault in rose_send_frame
|
C |
done |
done |
664 |
1425d |
2104d
|
19/28 |
1315d |
3b3fd068c56e
rose: Fix Null pointer dereference in rose_send_frame()
|
WARNING: HARDIRQ-safe -> HARDIRQ-unsafe lock order detected (2)
|
C |
done |
|
640 |
1379d |
1496d
|
19/28 |
1315d |
8d1ddb5e7937
fcntl: Fix potential deadlock in send_sig{io, urg}()
|
WARNING: filesystem loop2 was created with 512 inodes, the real maximum is 511, mounting anyway
|
|
|
|
2 |
1428d |
1423d
|
19/28 |
1315d |
dc889b8d4a81
bfs: don't use WARNING: string when it's just info.
|
KASAN: null-ptr-deref Write in bdi_put
|
C |
done |
done |
601 |
1371d |
1405d
|
19/28 |
1315d |
2d2f6f1b4799
block: pre-initialize struct block_device in bdev_alloc_inode
|
kernel BUG at net/core/skbuff.c:LINE! (3)
|
C |
done |
|
4399 |
1330d |
2447d
|
19/28 |
1315d |
afbc293add64
af_key: relax availability checks for skb size calculation
|
unregister_netdevice: waiting for DEV to become free (4)
|
C |
done |
|
50394 |
1315d |
1517d
|
19/28 |
1315d |
5399d52233c4
rxrpc: Fix deadlock around release of dst cached on udp tunnel
|
WARNING: filesystem loop5 was created with 512 inodes, the real maximum is 511, mounting anyway
|
|
|
|
2 |
1421d |
1417d
|
19/28 |
1315d |
dc889b8d4a81
bfs: don't use WARNING: string when it's just info.
|
WARNING: filesystem loop1 was created with 512 inodes, the real maximum is 511, mounting anyway
|
|
|
|
4 |
1428d |
1477d
|
19/28 |
1315d |
dc889b8d4a81
bfs: don't use WARNING: string when it's just info.
|
general protection fault in call_commit_handler
|
C |
done |
|
428 |
1371d |
1452d
|
19/28 |
1315d |
5122565188ba
wext: fix NULL-ptr-dereference with cfg80211's lack of commit()
|
WARNING: filesystem loop3 was created with 512 inodes, the real maximum is 511, mounting anyway
|
|
|
|
3 |
1413d |
1481d
|
19/28 |
1315d |
dc889b8d4a81
bfs: don't use WARNING: string when it's just info.
|
WARNING: filesystem loop4 was created with 512 inodes, the real maximum is 511, mounting anyway
|
|
|
|
3 |
1428d |
1423d
|
19/28 |
1315d |
dc889b8d4a81
bfs: don't use WARNING: string when it's just info.
|
upstream build error (11)
|
|
|
|
25 |
1371d |
1447d
|
15/28 |
1371d |
f78f63da916e
mm/process_vm_access: Add missing #include <linux/compat.h>
|
BUG: MAX_LOCKDEP_CHAIN_HLOCKS too low!
|
C |
done |
error |
25236 |
1609d |
2049d
|
15/28 |
1405d |
1a33e10e4a95
net: partially revert dynamic lockdep key changes
|
BUG: using __this_cpu_read() in preemptible code in trace_hardirqs_on
|
C |
done |
|
502745 |
1430d |
1462d
|
15/28 |
1428d |
f8e48a3dca06
lockdep: Fix preemption WARN for spurious IRQ-enable
|
INFO: trying to register non-static key in uhid_char_release
|
C |
done |
done |
26 |
1505d |
1683d
|
15/28 |
1428d |
bce1305c0ece
HID: core: Correctly handle ReportSize being zero
|
kernel panic: Fatal exception (3)
|
C |
done |
|
2 |
1462d |
1461d
|
15/28 |
1428d |
eadd1befdd77
netem: fix zero division in tabledist
|
WARNING in print_bfs_bug
|
C |
done |
|
14759 |
1460d |
1812d
|
15/28 |
1428d |
6d1823ccc480
lockdep: Optimize the memory usage of circular queue
|
INFO: task hung in io_uring_setup
|
C |
done |
|
51 |
1497d |
1502d
|
15/28 |
1428d |
7e84e1c7566a
io_uring: allow disabling rings during the creation
|
INFO: task hung in addrconf_verify_work (3)
|
C |
done |
|
75 |
1441d |
1476d
|
15/28 |
1428d |
0fedc63fadf0
net_sched: commit action insertions together
|
WARNING: ODEBUG bug in exit_to_user_mode_prepare
|
C |
done |
done |
27 |
1502d |
1508d
|
15/28 |
1428d |
77f4689de17c
fix regression in "epoll: Keep a reference on files added to the check list"
|
possible deadlock in _snd_pcm_stream_lock_irqsave
|
C |
done |
|
997 |
1459d |
1496d
|
15/28 |
1428d |
6564d0ad67ef
ALSA: ctl: Workaround for lockdep warning wrt card->ctl_files_rwlock
|
WARNING in percpu_ref_exit (2)
|
C |
done |
done |
272 |
1464d |
1759d
|
15/28 |
1428d |
c1e2148f8ecb
io_uring: free fixed_file_data after RCU grace period
|
bpf-next test error: BUG: program execution failed: executor 0: exit status 67
|
|
|
|
12 |
1460d |
1460d
|
15/28 |
1428d |
d25e2e9388ed
netfilter: restore NF_INET_NUMHOOKS
|
INFO: task hung in htable_put
|
C |
done |
done |
29 |
1701d |
1754d
|
15/28 |
1428d |
99b79c3900d4
netfilter: xt_hashlimit: unregister proc file before releasing mutex
|
WARNING: refcount bug in l2cap_chan_put
|
C |
inconclusive |
done |
13 |
1531d |
1694d
|
15/28 |
1428d |
b83764f9220a
Bluetooth: Fix kernel oops triggered by hci_adv_monitors_clear()
|
KASAN: global-out-of-bounds Read in vga16fb_imageblit
|
C |
done |
|
1071 |
1492d |
1777d
|
15/28 |
1466d |
bd018a6a75ce
video: fbdev: fix OOB read in vga_8planes_imageblit()
|
INFO: rcu detected stall in ext4_file_write_iter
|
C |
inconclusive |
done |
93 |
1525d |
2057d
|
15/28 |
1481d |
7e24969022cb
block: allow for_each_bvec to support zero len bvec
|
WARNING in restore_regulatory_settings
|
C |
done |
|
10414 |
1499d |
1743d
|
15/28 |
1481d |
47caf685a685
cfg80211: regulatory: reject invalid hints
|
kernel BUG at mm/hugetlb.c:LINE!
|
C |
done |
error |
10 |
1540d |
1653d
|
15/28 |
1489d |
15568299b7d9
hugetlbfs: prevent filesystem stacking of hugetlbfs
|
WARNING in ptrace_stop
|
C |
done |
|
1413 |
1540d |
1544d
|
15/28 |
1489d |
d136122f5845
sched: Fix race against ptrace_freeze_trace()
|
general protection fault in do_con_write
|
C |
done |
|
10703 |
1541d |
1776d
|
15/28 |
1489d |
ce684552a266
vt: Reject zero-sized screen buffer size.
|
WARNING in inc_nlink
|
C |
done |
|
26 |
1555d |
1658d
|
15/28 |
1489d |
facb03dddec0
fs/minix: don't allow getting deleted inodes
|
KASAN: use-after-free Read in get_block
|
C |
done |
|
23 |
1555d |
1632d
|
15/28 |
1489d |
270ef41094e9
fs/minix: reject too-large maximum file size
|
KASAN: use-after-free Read in l2cap_chan_close
|
C |
done |
|
37 |
1530d |
1711d
|
15/28 |
1489d |
f9c70bdc279b
Bluetooth: add a mutex lock to avoid UAF in do_enale_set
|
WARNING in vkms_vblank_simulate
|
C |
done |
|
12903 |
1495d |
2072d
|
15/28 |
1489d |
51f644b40b4b
drm/atomic-helper: reset vblank on crtc reset
|
WARNING in hsr_addr_subst_dest
|
C |
done |
done |
8639 |
1655d |
2112d
|
15/28 |
1518d |
4b793acdca00
hsr: use netdev_err() instead of WARN_ONCE()
|
BUG: unable to handle kernel paging request in netif_receive_generic_xdp
|
C |
done |
done |
160 |
1594d |
1730d
|
15/28 |
1540d |
96aa1b22bd6b
tun: correct header offsets in napi frags mode
|
BUG: using smp_processor_id() in preemptible [ADDR] code: syz-executor
|
C |
done |
|
22297 |
1596d |
1934d
|
15/28 |
1550d |
1378817486d6
tipc: block BH before using dst_cache
|
KASAN: null-ptr-deref Write in choke_reset
|
C |
done |
|
1441 |
1606d |
1639d
|
15/28 |
1550d |
8738c85c72b3
sch_choke: avoid potential panic in choke_reset()
|
WARNING in memtype_reserve
|
C |
done |
|
600 |
1611d |
1619d
|
15/28 |
1550d |
a0e710a7def4
USB: usbfs: fix mmap dma mismatch
|
BUG: unable to handle kernel paging request in do_xdp_generic
|
C |
done |
done |
7444 |
1624d |
1730d
|
15/28 |
1550d |
96aa1b22bd6b
tun: correct header offsets in napi frags mode
|
INFO: task syz-executor can't die for more than 143 seconds. (2)
|
C |
done |
|
2512 |
1551d |
1818d
|
15/28 |
1550d |
566d136289dc
pipe: Fix pipe_full() test in opipe_prep().
|
net-next test error: BUG: using smp_processor_id() in preemptible code in corrupted
|
|
|
|
4 |
1583d |
1585d
|
15/28 |
1550d |
811985365378
ext4: mballoc: Use this_cpu_read instead of this_cpu_ptr
|
net test error: BUG: using smp_processor_id() in preemptible code in corrupted
|
|
|
|
3 |
1581d |
1583d
|
15/28 |
1550d |
811985365378
ext4: mballoc: Use this_cpu_read instead of this_cpu_ptr
|
memory leak in bio_copy_user_iov
|
C |
done |
|
34 |
1760d |
1945d
|
15/28 |
1567d |
3b7995a98ad7
block: fix memleak when __blk_rq_map_user_iov() is failed
|
KASAN: slab-out-of-bounds Write in tcindex_set_parms
|
C |
done |
|
10 |
1660d |
1681d
|
15/28 |
1618d |
0d1c3530e1bd
net_sched: keep alloc_hash updated after hash allocation
|
WARNING: bad unlock balance in ucma_event_handler
|
C |
done |
|
143 |
1651d |
2315d
|
15/28 |
1618d |
7c11910783a1
RDMA/ucma: Put a lock around every call to the rdma_cm layer
|
WARNING: bad unlock balance in ucma_destroy_id
|
syz |
done |
|
44 |
1685d |
2239d
|
15/28 |
1618d |
7c11910783a1
RDMA/ucma: Put a lock around every call to the rdma_cm layer
|
possible deadlock in free_ioctx_users (2)
|
C |
done |
|
44 |
1648d |
1655d
|
15/28 |
1618d |
63f818f46af9
proc: Use a dedicated lock in struct pid
|
WARNING: ODEBUG bug in route4_change
|
C |
done |
|
68 |
1655d |
1679d
|
15/28 |
1618d |
ef299cc3fa1a
net_sched: cls_route: remove the right filter from hashtable
|
KASAN: use-after-free Write in release_tty
|
C |
done |
|
591 |
1655d |
1777d
|
15/28 |
1618d |
ca4463bf8438
vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console
|
INFO: task hung in hashlimit_mt_check_common
|
C |
done |
|
20 |
1699d |
1739d
|
15/28 |
1643d |
8d0015a7ab76
netfilter: xt_hashlimit: limit the max size of hashtable
c4a3922d2d20
netfilter: xt_hashlimit: reduce hashlimit_mutex scope for htable_put()
|
memory leak in dma_buf_ioctl
|
C |
done |
|
129 |
1693d |
1909d
|
15/28 |
1643d |
d1f37226431f
dma-buf: free dmabuf->name in dma_buf_release()
|
KASAN: use-after-free Read in n_tty_receive_buf_common
|
C |
done |
|
68 |
1698d |
1774d
|
15/28 |
1643d |
07e6124a1a46
vt: selection, close sel_buffer race
|
general protection fault in nf_flow_table_offload_setup
|
C |
done |
done |
835 |
1697d |
1730d
|
15/28 |
1643d |
a7da92c2c8a1
netfilter: flowtable: skip offload setup if disabled
|
KASAN: use-after-free Read in find_match
|
C |
done |
|
142 |
1696d |
1703d
|
15/28 |
1643d |
44bfa9c5e5f0
net: rtnetlink: fix bugs in rtnl_alt_ifname()
|
unregister_netdevice: waiting for DEV to become free (3)
|
C |
|
|
1864 |
1643d |
1705d
|
15/28 |
1643d |
e34f1753eebc
ethtool: limit bitset size
|
BUG: corrupted list in __nf_tables_abort
|
C |
done |
done |
29 |
1724d |
1731d
|
15/28 |
1672d |
eb014de4fd41
netfilter: nf_tables: autoload modules from the abort path
|
KASAN: slab-out-of-bounds Read in bitmap_ipmac_gc
|
C |
done |
done |
70 |
1713d |
1729d
|
15/28 |
1672d |
32c72165dbd0
netfilter: ipset: use bitmap infrastructure completely
|
possible deadlock in wg_set_device
|
C |
done |
|
33 |
1710d |
1715d
|
15/28 |
1678d |
ec31c2676a10
wireguard: noise: reject peers with low order public keys
|
memory leak in kobject_set_name_vargs (2)
|
C |
done |
|
47 |
1725d |
1910d
|
15/28 |
1700d |
cb626bf566eb
net-sysfs: Fix reference count leak
|
KASAN: slab-out-of-bounds Read in bitmap_port_gc
|
C |
done |
|
197 |
1714d |
1731d
|
15/28 |
1700d |
32c72165dbd0
netfilter: ipset: use bitmap infrastructure completely
|
KASAN: slab-out-of-bounds Read in bitmap_ipmac_list
|
C |
done |
|
108 |
1716d |
1731d
|
15/28 |
1700d |
32c72165dbd0
netfilter: ipset: use bitmap infrastructure completely
|
WARNING: refcount bug in cdev_get
|
C |
done |
|
105 |
1742d |
1882d
|
15/28 |
1700d |
68faa679b8be
chardev: Avoid potential use-after-free in 'chrdev_open()'
|
inconsistent lock state in rxrpc_put_client_conn
|
C |
done |
|
18198 |
1709d |
1715d
|
15/28 |
1700d |
963485d436cc
rxrpc: Fix call RCU cleanup using non-bh-safe locks
|
unregister_netdevice: waiting for DEV to become free (2)
|
C |
done |
|
385621 |
1705d |
2252d
|
15/28 |
1705d |
ddd9b5e3e765
net-sysfs: Call dev_hold always in rx_queue_add_kobject
|
general protection fault in j1939_sk_bind
|
syz |
done |
done |
22 |
1779d |
1806d
|
15/28 |
1705d |
00d4e14d2e4c
can: j1939: j1939_sk_bind(): take priv after lock is held
|
possible deadlock in mon_bin_vma_fault
|
C |
done |
|
11427 |
1766d |
2233d
|
15/28 |
1705d |
19e6317d24c2
usb: mon: Fix a deadlock in usbmon between mmap and read
|
BUG: Bad rss-counter state (3)
|
C |
unreliable |
done |
438 |
1904d |
2370d
|
15/28 |
1718d |
173d9d9fd3dd
mm/huge_memory: splitting set mapping+index before unfreeze
|
possible deadlock in flush_workqueue (2)
|
C |
done |
done |
256 |
1753d |
2186d
|
15/28 |
1718d |
e7c58097793e
hugetlbfs: revert "Use i_mmap_rwsem to fix page fault/truncate race"
|
KASAN: use-after-free Read in __queue_work (2)
|
C |
done |
done |
577 |
1936d |
2290d
|
15/28 |
1742d |
430ac66eb4c5
net/9p/trans_fd.c: fix race-condition by flushing workqueue before the kfree()
|
KASAN: slab-out-of-bounds Write in pipe_write
|
C |
done |
|
40 |
1773d |
1778d
|
15/28 |
1742d |
8f868d68d335
pipe: Fix missing mask update after pipe_wait()
|
WARNING in tty_set_termios
|
C |
done |
done |
1997 |
1901d |
2102d
|
15/28 |
1742d |
b36a1552d731
Bluetooth: hci_uart: check for missing tty operations
|
general protection fault in j1939_jsk_del
|
syz |
done |
|
132 |
1782d |
1806d
|
14/28 |
1781d |
fd81ebfe7975
can: j1939: socket: rework socket locking for j1939_sk_release() and j1939_sk_sendmsg()
|
INFO: task hung in synchronize_rcu
|
syz |
done |
|
1206 |
1781d |
1807d
|
14/28 |
1781d |
8a44119a98be
KVM: Fix NULL-ptr deref after kvm_create_vm fails
|
WARNING: suspicious RCU usage in kvm_dev_ioctl
|
C |
done |
|
333 |
1797d |
1808d
|
14/28 |
1781d |
e2d3fcaf939d
KVM: fix placement of refcount initialization
|
INFO: task hung in mpage_prepare_extent_to_map
|
syz |
done |
|
18606 |
1805d |
1813d
|
14/28 |
1781d |
4655e5e5f387
mm,thp: recheck each page before collapsing file THP
|
WARNING in generic_make_request_checks
|
C |
done |
|
7760 |
1782d |
2259d
|
13/28 |
1782d |
8b2ded1c94c0
block: don't warn when doing fsync on read-only devices
|
memory leak in copy_net_ns
|
C |
done |
|
422 |
1809d |
1847d
|
13/28 |
1788d |
82ecff655e79
keys: Fix memory leak in copy_net_ns
|
general protection fault in kernfs_add_one
|
C |
done |
|
98 |
1896d |
2220d
|
13/28 |
1788d |
ac43432cb1f5
driver core: Fix use-after-free and double free on glue directory
|
WARNING in kernfs_get
|
C |
done |
|
316 |
1898d |
2226d
|
13/28 |
1790d |
ac43432cb1f5
driver core: Fix use-after-free and double free on glue directory
|
INFO: task hung in vivid_stop_generating_vid_cap
|
C |
done |
done |
81 |
2174d |
2177d
|
13/28 |
1799d |
d65842f7126a
media: vb2: add waiting_in_dqbuf flag
|
memory leak in llc_ui_create (2)
|
C |
done |
|
19 |
1822d |
1942d
|
13/28 |
1806d |
c6ee11c39fcc
llc: fix sk_buff leak in llc_sap_state_process()
|
BUG: assuming atomic context at net/kcm/kcmsock.c:LINE
|
C |
done |
|
178 |
1842d |
1848d
|
13/28 |
1826d |
0355d6c1d591
net-backports: kcm: disable preemption in kcm_parse_func_strparser()
|
WARNING: suspicious RCU usage in netem_enqueue
|
C |
done |
|
16 |
1844d |
1858d
|
13/28 |
1826d |
159d2c7d8106
net-backports: sch_netem: fix rcu splat in netem_enqueue()
|
general protection fault in __apic_accept_irq
|
C |
done |
|
69 |
1854d |
1866d
|
13/28 |
1826d |
a073d7e3ad68
KVM: hyperv: Fix Direct Synthetic timers assert an interrupt w/o lapic_in_kernel
|
BUG: MAX_STACK_TRACE_ENTRIES too low! (2)
|
C |
done |
|
5045 |
1858d |
2026d
|
13/28 |
1826d |
12593b7467f9
locking/lockdep: Reduce space occupied by stack traces
|
general protection fault in qdisc_put
|
C |
done |
|
60 |
1853d |
1863d
|
13/28 |
1826d |
6efb971ba8ed
net_sched: let qdisc_put() accept NULL pointer
|
INFO: rcu detected stall in addrconf_dad_work
|
C |
done |
|
126 |
1856d |
1861d
|
13/28 |
1832d |
d4d6ec6dac07
sch_hhf: ensure quantum and hhf_non_hh_weight are non-zero
|
INFO: rcu detected stall in br_handle_frame
|
C |
done |
|
341 |
1856d |
1861d
|
13/28 |
1832d |
d4d6ec6dac07
sch_hhf: ensure quantum and hhf_non_hh_weight are non-zero
|
INFO: rcu detected stall in mld_ifc_timer_expire
|
C |
done |
|
152 |
1856d |
1863d
|
13/28 |
1832d |
d4d6ec6dac07
sch_hhf: ensure quantum and hhf_non_hh_weight are non-zero
|
INFO: rcu detected stall in netlink_sendmsg (2)
|
C |
done |
|
11 |
1857d |
1862d
|
13/28 |
1832d |
d4d6ec6dac07
sch_hhf: ensure quantum and hhf_non_hh_weight are non-zero
|
WARNING: refcount bug in nr_insert_socket
|
C |
done |
|
55 |
1900d |
1924d
|
13/28 |
1837d |
4638faac0327
netrom: hold sock when setting skb->destructor
|
KASAN: null-ptr-deref Write in rxrpc_unuse_local
|
C |
done |
|
4422 |
1889d |
1893d
|
12/28 |
1865d |
68553f1a6f74
rxrpc: Fix local refcounting
|
WARNING in smc_unhash_sk (2)
|
C |
done |
|
1047 |
1875d |
2011d
|
12/28 |
1875d |
cd2063604ea6
net/smc: avoid fallback in case of non-blocking connect
|
KASAN: slab-out-of-bounds Read in class_equal
|
syz |
done |
|
45 |
1896d |
1969d
|
12/28 |
1875d |
95fa145479fb
bpf: sockmap/tls, close can race with map free
|
general protection fault in tcf_ife_init
|
C |
done |
|
72 |
1897d |
1911d
|
12/28 |
1875d |
c8ec4632c6ac
ife: error out when nla attributes are empty
|
general protection fault in tls_sk_proto_close
|
syz |
done |
|
260 |
1875d |
1907d
|
12/28 |
1875d |
5d92e631b8be
net/tls: partially revert fix transition through disconnect with close
|
WARNING in debug_check_no_obj_freed
|
C |
done |
|
47 |
1876d |
1943d
|
12/28 |
1875d |
f9cedf1a9b1c
net/smc: do not schedule tx_work in SMC_CLOSED state
|
BUG: unable to handle kernel NULL pointer dereference in corrupted (4)
|
syz |
done |
done |
1 |
1939d |
1938d
|
12/28 |
1875d |
95fa145479fb
bpf: sockmap/tls, close can race with map free
|
kernel panic: corrupted stack end in corrupted
|
syz |
done |
|
17 |
1896d |
1943d
|
12/28 |
1875d |
95fa145479fb
bpf: sockmap/tls, close can race with map free
|
WARNING in __mark_chain_precision
|
C |
done |
|
105 |
1889d |
1925d
|
12/28 |
1889d |
b3b50f05dc50
bpf: fix precision bit propagation for BPF_ST instructions
|
kernel BUG at drivers/android/binder_alloc.c:LINE! (4)
|
C |
done |
|
26 |
1937d |
1945d
|
12/28 |
1897d |
bb4a2e48d510
binder: return errors from buffer copy functions
|
general protection fault in ovs_ct_exit
|
C |
done |
|
9888 |
1939d |
1944d
|
12/28 |
1897d |
b272a0ad7301
netns: restore ops before calling ops_exit_list
|
possible deadlock in userfaultfd_release
|
C |
done |
|
137 |
1936d |
2179d
|
12/28 |
1904d |
cbcfa130a911
fs/userfaultfd.c: disable irqs for fault_pending and event locks
|
WARNING: syz-executor still has locks held!
|
C |
done |
|
233 |
2140d |
2151d
|
12/28 |
1909d |
a72173ecfc67
Revert "exec: make de_thread() freezable"
|
general protection fault in __smc_diag_dump
|
syz |
done |
|
309 |
2099d |
2112d
|
12/28 |
1923d |
b03faa1fafc8
net/smc: postpone release of clcsock
|
KASAN: slab-out-of-bounds Read in rhashtable_walk_enter
|
C |
done |
|
48 |
1973d |
1976d
|
12/28 |
1939d |
526f5b851a96
tipc: fix modprobe tipc failed after switch order of device registration
|
KASAN: use-after-free Read in napi_gro_frags
|
C |
done |
|
16 |
1963d |
1965d
|
12/28 |
1945d |
a4270d6795b0
net-gro: fix use-after-free read in napi_gro_frags()
|
BUG: using __this_cpu_read() in preemptible code in ip6_finish_output
|
C |
done |
|
18807 |
2016d |
2022d
|
12/28 |
1949d |
28b05b928868
net: use correct this_cpu primitive in dev_recursion_level
|
WARNING: ODEBUG bug in netdev_freemem
|
syz |
done |
|
1042 |
1949d |
2114d
|
12/28 |
1949d |
a3c7cd0cdf11
batman-adv: mcast: fix multicast tt/tvlv worker locking
|
KASAN: use-after-free Read in __vb2_perform_fileio
|
C |
done |
|
786 |
1986d |
2177d
|
12/28 |
1949d |
d65842f7126a
media: vb2: add waiting_in_dqbuf flag
|
possible deadlock in acct_pin_kill
|
C |
done |
|
273 |
1992d |
2209d
|
12/28 |
1949d |
9419a3191dcb
acct_on(): don't mess with freeze protection
|
WARNING in compat_copy_entries (2)
|
syz |
done |
|
19416 |
1981d |
2414d
|
12/28 |
1967d |
7caa56f006e9
netfilter: ebtables: CONFIG_COMPAT: drop a bogus WARN_ON
|
WARNING in percpu_ref_kill_and_confirm
|
C |
done |
|
443 |
1995d |
2002d
|
12/28 |
1967d |
35fa71a030ca
io_uring: fail io_uring_register(2) on a dying io_uring instance
|
general protection fault in skb_queue_tail
|
C |
done |
|
35 |
2000d |
2001d
|
12/28 |
1967d |
032be5f19a94
rxrpc: fix race condition in rxrpc_input_packet()
|
WARNING in __kthread_bind_mask
|
C |
done |
|
2929 |
2001d |
2011d
|
12/28 |
1967d |
060586324648
io_uring: park SQPOLL thread if it's percpu
|
WARNING in io_uring_setup
|
C |
done |
|
3601 |
1991d |
2011d
|
12/28 |
1967d |
917257daa0fe
io_uring: only test SQPOLL cpu after we've verified it
|
general protection fault in xfrmi_decode_session
|
C |
done |
|
16694 |
1991d |
2063d
|
12/28 |
1967d |
6ed69184ed9c
xfrm: Reset secpath in xfrm failure
|
BUG: MAX_STACK_TRACE_ENTRIES too low!
|
C |
done |
|
1725 |
2027d |
2053d
|
11/28 |
2027d |
009bb421b6ce
workqueue, lockdep: Fix an alloc_workqueue() error path
|
general protection fault in __x86_indirect_thunk_rbx
|
C |
done |
|
16 |
2168d |
2168d
|
11/28 |
2034d |
d6367d624137
fs/locks: use properly initialized file_lock when unlocking.
|
WARNING: bad usercopy in corrupted (2)
|
C |
done |
|
12 |
2103d |
2150d
|
11/28 |
2035d |
bc6e019b6ee6
fou: Prevent unbounded recursion in GUE error handler also with UDP-Lite
|
net-next boot error: can't ssh into the instance
|
|
|
|
33 |
2085d |
2087d
|
11/28 |
2049d |
947b7ac135b1
Revert "block: cover another queue enter recursion via BIO_QUEUE_ENTERED"
|
BUG: unable to handle kernel NULL pointer dereference in corrupted (3)
|
C |
|
|
1 |
2107d |
2107d
|
11/28 |
2049d |
44039e00171b
fou6: Prevent unbounded recursion in GUE error handler
|
net boot error: can't ssh into the instance
|
|
|
|
42 |
2085d |
2087d
|
11/28 |
2049d |
947b7ac135b1
Revert "block: cover another queue enter recursion via BIO_QUEUE_ENTERED"
|
upstream boot error: can't ssh into the instance (2)
|
|
|
|
45 |
2087d |
2087d
|
11/28 |
2049d |
947b7ac135b1
Revert "block: cover another queue enter recursion via BIO_QUEUE_ENTERED"
|
net build error
|
|
|
|
2 |
2213d |
2213d
|
11/28 |
2114d |
16fdf8ba9839
rds: Fix build regression.
|
unregister_netdevice: waiting for DEV to become free
|
C |
|
|
170521 |
2259d |
2370d
|
8/28 |
2259d |
8cc88773855f
xfrm: fix missing dst_release() after policy blocking lbcast and multicast
|
WARNING: kernel stack regs has bad 'bp' value (3)
|
C |
|
|
7971 |
2291d |
2446d
|
8/28 |
2289d |
b7b73cd5d746
crypto: x86/salsa20 - remove x86 salsa20 implementations
|
BUG: workqueue lockup (3)
|
C |
|
|
1215 |
2293d |
2346d
|
8/28 |
2289d |
4fb48871409e
restore cond_resched() in shrink_dcache_parent()
|
WARNING: kernel stack frame pointer has bad value
|
C |
|
|
1108 |
2292d |
2370d
|
8/28 |
2289d |
f044a84e040b
crypto: don't optimize keccakf()
|
general protection fault in gfn_to_rmap
|
syz |
|
|
7 |
2430d |
2540d
|
5/28 |
2342d |
b7e31be38558
KVM: x86: fix vcpu initialization with userspace lapic
|
BUG: workqueue lockup (2)
|
C |
|
|
406 |
2349d |
2507d
|
5/28 |
2346d |
966031f34018
n_tty: fix EXTPROC vs ICANON interaction with TIOCINQ (aka FIONREAD)
|
WARNING in ata_bmdma_qc_issue
|
C |
|
|
1 |
2621d |
2540d
|
4/28 |
2397d |
2c1ec6fda2d0
libata: don't try to pass through NCQ commands to non-NCQ devices
|
KASAN: use-after-free Read in get_work_pool
|
syz |
|
|
8 |
2523d |
2545d
|
4/28 |
2397d |
2cc683e88c0c
kcm: lock lower socket in kcm_attach
|
WARNING in ata_qc_issue
|
C |
|
|
35 |
2526d |
2544d
|
4/28 |
2397d |
9173e5e80729
libata: remove WARN() for DMA or PIO command without data
|
BUG: unable to handle kernel paging request in ata_bmdma_qc_prep
|
C |
|
|
13 |
2532d |
2540d
|
4/28 |
2397d |
058f58e235cb
libata: fix length validation of ATAPI-relayed SCSI commands
|
kernel BUG at arch/x86/kvm/x86.c:LINE!
|
syz |
|
|
20 |
2512d |
2544d
|
4/28 |
2408d |
61cb57c9ed63
KVM: x86: Exit to user-mode on #UD intercept when emulator requires
|
lost connection to test machine (4)
|
C |
|
|
1189 |
2422d |
2436d
|
4/28 |
2422d |
9c2d63b843a5
bpf: fix mlock precharge on arraymaps
|
lost connection to test machine (3)
|
C |
|
|
4251 |
2444d |
2483d
|
4/28 |
2444d |
889c604fd0b5
netfilter: x_tables: fix int overflow in xt_alloc_table_info()
|
WARNING in task_participate_group_stop
|
C |
|
|
29 |
2526d |
2541d
|
4/28 |
2446d |
426915796cca
kernel/signal.c: remove the no longer needed SIGNAL_UNKILLABLE check in complete_signal()
|
WARNING: kernel stack regs has bad 'bp' value (2)
|
C |
|
|
16238 |
2448d |
2512d
|
4/28 |
2447d |
d8c7fe9f2a48
crypto: x86/twofish-3way - Fix %rbp usage
|
BUG: sleeping function called from invalid context at ./include/linux/uaccess.h:LINE
|
C |
|
|
19609 |
2514d |
2540d
|
4/28 |
2453d |
4d772cb85f64
KVM: x86: fix em_fxstor() sleeping while in atomic
|
possible deadlock in snd_seq_deliver_event
|
C |
|
|
6 |
2534d |
2544d
|
4/28 |
2456d |
1f20f9ff57ca
ALSA: seq: Fix nested rwsem annotation for lockdep splat
|
kernel panic: softlockup: hung tasks
|
|
|
|
2 |
2583d |
2552d
|
3/28 |
2503d |
4ba161a793d5
SUNRPC: Allow connect to return EHOSTUNREACH
|
kernel BUG at net/key/af_key.c:LINE!
|
C |
|
|
63 |
2555d |
2547d
|
3/28 |
2506d |
0e74aa1d79a5
xfrm: Copy policy family in clone_policy
|
general protection fault in tun_flow_cleanup
|
|
|
|
1 |
2584d |
2553d
|
3/28 |
2513d |
ee74d9967b82
tun: do not arm flow_gc_timer in tun_flow_init()
|
KASAN: slab-out-of-bounds Read in tipc_nametbl_lookup_dst_nodes
|
C |
|
|
22388 |
2524d |
2547d
|
3/28 |
2513d |
f65163fed0e7
tipc: eliminate KASAN warning
|
possible deadlock in generic_file_write_iter
|
C |
|
|
61506 |
2513d |
2535d
|
3/28 |
2513d |
e319e1fbd9d4
block, locking/lockdep: Assign a lock_class per gendisk used for wait_for_completion()
|
BUG: unable to handle kernel paging request in snd_seq_oss_readq_puts
|
C |
|
|
389 |
2533d |
2539d
|
3/28 |
2523d |
132d358b183a
ALSA: seq: Fix OSS sysex delivery in OSS emulation
|
BUG: soft lockup
|
C |
|
|
466 |
2526d |
2539d
|
3/28 |
2523d |
9b7d869ee5a7
ALSA: timer: Limit max instances per timer
|
KASAN: use-after-free Write in __run_timers
|
|
|
|
6144 |
2549d |
2609d
|
3/28 |
2530d |
0ad646c81b21
net-backports: tun: call dev_get_valid_name() before register_netdevice()
|
general protection fault in __list_del_entry_valid
|
C |
|
|
72 |
2533d |
2547d
|
3/28 |
2530d |
1137b5e2529a
ipsec: Fix aborted xfrm policy dump crash
|
BUG: workqueue lockup
|
C |
|
|
172 |
2530d |
2540d
|
3/28 |
2530d |
93161922c658
tun/tap: sanitize TUNSETSNDBUF input
|
WARNING in sk_stream_kill_queues
|
syz |
|
|
96 |
2617d |
2620d
|
3/28 |
2533d |
7749d4ff88d3
net-backports: dccp: purge write queue in dccp_destroy_sock()
|
kernel BUG at net/ipv4/tcp_output.c:LINE!
|
|
|
|
37 |
2589d |
2602d
|
3/28 |
2533d |
b1ed4c4fa9a5
tcp: add an ability to dump and restore window parameters
|
general protection fault in refcount_sub_and_test
|
|
|
|
1 |
2633d |
2618d
|
3/28 |
2534d |
12d94a804946
ipv6: fix NULL dereference in ip6_route_dev_notify()
|
KASAN: use-after-free Read in dev_queue_xmit_nit
|
C |
|
|
13 |
2577d |
2588d
|
3/28 |
2534d |
008ba2a13f2d
packet: hold bind lock when rebinding to fanout hook
|
KASAN: double-free or invalid-free in selinux_tun_dev_free_security
|
C |
|
|
12033 |
2610d |
2621d
|
3/28 |
2534d |
ff244c6b29b1
tun: handle register_netdevice() failures properly
|
BUG: unable to handle kernel NULL pointer dereference in free_fib_info_rcu
|
|
|
|
3 |
2618d |
2618d
|
3/28 |
2534d |
187e5b3ac84d
ipv4: fix NULL dereference in free_fib_info_rcu()
|
WARNING in fib6_del
|
|
|
|
24 |
2595d |
2608d
|
3/28 |
2534d |
7483cea79957
ipv6: fib: Unlink replaced routes from their nodes
|
KASAN: use-after-free Read in ccid2_hc_tx_rto_expire
|
|
|
|
5 |
2612d |
2617d
|
3/28 |
2534d |
120e9dabaf55
dccp: defer ccid_hc_tx_delete() at dismantle time
|
general protection fault in kvm_cpuid
|
C |
|
|
20 |
2576d |
2595d
|
3/28 |
2547d |
d1cd3ce90044
KVM: MMU: check guest CR3 reserved bits based on its physical address width.
|
KASAN: use-after-free Read in __list_add_valid
|
syz |
|
|
26 |
2551d |
2598d
|
3/28 |
2547d |
008ba2a13f2d
packet: hold bind lock when rebinding to fanout hook
|
general protection fault in skb_clone
|
syz |
|
|
3 |
2616d |
2616d
|
3/28 |
2547d |
0bbd7dad34f8
tun: make tun_build_skb() thread safe
|
BUG: unable to handle kernel paging request in skb_release_data
|
syz |
|
|
15 |
2616d |
2616d
|
3/28 |
2547d |
0bbd7dad34f8
tun: make tun_build_skb() thread safe
|
WARNING in __local_bh_enable_ip
|
|
|
|
22 |
2578d |
2585d
|
3/28 |
2547d |
930651a75bf1
bpf: do not disable/enable BH in bpf_map_free_id()
|
WARNING: kernel stack regs has bad 'bp' value
|
C |
|
|
66131 |
2576d |
2621d
|
3/28 |
2547d |
d3dfbfe2e6e7
crypto: x86/sha256-avx2 - Fix RBP usage
|
possible deadlock in kcm_sendpage
|
syz |
|
|
14 |
2600d |
2602d
|
3/28 |
2547d |
351050ecd652
kcm: do not attach PF_KCM sockets to avoid deadlock
|
KASAN: use-after-free Read in skb_release_data
|
syz |
|
|
7 |
2617d |
2616d
|
3/28 |
2547d |
0bbd7dad34f8
tun: make tun_build_skb() thread safe
|
BUG: Bad page state
|
C |
|
|
2 |
2617d |
2618d
|
3/28 |
2547d |
263630e8d176
mm/madvise.c: fix freeing of locked page with MADV_FREE
|
general protection fault in SyS_bpf
|
C |
|
|
10 |
2607d |
2607d
|
3/28 |
2547d |
ae2b27b859a1
bpf: fix a return in sockmap_get_from_fd()
|
general protection fault in fib_dump_info
|
C |
|
|
428 |
2610d |
2621d
|
3/28 |
2547d |
bc3aae2bbac4
net: check and errout if res->fi is NULL when RTM_F_FIB_MATCH is set
|
general protection fault in __skb_flow_dissect
|
C |
|
|
37 |
2617d |
2620d
|
3/28 |
2547d |
7324157b8af1
dsa: fix flow disector null pointer
|
BUG: unable to handle kernel NULL pointer dereference at ADDR
|
C |
|
|
63 |
2604d |
2619d
|
3/28 |
2547d |
3fd871270732
strparser: initialize all callbacks
|
general protection fault in fib6_add
|
|
|
|
18 |
2611d |
2618d
|
3/28 |
2547d |
348a4002729c
ipv6: repair fib6 tree in failure case
|
suspicious RCU usage at ./include/linux/kvm_host.h:LINE
|
C |
|
|
103402 |
2576d |
2621d
|
3/28 |
2547d |
021086e383fa
KVM: fix rcu warning on VM_CREATE errors
|
KASAN: use-after-free Read in ip6_pol_route
|
|
|
|
249 |
2610d |
2619d
|
3/28 |
2547d |
383143f31d7d
ipv6: reset fn->rr_ptr when replacing route
|
KASAN: slab-out-of-bounds Read in skb_release_data
|
|
|
|
1 |
2616d |
2616d
|
3/28 |
2547d |
0bbd7dad34f8
tun: make tun_build_skb() thread safe
|
KASAN: use-after-free Read in skb_push
|
|
|
|
4 |
2612d |
2618d
|
3/28 |
2547d |
5bfd37b4de5c
tipc: fix use-after-free
|
KASAN: wild-memory-access Read in skb_copy_ubufs
|
C |
|
|
23 |
2615d |
2616d
|
3/28 |
2547d |
0bbd7dad34f8
tun: make tun_build_skb() thread safe
|
kernel BUG at mm/slab.c:LINE!
|
C |
|
|
860 |
2595d |
2598d
|
3/28 |
2547d |
96e5ae4e76f1
bpf: fix numa_node validation
|
general protection fault in __ip_options_echo (2)
|
C |
|
|
2 |
2596d |
2596d
|
3/28 |
2547d |
ca2c1418efe9
udp: drop head states only when all skb references are gone
|
WARNING in refcount_inc
|
|
|
|
7 |
2601d |
2609d
|
3/28 |
2547d |
551143d8d954
net_sched: fix a refcount_t issue with noop_qdisc
|
WARNING in idr_replace
|
C |
|
|
1209 |
2588d |
2620d
|
3/28 |
2547d |
a47f68d6a944
idr: remove WARN_ON_ONCE() when trying to replace negative ID
|
general protection fault in skb_release_data
|
syz |
|
|
198 |
2615d |
2617d
|
3/28 |
2547d |
0bbd7dad34f8
tun: make tun_build_skb() thread safe
|
KASAN: use-after-free Read in free_ldt_struct
|
C |
|
|
109 |
2604d |
2619d
|
3/28 |
2547d |
ccd5b3235180
x86/mm: Fix use-after-free of ldt_struct
|
general protection fault in perf_trace_block_get_rq
|
C |
|
|
180 |
2588d |
2597d
|
3/28 |
2547d |
f8e9ec16611b
block: tolerate tracing of NULL bio
|
KASAN: use-after-free Read in get_mm_exe_file
|
C |
|
|
2 |
2611d |
2616d
|
3/28 |
2547d |
2b7e8665b4ff
fork: fix incorrect fput of ->exe_file causing use-after-free
|
WARNING in kvm_arch_vcpu_ioctl_run
|
C |
|
|
20284 |
2576d |
2641d
|
3/28 |
2576d |
bbeac2830f4d
KVM: X86: Fix residual mmio emulation request to userspace
|
INFO: task hung
|
C |
|
|
13878 |
2576d |
2641d
|
3/28 |
2576d |
bd9dfc54e392
tcp: fix hang in tcp_sendpage_locked()
|
inconsistent lock state in sk_clone_lock
|
C |
|
|
16 |
2617d |
2621d
|
2/28 |
2596d |
d624d276d1dd
tcp: fix possible deadlock in TCP stack vs BPF filter
|
kernel BUG at mm/usercopy.c:LINE!
|
C |
|
|
23 |
2617d |
2621d
|
2/28 |
2596d |
fd851ba9caa9
udp: harden copy_linear_skb()
|
BUG: sleeping function called from invalid context at mm/slab.h:LINE
|
C |
|
|
8 |
2618d |
2621d
|
2/28 |
2596d |
36f41f8fc6d8
af_key: do not use GFP_KERNEL in atomic contexts
|