|
riscv/fixes boot error: can't ssh into the instance (3)
|
|
|
|
105 |
58m |
19d
|
0/26 |
never |
mm,page_owner: Fix refcount imbalance
|
|
upstream boot error: can't ssh into the instance (16)
|
|
|
|
415 |
44d |
97d
|
26/26 |
22d |
f6564fce256a
mm, kmsan: fix infinite recursion due to RCU critical section
|
|
riscv/fixes boot error: failed to read from qemu: EOF
|
|
|
|
54 |
130d |
139d
|
26/26 |
75d |
420370f3ae3d
riscv: Check if the code to patch lies in the exit section
|
|
KASAN: use-after-free Read in j1939_session_get_by_addr
|
C |
done |
error |
66 |
1612d |
1624d
|
25/26 |
94d |
d966635b384b
can: j1939: transport: make sure the aborted session will be deactivated only once
|
|
riscv/fixes boot error: can't ssh into the instance (2)
|
|
|
|
109 |
313d |
319d
|
23/26 |
287d |
25abe0db9243
riscv: Fix kfence now that the linear mapping can be backed by PUD/P4D/PGD
|
|
kernel BUG in vmf_insert_pfn_prot
|
C |
done |
done |
1933 |
337d |
942d
|
22/26 |
306d |
a5b44c4adb16
drm/fbdev-generic: Always use shadow buffering
|
|
unregister_netdevice: waiting for DEV to become free (7)
|
C |
inconclusive |
|
20422 |
313d |
515d
|
22/26 |
312d |
266e9b3475ba
RDMA/siw: Remove namespace check from siw_netdev_event()
|
|
INFO: task hung in tcindex_partial_destroy_work
|
C |
done |
unreliable |
84 |
1160d |
1296d
|
22/26 |
312d |
8c710f75256b
net/sched: Retire tcindex classifier
|
|
WARNING: fbcon: Driver 'vkmsdrmfb' missed to adjust virtual screen size (0x0 vs. 64x768)
|
C |
unreliable |
error |
24 |
645d |
645d
|
22/26 |
312d |
1935f0deb611
drm/fb-helper: set x/yres_virtual in drm_fb_helper_check_var
|
|
WARNING: can't access registers at entry_SYSCALL_64_after_hwframe
|
C |
|
|
15 |
419d |
424d
|
22/26 |
312d |
00c8f01c4e84
objtool: Fix ORC 'signal' propagation
|
|
WARNING in j1939_xtp_rx_abort_one
|
C |
done |
|
379 |
448d |
986d
|
22/26 |
312d |
d0553680f94c
can: j1939: fix errant WARN_ON_ONCE in j1939_session_deactivate
|
|
upstream-arm64 build error
|
|
|
|
11 |
420d |
424d
|
22/26 |
312d |
d54170812ef1
arm64: fix .idmap.text assertion for large kernels
|
|
WARNING in submit_bio_checks
|
C |
done |
unreliable |
1851 |
756d |
1375d
|
22/26 |
364d |
57e95e4670d1
block: fix and cleanup bio_check_ro
|
|
KASAN: use-after-free Read in hci_cmd_timeout
|
C |
done |
error |
371 |
493d |
1806d
|
22/26 |
369d |
97dfaf073f58
Bluetooth: hci_sync: cancel cmd_timer if hci_open failed
|
|
WARNING in __dev_queue_xmit
|
C |
done |
|
16774 |
416d |
630d
|
22/26 |
416d |
dc633700f00f
net/af_packet: check len when min_header_len equals to 0
b12e924a2f5b
net/ieee802154: don't warn zero-sized raw_sendmsg()
3a4d061c699b
net/ieee802154: reject zero-sized raw_sendmsg()
|
|
INFO: task hung in addrconf_verify_work (6)
|
C |
done |
|
86 |
420d |
657d
|
22/26 |
416d |
ff1fa2081d17
net: tun: avoid disabling NAPI twice
|
|
KASAN: use-after-free Read in drm_gem_object_release_handle
|
C |
done |
|
362 |
497d |
882d
|
22/26 |
416d |
24013314be6e
drm/shmem-helper: Remove errant put in error path
|
|
KASAN: slab-out-of-bounds Read in vxlan_vnifilter_dump_dev
|
C |
done |
|
30 |
746d |
747d
|
22/26 |
416d |
9d570741aec1
vxlan: do not feed vxlan_vnifilter_dump_dev with non vxlan devices
|
|
WARNING in bpf_check (3)
|
C |
done |
done |
1736 |
562d |
1495d
|
22/26 |
416d |
34dd3bad1a6f
bpf: Relax the requirement to use preallocated hash maps in tracing progs.
|
|
BUG: sleeping function called from invalid context in static_key_slow_inc
|
C |
done |
|
82 |
503d |
516d
|
22/26 |
416d |
af295e854a4e
l2tp: Don't sleep and disable BH under writer-side sk_callback_lock
|
|
KASAN: use-after-free Read in ath9k_hif_usb_rx_cb (2)
|
C |
done |
|
48810 |
613d |
1246d
|
22/26 |
416d |
0ac4827f78c7
ath9k: fix use-after-free in ath9k_hif_usb_rx_cb
|
|
KASAN: use-after-free Read in madvise_update_vma
|
C |
done |
|
38 |
781d |
798d
|
22/26 |
416d |
942341dcc574
mm: fix use-after-free when anon vma name is used after vma is freed
|
|
BUG: sleeping function called from invalid context in sk_psock_stop
|
C |
done |
|
232 |
617d |
675d
|
22/26 |
416d |
697fb80a5364
bpf: Fix sockmap calling sleepable function in teardown path
|
|
WARNING in __dma_map_sg_attrs
|
C |
inconclusive |
|
65 |
616d |
866d
|
22/26 |
416d |
9e9fa6a9198b
udmabuf: Set the DMA mask for the udmabuf device (v2)
|
|
possible deadlock in p9_req_put
|
C |
done |
|
2815 |
526d |
617d
|
22/26 |
416d |
52f1c45dde91
9p: trans_fd/p9_conn_cancel: drop client lock earlier
|
|
WARNING in pskb_expand_head
|
C |
done |
done |
222 |
530d |
1177d
|
22/26 |
416d |
dbae2b062824
net: skb: introduce and use a single page frag cache
|
|
KASAN: use-after-free Read in __kernfs_remove
|
C |
done |
|
3985 |
556d |
599d
|
22/26 |
416d |
4abc99652812
kernfs: fix use-after-free in __kernfs_remove
|
|
INFO: task hung in synchronize_rcu (3)
|
C |
done |
done |
374 |
426d |
1363d
|
22/26 |
416d |
2d08935682ac
KVM: x86: Don't re-acquire SRCU lock in complete_emulated_io()
|
|
WARNING: suspicious RCU usage (5)
|
C |
done |
|
1 |
672d |
668d
|
20/26 |
662d |
f4e61f0c9add
x86/kvm: Fix broken irq restoration in kvm_wait
|
|
WARNING in drm_gem_shmem_vm_open
|
syz |
done |
done |
38 |
836d |
971d
|
20/26 |
704d |
0499f419b76f
video: vga16fb: Only probe for EGA and VGA 16 color graphic cards
|
|
INFO: task hung in usb_get_descriptor
|
C |
done |
done |
4149 |
766d |
1288d
|
20/26 |
704d |
363eaa3a450a
usbip: synchronize event handler with sysfs code paths
|
|
WARNING in cgroup_finalize_control
|
syz |
done |
done |
9 |
907d |
1435d
|
20/26 |
769d |
7ee285395b21
cgroup: Make rebind_subsystems() disable v2 controllers all at once
|
|
WARNING in ref_tracker_dir_exit
|
C |
done |
|
16271 |
825d |
854d
|
20/26 |
769d |
34ac17ecbf57
ethtool: use ethnl_parse_header_dev_put()
|
|
WARNING in sta_info_insert_rcu
|
C |
done |
done |
2533 |
863d |
1300d
|
20/26 |
769d |
a6555f844549
mac80211: Drop frames from invalid MAC address in ad-hoc mode
|
|
WARNING in loop_add
|
C |
done |
error |
64 |
884d |
1698d
|
20/26 |
769d |
278167fd2f8f
block: add __must_check for *add_disk*() callers
|
|
kernel BUG at net/core/dev.c:LINE! (4)
|
C |
done |
done |
432 |
853d |
1240d
|
20/26 |
769d |
f123cffdd8fe
net: netlink: af_netlink: Prevent empty skb by adding a check on len.
|
|
WARNING in bpf_warn_invalid_xdp_action
|
C |
done |
done |
8941 |
826d |
1545d
|
20/26 |
769d |
2cbad989033b
bpf: Do not WARN in bpf_warn_invalid_xdp_action()
|
|
unregister_netdevice: waiting for DEV to become free (6)
|
C |
error |
|
13128 |
769d |
888d
|
20/26 |
769d |
34ac17ecbf57
ethtool: use ethnl_parse_header_dev_put()
|
|
BUG: unable to handle kernel NULL pointer dereference in bpf
|
C |
done |
|
753 |
827d |
898d
|
20/26 |
769d |
ad10c381d133
bpf: Add missing map_delete_elem method to bloom filter map
|
|
unregister_netdevice: waiting for DEV to become free (5)
|
C |
done |
|
40035 |
888d |
1133d
|
20/26 |
888d |
0d7a7b2014b1
ipv6: remove extra dev_hold() for fallback tunnels
|
|
WARNING in taprio_change
|
C |
done |
|
746 |
1074d |
1310d
|
20/26 |
888d |
ed8157f1ebf1
net: sched: tapr: prevent cycle_time == 0 in parse_taprio_schedule
|
|
WARNING in netlbl_cipsov4_add
|
C |
inconclusive |
|
4433 |
951d |
1151d
|
20/26 |
888d |
8ca34a13f7f9
net: cipso: fix warnings in netlbl_cipsov4_add_std
|
|
WARNING in cfg80211_connect
|
C |
done |
|
2320 |
1101d |
1293d
|
20/26 |
888d |
1b5ab825d9ac
cfg80211: remove WARN_ON() in cfg80211_sme_connect
|
|
BUG: unable to handle kernel paging request in corrupted (3)
|
C |
done |
|
45 |
896d |
1065d
|
20/26 |
888d |
7a274727702c
io_uring: don't modify req->poll for rw
|
|
possible deadlock in loop_probe
|
C |
done |
|
20656 |
1009d |
1034d
|
20/26 |
888d |
962bf783ef65
mtd: break circular locks in register_mtd_blktrans
|
|
linux-next build error (12)
|
|
|
|
63 |
1015d |
1113d
|
20/26 |
888d |
7aae231ac93b
bpf: tcp: Limit calling some tcp cc functions to CONFIG_DYNAMIC_FTRACE
|
|
WARNING: suspicious RCU usage in bond_ipsec_add_sa (2)
|
C |
done |
|
540 |
1016d |
1303d
|
20/26 |
888d |
b648eba4c69e
bonding: fix suspicious RCU usage in bond_ipsec_add_sa()
|
|
linux-next test error: unregister_netdevice: waiting for DEV to become free
|
|
|
|
2 |
1112d |
1112d
|
20/26 |
888d |
0d7a7b2014b1
ipv6: remove extra dev_hold() for fallback tunnels
|
|
KASAN: slab-out-of-bounds Read in qrtr_endpoint_post (2)
|
C |
done |
|
41 |
990d |
1354d
|
20/26 |
888d |
ad9d24c9429e
net: qrtr: fix OOB Read in qrtr_endpoint_post
|
|
net-next test error: unregister_netdevice: waiting for DEV to become free
|
|
|
|
18 |
1111d |
1113d
|
20/26 |
888d |
0d7a7b2014b1
ipv6: remove extra dev_hold() for fallback tunnels
|
|
BUG: MAX_LOCKDEP_ENTRIES too low!
|
C |
done |
|
179076 |
1073d |
1764d
|
20/26 |
888d |
5dc33592e955
lockdep: Allow tuning tracing capacity constants.
|
|
possible deadlock in del_gendisk
|
C |
done |
|
158215 |
951d |
1098d
|
20/26 |
888d |
990e78116d38
block: loop: fix deadlock between open and remove
|
|
memory leak in rds_send_probe
|
C |
done |
|
27 |
1186d |
1728d
|
20/26 |
888d |
49bfcbfd989a
net: rds: fix memory leak in rds_recvmsg
|
|
WARNING: still has locks held in io_sq_thread
|
C |
done |
|
8689 |
1100d |
1114d
|
20/26 |
888d |
82734c5b1b24
io_uring: drop sqd lock before handling signals for SQPOLL
|
|
memory leak in h4_recv_buf
|
C |
done |
|
21 |
998d |
1758d
|
20/26 |
888d |
bb2853a6a421
tty: Fix data race between tiocsti() and flush_to_ldisc()
|
|
WARNING in sta_info_alloc
|
C |
done |
done |
145 |
1034d |
1288d
|
20/26 |
888d |
0ee4d55534f8
mac80211: remove warning in ieee80211_get_sband()
|
|
WARNING: ODEBUG bug in cancel_delayed_work
|
C |
done |
|
3384 |
904d |
1355d
|
20/26 |
888d |
3a9d54b1947e
Bluetooth: Set CONF_NOT_COMPLETE as l2cap_chan default
|
|
possible deadlock in console_lock_spinning_enable
|
C |
done |
|
1693 |
888d |
1762d
|
20/26 |
888d |
c0070e1e6027
ttyprintk: Add TTY hangup callback.
|
|
WARNING in hsr_forward_skb
|
C |
done |
done |
1310 |
1103d |
1931d
|
20/26 |
888d |
9d6803921a16
net: hsr: Reset MAC header for Tx path
|
|
INFO: task hung in hub_port_init
|
C |
done |
|
15888 |
888d |
1288d
|
20/26 |
888d |
258c81b341c8
usbip: give back URBs for unsent unlink requests during cleanup
|
|
net-next build error (3)
|
|
|
|
7 |
1166d |
1163d
|
20/26 |
1102d |
9c97921a51a0
net: fix building errors on powerpc when CONFIG_RETPOLINE is not set
|
|
INFO: task hung in addrconf_verify_work (4)
|
C |
done |
|
132 |
1151d |
1238d
|
20/26 |
1102d |
d349f9976868
net_sched: fix RTNL deadlock again caused by request_module()
|
|
general protection fault in rose_send_frame
|
C |
done |
done |
664 |
1243d |
1922d
|
19/26 |
1133d |
3b3fd068c56e
rose: Fix Null pointer dereference in rose_send_frame()
|
|
WARNING: HARDIRQ-safe -> HARDIRQ-unsafe lock order detected (2)
|
C |
done |
|
640 |
1197d |
1315d
|
19/26 |
1133d |
8d1ddb5e7937
fcntl: Fix potential deadlock in send_sig{io, urg}()
|
|
WARNING: filesystem loop2 was created with 512 inodes, the real maximum is 511, mounting anyway
|
|
|
|
2 |
1246d |
1242d
|
19/26 |
1133d |
dc889b8d4a81
bfs: don't use WARNING: string when it's just info.
|
|
KASAN: null-ptr-deref Write in bdi_put
|
C |
done |
done |
601 |
1190d |
1224d
|
19/26 |
1133d |
2d2f6f1b4799
block: pre-initialize struct block_device in bdev_alloc_inode
|
|
kernel BUG at net/core/skbuff.c:LINE! (3)
|
C |
done |
|
4399 |
1148d |
2265d
|
19/26 |
1133d |
afbc293add64
af_key: relax availability checks for skb size calculation
|
|
unregister_netdevice: waiting for DEV to become free (4)
|
C |
done |
|
50394 |
1133d |
1335d
|
19/26 |
1133d |
5399d52233c4
rxrpc: Fix deadlock around release of dst cached on udp tunnel
|
|
WARNING: filesystem loop5 was created with 512 inodes, the real maximum is 511, mounting anyway
|
|
|
|
2 |
1239d |
1235d
|
19/26 |
1133d |
dc889b8d4a81
bfs: don't use WARNING: string when it's just info.
|
|
WARNING: filesystem loop1 was created with 512 inodes, the real maximum is 511, mounting anyway
|
|
|
|
4 |
1246d |
1295d
|
19/26 |
1133d |
dc889b8d4a81
bfs: don't use WARNING: string when it's just info.
|
|
general protection fault in call_commit_handler
|
C |
done |
|
428 |
1189d |
1270d
|
19/26 |
1133d |
5122565188ba
wext: fix NULL-ptr-dereference with cfg80211's lack of commit()
|
|
WARNING: filesystem loop3 was created with 512 inodes, the real maximum is 511, mounting anyway
|
|
|
|
3 |
1232d |
1300d
|
19/26 |
1133d |
dc889b8d4a81
bfs: don't use WARNING: string when it's just info.
|
|
WARNING: filesystem loop4 was created with 512 inodes, the real maximum is 511, mounting anyway
|
|
|
|
3 |
1246d |
1242d
|
19/26 |
1133d |
dc889b8d4a81
bfs: don't use WARNING: string when it's just info.
|
|
upstream build error (11)
|
|
|
|
25 |
1189d |
1266d
|
15/26 |
1189d |
f78f63da916e
mm/process_vm_access: Add missing #include <linux/compat.h>
|
|
BUG: MAX_LOCKDEP_CHAIN_HLOCKS too low!
|
C |
done |
error |
25236 |
1427d |
1867d
|
15/26 |
1223d |
1a33e10e4a95
net: partially revert dynamic lockdep key changes
|
|
BUG: using __this_cpu_read() in preemptible code in trace_hardirqs_on
|
C |
done |
|
502745 |
1249d |
1281d
|
15/26 |
1246d |
f8e48a3dca06
lockdep: Fix preemption WARN for spurious IRQ-enable
|
|
INFO: trying to register non-static key in uhid_char_release
|
C |
done |
done |
26 |
1323d |
1501d
|
15/26 |
1246d |
bce1305c0ece
HID: core: Correctly handle ReportSize being zero
|
|
kernel panic: Fatal exception (3)
|
C |
done |
|
2 |
1281d |
1279d
|
15/26 |
1246d |
eadd1befdd77
netem: fix zero division in tabledist
|
|
WARNING in print_bfs_bug
|
C |
done |
|
14759 |
1278d |
1631d
|
15/26 |
1246d |
6d1823ccc480
lockdep: Optimize the memory usage of circular queue
|
|
INFO: task hung in io_uring_setup
|
C |
done |
|
51 |
1315d |
1321d
|
15/26 |
1246d |
7e84e1c7566a
io_uring: allow disabling rings during the creation
|
|
INFO: task hung in addrconf_verify_work (3)
|
C |
done |
|
75 |
1260d |
1294d
|
15/26 |
1246d |
0fedc63fadf0
net_sched: commit action insertions together
|
|
WARNING: ODEBUG bug in exit_to_user_mode_prepare
|
C |
done |
done |
27 |
1321d |
1326d
|
15/26 |
1246d |
77f4689de17c
fix regression in "epoll: Keep a reference on files added to the check list"
|
|
possible deadlock in _snd_pcm_stream_lock_irqsave
|
C |
done |
|
997 |
1278d |
1315d
|
15/26 |
1246d |
6564d0ad67ef
ALSA: ctl: Workaround for lockdep warning wrt card->ctl_files_rwlock
|
|
WARNING in percpu_ref_exit (2)
|
C |
done |
done |
272 |
1282d |
1578d
|
15/26 |
1246d |
c1e2148f8ecb
io_uring: free fixed_file_data after RCU grace period
|
|
bpf-next test error: BUG: program execution failed: executor 0: exit status 67
|
|
|
|
12 |
1278d |
1278d
|
15/26 |
1246d |
d25e2e9388ed
netfilter: restore NF_INET_NUMHOOKS
|
|
INFO: task hung in htable_put
|
C |
done |
done |
29 |
1519d |
1572d
|
15/26 |
1246d |
99b79c3900d4
netfilter: xt_hashlimit: unregister proc file before releasing mutex
|
|
WARNING: refcount bug in l2cap_chan_put
|
C |
inconclusive |
done |
13 |
1349d |
1513d
|
15/26 |
1246d |
b83764f9220a
Bluetooth: Fix kernel oops triggered by hci_adv_monitors_clear()
|
|
KASAN: global-out-of-bounds Read in vga16fb_imageblit
|
C |
done |
|
1071 |
1311d |
1595d
|
15/26 |
1284d |
bd018a6a75ce
video: fbdev: fix OOB read in vga_8planes_imageblit()
|
|
INFO: rcu detected stall in ext4_file_write_iter
|
C |
inconclusive |
done |
93 |
1344d |
1876d
|
15/26 |
1299d |
7e24969022cb
block: allow for_each_bvec to support zero len bvec
|
|
WARNING in restore_regulatory_settings
|
C |
done |
|
10414 |
1317d |
1561d
|
15/26 |
1299d |
47caf685a685
cfg80211: regulatory: reject invalid hints
|
|
kernel BUG at mm/hugetlb.c:LINE!
|
C |
done |
error |
10 |
1358d |
1471d
|
15/26 |
1307d |
15568299b7d9
hugetlbfs: prevent filesystem stacking of hugetlbfs
|
|
WARNING in ptrace_stop
|
C |
done |
|
1413 |
1358d |
1362d
|
15/26 |
1307d |
d136122f5845
sched: Fix race against ptrace_freeze_trace()
|
|
general protection fault in do_con_write
|
C |
done |
|
10703 |
1359d |
1595d
|
15/26 |
1307d |
ce684552a266
vt: Reject zero-sized screen buffer size.
|
|
WARNING in inc_nlink
|
C |
done |
|
26 |
1373d |
1476d
|
15/26 |
1307d |
facb03dddec0
fs/minix: don't allow getting deleted inodes
|
|
KASAN: use-after-free Read in get_block
|
C |
done |
|
23 |
1373d |
1451d
|
15/26 |
1307d |
270ef41094e9
fs/minix: reject too-large maximum file size
|
|
KASAN: use-after-free Read in l2cap_chan_close
|
C |
done |
|
37 |
1349d |
1529d
|
15/26 |
1307d |
f9c70bdc279b
Bluetooth: add a mutex lock to avoid UAF in do_enale_set
|
|
WARNING in vkms_vblank_simulate
|
C |
done |
|
12903 |
1314d |
1890d
|
15/26 |
1307d |
51f644b40b4b
drm/atomic-helper: reset vblank on crtc reset
|
|
WARNING in hsr_addr_subst_dest
|
C |
done |
done |
8639 |
1473d |
1931d
|
15/26 |
1336d |
4b793acdca00
hsr: use netdev_err() instead of WARN_ONCE()
|
|
BUG: unable to handle kernel paging request in netif_receive_generic_xdp
|
C |
done |
done |
160 |
1412d |
1548d
|
15/26 |
1359d |
96aa1b22bd6b
tun: correct header offsets in napi frags mode
|
|
BUG: using smp_processor_id() in preemptible [ADDR] code: syz-executor
|
C |
done |
|
22297 |
1414d |
1752d
|
15/26 |
1368d |
1378817486d6
tipc: block BH before using dst_cache
|
|
KASAN: null-ptr-deref Write in choke_reset
|
C |
done |
|
1441 |
1424d |
1458d
|
15/26 |
1368d |
8738c85c72b3
sch_choke: avoid potential panic in choke_reset()
|
|
WARNING in memtype_reserve
|
C |
done |
|
600 |
1429d |
1438d
|
15/26 |
1368d |
a0e710a7def4
USB: usbfs: fix mmap dma mismatch
|
|
BUG: unable to handle kernel paging request in do_xdp_generic
|
C |
done |
done |
7444 |
1442d |
1549d
|
15/26 |
1368d |
96aa1b22bd6b
tun: correct header offsets in napi frags mode
|
|
INFO: task syz-executor can't die for more than 143 seconds. (2)
|
C |
done |
|
2512 |
1369d |
1637d
|
15/26 |
1368d |
566d136289dc
pipe: Fix pipe_full() test in opipe_prep().
|
|
net-next test error: BUG: using smp_processor_id() in preemptible code in corrupted
|
|
|
|
4 |
1402d |
1403d
|
15/26 |
1368d |
811985365378
ext4: mballoc: Use this_cpu_read instead of this_cpu_ptr
|
|
net test error: BUG: using smp_processor_id() in preemptible code in corrupted
|
|
|
|
3 |
1399d |
1401d
|
15/26 |
1368d |
811985365378
ext4: mballoc: Use this_cpu_read instead of this_cpu_ptr
|
|
memory leak in bio_copy_user_iov
|
C |
done |
|
34 |
1578d |
1763d
|
15/26 |
1385d |
3b7995a98ad7
block: fix memleak when __blk_rq_map_user_iov() is failed
|
|
KASAN: slab-out-of-bounds Write in tcindex_set_parms
|
C |
done |
|
10 |
1478d |
1499d
|
15/26 |
1437d |
0d1c3530e1bd
net_sched: keep alloc_hash updated after hash allocation
|
|
WARNING: bad unlock balance in ucma_event_handler
|
C |
done |
|
143 |
1469d |
2133d
|
15/26 |
1437d |
7c11910783a1
RDMA/ucma: Put a lock around every call to the rdma_cm layer
|
|
WARNING: bad unlock balance in ucma_destroy_id
|
syz |
done |
|
44 |
1504d |
2057d
|
15/26 |
1437d |
7c11910783a1
RDMA/ucma: Put a lock around every call to the rdma_cm layer
|
|
possible deadlock in free_ioctx_users (2)
|
C |
done |
|
44 |
1466d |
1474d
|
15/26 |
1437d |
63f818f46af9
proc: Use a dedicated lock in struct pid
|
|
WARNING: ODEBUG bug in route4_change
|
C |
done |
|
68 |
1474d |
1497d
|
15/26 |
1437d |
ef299cc3fa1a
net_sched: cls_route: remove the right filter from hashtable
|
|
KASAN: use-after-free Write in release_tty
|
C |
done |
|
591 |
1473d |
1595d
|
15/26 |
1437d |
ca4463bf8438
vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console
|
|
INFO: task hung in hashlimit_mt_check_common
|
C |
done |
|
20 |
1518d |
1557d
|
15/26 |
1461d |
8d0015a7ab76
netfilter: xt_hashlimit: limit the max size of hashtable
c4a3922d2d20
netfilter: xt_hashlimit: reduce hashlimit_mutex scope for htable_put()
|
|
memory leak in dma_buf_ioctl
|
C |
done |
|
129 |
1512d |
1728d
|
15/26 |
1461d |
d1f37226431f
dma-buf: free dmabuf->name in dma_buf_release()
|
|
KASAN: use-after-free Read in n_tty_receive_buf_common
|
C |
done |
|
68 |
1517d |
1593d
|
15/26 |
1461d |
07e6124a1a46
vt: selection, close sel_buffer race
|
|
general protection fault in nf_flow_table_offload_setup
|
C |
done |
done |
835 |
1515d |
1548d
|
15/26 |
1461d |
a7da92c2c8a1
netfilter: flowtable: skip offload setup if disabled
|
|
KASAN: use-after-free Read in find_match
|
C |
done |
|
142 |
1515d |
1521d
|
15/26 |
1461d |
44bfa9c5e5f0
net: rtnetlink: fix bugs in rtnl_alt_ifname()
|
|
unregister_netdevice: waiting for DEV to become free (3)
|
C |
|
|
1864 |
1461d |
1523d
|
15/26 |
1461d |
e34f1753eebc
ethtool: limit bitset size
|
|
BUG: corrupted list in __nf_tables_abort
|
C |
done |
done |
29 |
1542d |
1550d
|
15/26 |
1490d |
eb014de4fd41
netfilter: nf_tables: autoload modules from the abort path
|
|
KASAN: slab-out-of-bounds Read in bitmap_ipmac_gc
|
C |
done |
done |
70 |
1531d |
1547d
|
15/26 |
1490d |
32c72165dbd0
netfilter: ipset: use bitmap infrastructure completely
|
|
possible deadlock in wg_set_device
|
C |
done |
|
33 |
1528d |
1533d
|
15/26 |
1496d |
ec31c2676a10
wireguard: noise: reject peers with low order public keys
|
|
memory leak in kobject_set_name_vargs (2)
|
C |
done |
|
47 |
1544d |
1728d
|
15/26 |
1518d |
cb626bf566eb
net-sysfs: Fix reference count leak
|
|
KASAN: slab-out-of-bounds Read in bitmap_port_gc
|
C |
done |
|
197 |
1532d |
1549d
|
15/26 |
1518d |
32c72165dbd0
netfilter: ipset: use bitmap infrastructure completely
|
|
KASAN: slab-out-of-bounds Read in bitmap_ipmac_list
|
C |
done |
|
108 |
1534d |
1550d
|
15/26 |
1518d |
32c72165dbd0
netfilter: ipset: use bitmap infrastructure completely
|
|
WARNING: refcount bug in cdev_get
|
C |
done |
|
105 |
1560d |
1700d
|
15/26 |
1518d |
68faa679b8be
chardev: Avoid potential use-after-free in 'chrdev_open()'
|
|
inconsistent lock state in rxrpc_put_client_conn
|
C |
done |
|
18198 |
1527d |
1533d
|
15/26 |
1518d |
963485d436cc
rxrpc: Fix call RCU cleanup using non-bh-safe locks
|
|
unregister_netdevice: waiting for DEV to become free (2)
|
C |
done |
|
385621 |
1523d |
2070d
|
15/26 |
1523d |
ddd9b5e3e765
net-sysfs: Call dev_hold always in rx_queue_add_kobject
|
|
general protection fault in j1939_sk_bind
|
syz |
done |
done |
22 |
1598d |
1624d
|
15/26 |
1523d |
00d4e14d2e4c
can: j1939: j1939_sk_bind(): take priv after lock is held
|
|
possible deadlock in mon_bin_vma_fault
|
C |
done |
|
11427 |
1585d |
2051d
|
15/26 |
1523d |
19e6317d24c2
usb: mon: Fix a deadlock in usbmon between mmap and read
|
|
BUG: Bad rss-counter state (3)
|
C |
unreliable |
done |
438 |
1723d |
2189d
|
15/26 |
1536d |
173d9d9fd3dd
mm/huge_memory: splitting set mapping+index before unfreeze
|
|
possible deadlock in flush_workqueue (2)
|
C |
done |
done |
256 |
1571d |
2004d
|
15/26 |
1536d |
e7c58097793e
hugetlbfs: revert "Use i_mmap_rwsem to fix page fault/truncate race"
|
|
KASAN: use-after-free Read in __queue_work (2)
|
C |
done |
done |
577 |
1754d |
2108d
|
15/26 |
1560d |
430ac66eb4c5
net/9p/trans_fd.c: fix race-condition by flushing workqueue before the kfree()
|
|
KASAN: slab-out-of-bounds Write in pipe_write
|
C |
done |
|
40 |
1592d |
1597d
|
15/26 |
1560d |
8f868d68d335
pipe: Fix missing mask update after pipe_wait()
|
|
WARNING in tty_set_termios
|
C |
done |
done |
1997 |
1720d |
1920d
|
15/26 |
1560d |
b36a1552d731
Bluetooth: hci_uart: check for missing tty operations
|
|
general protection fault in j1939_jsk_del
|
syz |
done |
|
132 |
1600d |
1624d
|
14/26 |
1599d |
fd81ebfe7975
can: j1939: socket: rework socket locking for j1939_sk_release() and j1939_sk_sendmsg()
|
|
INFO: task hung in synchronize_rcu
|
syz |
done |
|
1206 |
1599d |
1626d
|
14/26 |
1599d |
8a44119a98be
KVM: Fix NULL-ptr deref after kvm_create_vm fails
|
|
WARNING: suspicious RCU usage in kvm_dev_ioctl
|
C |
done |
|
333 |
1616d |
1626d
|
14/26 |
1599d |
e2d3fcaf939d
KVM: fix placement of refcount initialization
|
|
INFO: task hung in mpage_prepare_extent_to_map
|
syz |
done |
|
18606 |
1624d |
1631d
|
14/26 |
1599d |
4655e5e5f387
mm,thp: recheck each page before collapsing file THP
|
|
WARNING in generic_make_request_checks
|
C |
done |
|
7760 |
1601d |
2077d
|
13/26 |
1601d |
8b2ded1c94c0
block: don't warn when doing fsync on read-only devices
|
|
memory leak in copy_net_ns
|
C |
done |
|
422 |
1628d |
1665d
|
13/26 |
1606d |
82ecff655e79
keys: Fix memory leak in copy_net_ns
|
|
general protection fault in kernfs_add_one
|
C |
done |
|
98 |
1715d |
2038d
|
13/26 |
1606d |
ac43432cb1f5
driver core: Fix use-after-free and double free on glue directory
|
|
WARNING in kernfs_get
|
C |
done |
|
316 |
1716d |
2045d
|
13/26 |
1608d |
ac43432cb1f5
driver core: Fix use-after-free and double free on glue directory
|
|
INFO: task hung in vivid_stop_generating_vid_cap
|
C |
done |
done |
81 |
1992d |
1996d
|
13/26 |
1617d |
d65842f7126a
media: vb2: add waiting_in_dqbuf flag
|
|
memory leak in llc_ui_create (2)
|
C |
done |
|
19 |
1641d |
1760d
|
13/26 |
1624d |
c6ee11c39fcc
llc: fix sk_buff leak in llc_sap_state_process()
|
|
BUG: assuming atomic context at net/kcm/kcmsock.c:LINE
|
C |
done |
|
178 |
1660d |
1666d
|
13/26 |
1644d |
0355d6c1d591
net-backports: kcm: disable preemption in kcm_parse_func_strparser()
|
|
WARNING: suspicious RCU usage in netem_enqueue
|
C |
done |
|
16 |
1662d |
1676d
|
13/26 |
1644d |
159d2c7d8106
net-backports: sch_netem: fix rcu splat in netem_enqueue()
|
|
general protection fault in __apic_accept_irq
|
C |
done |
|
69 |
1672d |
1685d
|
13/26 |
1644d |
a073d7e3ad68
KVM: hyperv: Fix Direct Synthetic timers assert an interrupt w/o lapic_in_kernel
|
|
BUG: MAX_STACK_TRACE_ENTRIES too low! (2)
|
C |
done |
|
5045 |
1676d |
1845d
|
13/26 |
1644d |
12593b7467f9
locking/lockdep: Reduce space occupied by stack traces
|
|
general protection fault in qdisc_put
|
C |
done |
|
60 |
1672d |
1682d
|
13/26 |
1644d |
6efb971ba8ed
net_sched: let qdisc_put() accept NULL pointer
|
|
INFO: rcu detected stall in addrconf_dad_work
|
C |
done |
|
126 |
1674d |
1679d
|
13/26 |
1651d |
d4d6ec6dac07
sch_hhf: ensure quantum and hhf_non_hh_weight are non-zero
|
|
INFO: rcu detected stall in br_handle_frame
|
C |
done |
|
341 |
1674d |
1679d
|
13/26 |
1651d |
d4d6ec6dac07
sch_hhf: ensure quantum and hhf_non_hh_weight are non-zero
|
|
INFO: rcu detected stall in mld_ifc_timer_expire
|
C |
done |
|
152 |
1674d |
1682d
|
13/26 |
1651d |
d4d6ec6dac07
sch_hhf: ensure quantum and hhf_non_hh_weight are non-zero
|
|
INFO: rcu detected stall in netlink_sendmsg (2)
|
C |
done |
|
11 |
1675d |
1681d
|
13/26 |
1651d |
d4d6ec6dac07
sch_hhf: ensure quantum and hhf_non_hh_weight are non-zero
|
|
WARNING: refcount bug in nr_insert_socket
|
C |
done |
|
55 |
1718d |
1742d
|
13/26 |
1655d |
4638faac0327
netrom: hold sock when setting skb->destructor
|
|
KASAN: null-ptr-deref Write in rxrpc_unuse_local
|
C |
done |
|
4422 |
1707d |
1712d
|
12/26 |
1683d |
68553f1a6f74
rxrpc: Fix local refcounting
|
|
WARNING in smc_unhash_sk (2)
|
C |
done |
|
1047 |
1693d |
1829d
|
12/26 |
1693d |
cd2063604ea6
net/smc: avoid fallback in case of non-blocking connect
|
|
KASAN: slab-out-of-bounds Read in class_equal
|
syz |
done |
|
45 |
1714d |
1787d
|
12/26 |
1693d |
95fa145479fb
bpf: sockmap/tls, close can race with map free
|
|
general protection fault in tcf_ife_init
|
C |
done |
|
72 |
1715d |
1729d
|
12/26 |
1693d |
c8ec4632c6ac
ife: error out when nla attributes are empty
|
|
general protection fault in tls_sk_proto_close
|
syz |
done |
|
260 |
1693d |
1726d
|
12/26 |
1693d |
5d92e631b8be
net/tls: partially revert fix transition through disconnect with close
|
|
WARNING in debug_check_no_obj_freed
|
C |
done |
|
47 |
1694d |
1761d
|
12/26 |
1693d |
f9cedf1a9b1c
net/smc: do not schedule tx_work in SMC_CLOSED state
|
|
BUG: unable to handle kernel NULL pointer dereference in corrupted (4)
|
syz |
done |
done |
1 |
1757d |
1756d
|
12/26 |
1693d |
95fa145479fb
bpf: sockmap/tls, close can race with map free
|
|
kernel panic: corrupted stack end in corrupted
|
syz |
done |
|
17 |
1714d |
1761d
|
12/26 |
1693d |
95fa145479fb
bpf: sockmap/tls, close can race with map free
|
|
WARNING in __mark_chain_precision
|
C |
done |
|
105 |
1707d |
1743d
|
12/26 |
1707d |
b3b50f05dc50
bpf: fix precision bit propagation for BPF_ST instructions
|
|
kernel BUG at drivers/android/binder_alloc.c:LINE! (4)
|
C |
done |
|
26 |
1756d |
1764d
|
12/26 |
1715d |
bb4a2e48d510
binder: return errors from buffer copy functions
|
|
general protection fault in ovs_ct_exit
|
C |
done |
|
9888 |
1757d |
1762d
|
12/26 |
1715d |
b272a0ad7301
netns: restore ops before calling ops_exit_list
|
|
possible deadlock in userfaultfd_release
|
C |
done |
|
137 |
1754d |
1997d
|
12/26 |
1722d |
cbcfa130a911
fs/userfaultfd.c: disable irqs for fault_pending and event locks
|
|
WARNING: syz-executor still has locks held!
|
C |
done |
|
233 |
1958d |
1969d
|
12/26 |
1727d |
a72173ecfc67
Revert "exec: make de_thread() freezable"
|
|
general protection fault in __smc_diag_dump
|
syz |
done |
|
309 |
1917d |
1931d
|
12/26 |
1741d |
b03faa1fafc8
net/smc: postpone release of clcsock
|
|
KASAN: slab-out-of-bounds Read in rhashtable_walk_enter
|
C |
done |
|
48 |
1791d |
1795d
|
12/26 |
1757d |
526f5b851a96
tipc: fix modprobe tipc failed after switch order of device registration
|
|
KASAN: use-after-free Read in napi_gro_frags
|
C |
done |
|
16 |
1782d |
1783d
|
12/26 |
1763d |
a4270d6795b0
net-gro: fix use-after-free read in napi_gro_frags()
|
|
BUG: using __this_cpu_read() in preemptible code in ip6_finish_output
|
C |
done |
|
18807 |
1835d |
1840d
|
12/26 |
1767d |
28b05b928868
net: use correct this_cpu primitive in dev_recursion_level
|
|
WARNING: ODEBUG bug in netdev_freemem
|
syz |
done |
|
1042 |
1767d |
1932d
|
12/26 |
1767d |
a3c7cd0cdf11
batman-adv: mcast: fix multicast tt/tvlv worker locking
|
|
KASAN: use-after-free Read in __vb2_perform_fileio
|
C |
done |
|
786 |
1805d |
1995d
|
12/26 |
1767d |
d65842f7126a
media: vb2: add waiting_in_dqbuf flag
|
|
possible deadlock in acct_pin_kill
|
C |
done |
|
273 |
1810d |
2027d
|
12/26 |
1767d |
9419a3191dcb
acct_on(): don't mess with freeze protection
|
|
WARNING in compat_copy_entries (2)
|
syz |
done |
|
19416 |
1799d |
2232d
|
12/26 |
1785d |
7caa56f006e9
netfilter: ebtables: CONFIG_COMPAT: drop a bogus WARN_ON
|
|
WARNING in percpu_ref_kill_and_confirm
|
C |
done |
|
443 |
1814d |
1820d
|
12/26 |
1785d |
35fa71a030ca
io_uring: fail io_uring_register(2) on a dying io_uring instance
|
|
general protection fault in skb_queue_tail
|
C |
done |
|
35 |
1818d |
1820d
|
12/26 |
1785d |
032be5f19a94
rxrpc: fix race condition in rxrpc_input_packet()
|
|
WARNING in __kthread_bind_mask
|
C |
done |
|
2929 |
1819d |
1830d
|
12/26 |
1785d |
060586324648
io_uring: park SQPOLL thread if it's percpu
|
|
WARNING in io_uring_setup
|
C |
done |
|
3601 |
1810d |
1830d
|
12/26 |
1785d |
917257daa0fe
io_uring: only test SQPOLL cpu after we've verified it
|
|
general protection fault in xfrmi_decode_session
|
C |
done |
|
16694 |
1810d |
1881d
|
12/26 |
1785d |
6ed69184ed9c
xfrm: Reset secpath in xfrm failure
|
|
BUG: MAX_STACK_TRACE_ENTRIES too low!
|
C |
done |
|
1725 |
1846d |
1872d
|
11/26 |
1845d |
009bb421b6ce
workqueue, lockdep: Fix an alloc_workqueue() error path
|
|
general protection fault in __x86_indirect_thunk_rbx
|
C |
done |
|
16 |
1986d |
1987d
|
11/26 |
1852d |
d6367d624137
fs/locks: use properly initialized file_lock when unlocking.
|
|
WARNING: bad usercopy in corrupted (2)
|
C |
done |
|
12 |
1922d |
1968d
|
11/26 |
1853d |
bc6e019b6ee6
fou: Prevent unbounded recursion in GUE error handler also with UDP-Lite
|
|
net-next boot error: can't ssh into the instance
|
|
|
|
33 |
1903d |
1905d
|
11/26 |
1868d |
947b7ac135b1
Revert "block: cover another queue enter recursion via BIO_QUEUE_ENTERED"
|
|
BUG: unable to handle kernel NULL pointer dereference in corrupted (3)
|
C |
|
|
1 |
1925d |
1925d
|
11/26 |
1868d |
44039e00171b
fou6: Prevent unbounded recursion in GUE error handler
|
|
net boot error: can't ssh into the instance
|
|
|
|
42 |
1903d |
1905d
|
11/26 |
1868d |
947b7ac135b1
Revert "block: cover another queue enter recursion via BIO_QUEUE_ENTERED"
|
|
upstream boot error: can't ssh into the instance (2)
|
|
|
|
45 |
1905d |
1906d
|
11/26 |
1868d |
947b7ac135b1
Revert "block: cover another queue enter recursion via BIO_QUEUE_ENTERED"
|
|
net build error
|
|
|
|
2 |
2031d |
2032d
|
11/26 |
1932d |
16fdf8ba9839
rds: Fix build regression.
|
|
unregister_netdevice: waiting for DEV to become free
|
C |
|
|
170521 |
2077d |
2188d
|
8/26 |
2077d |
8cc88773855f
xfrm: fix missing dst_release() after policy blocking lbcast and multicast
|
|
WARNING: kernel stack regs has bad 'bp' value (3)
|
C |
|
|
7971 |
2109d |
2264d
|
8/26 |
2107d |
b7b73cd5d746
crypto: x86/salsa20 - remove x86 salsa20 implementations
|
|
BUG: workqueue lockup (3)
|
C |
|
|
1215 |
2111d |
2164d
|
8/26 |
2107d |
4fb48871409e
restore cond_resched() in shrink_dcache_parent()
|
|
WARNING: kernel stack frame pointer has bad value
|
C |
|
|
1108 |
2110d |
2188d
|
8/26 |
2107d |
f044a84e040b
crypto: don't optimize keccakf()
|
|
general protection fault in gfn_to_rmap
|
syz |
|
|
7 |
2249d |
2358d
|
5/26 |
2160d |
b7e31be38558
KVM: x86: fix vcpu initialization with userspace lapic
|
|
BUG: workqueue lockup (2)
|
C |
|
|
406 |
2167d |
2325d
|
5/26 |
2165d |
966031f34018
n_tty: fix EXTPROC vs ICANON interaction with TIOCINQ (aka FIONREAD)
|
|
BUG: unable to handle kernel paging request in ata_bmdma_qc_prep
|
C |
|
|
13 |
2350d |
2359d
|
4/26 |
2215d |
058f58e235cb
libata: fix length validation of ATAPI-relayed SCSI commands
|
|
WARNING in ata_bmdma_qc_issue
|
C |
|
|
1 |
2439d |
2359d
|
4/26 |
2215d |
2c1ec6fda2d0
libata: don't try to pass through NCQ commands to non-NCQ devices
|
|
KASAN: use-after-free Read in get_work_pool
|
syz |
|
|
8 |
2341d |
2363d
|
4/26 |
2215d |
2cc683e88c0c
kcm: lock lower socket in kcm_attach
|
|
WARNING in ata_qc_issue
|
C |
|
|
35 |
2344d |
2363d
|
4/26 |
2215d |
9173e5e80729
libata: remove WARN() for DMA or PIO command without data
|
|
kernel BUG at arch/x86/kvm/x86.c:LINE!
|
syz |
|
|
20 |
2330d |
2363d
|
4/26 |
2227d |
61cb57c9ed63
KVM: x86: Exit to user-mode on #UD intercept when emulator requires
|
|
lost connection to test machine (4)
|
C |
|
|
1189 |
2240d |
2254d
|
4/26 |
2240d |
9c2d63b843a5
bpf: fix mlock precharge on arraymaps
|
|
lost connection to test machine (3)
|
C |
|
|
4251 |
2262d |
2301d
|
4/26 |
2262d |
889c604fd0b5
netfilter: x_tables: fix int overflow in xt_alloc_table_info()
|
|
WARNING in task_participate_group_stop
|
C |
|
|
29 |
2344d |
2359d
|
4/26 |
2265d |
426915796cca
kernel/signal.c: remove the no longer needed SIGNAL_UNKILLABLE check in complete_signal()
|
|
WARNING: kernel stack regs has bad 'bp' value (2)
|
C |
|
|
16238 |
2266d |
2330d
|
4/26 |
2266d |
d8c7fe9f2a48
crypto: x86/twofish-3way - Fix %rbp usage
|
|
BUG: sleeping function called from invalid context at ./include/linux/uaccess.h:LINE
|
C |
|
|
19609 |
2333d |
2359d
|
4/26 |
2271d |
4d772cb85f64
KVM: x86: fix em_fxstor() sleeping while in atomic
|
|
possible deadlock in snd_seq_deliver_event
|
C |
|
|
6 |
2352d |
2363d
|
4/26 |
2274d |
1f20f9ff57ca
ALSA: seq: Fix nested rwsem annotation for lockdep splat
|
|
kernel panic: softlockup: hung tasks
|
|
|
|
2 |
2401d |
2371d
|
3/26 |
2321d |
4ba161a793d5
SUNRPC: Allow connect to return EHOSTUNREACH
|
|
kernel BUG at net/key/af_key.c:LINE!
|
C |
|
|
63 |
2373d |
2365d
|
3/26 |
2325d |
0e74aa1d79a5
xfrm: Copy policy family in clone_policy
|
|
possible deadlock in generic_file_write_iter
|
C |
|
|
61506 |
2331d |
2354d
|
3/26 |
2331d |
e319e1fbd9d4
block, locking/lockdep: Assign a lock_class per gendisk used for wait_for_completion()
|
|
KASAN: slab-out-of-bounds Read in tipc_nametbl_lookup_dst_nodes
|
C |
|
|
22388 |
2343d |
2365d
|
3/26 |
2331d |
f65163fed0e7
tipc: eliminate KASAN warning
|
|
general protection fault in tun_flow_cleanup
|
|
|
|
1 |
2403d |
2371d
|
3/26 |
2331d |
ee74d9967b82
tun: do not arm flow_gc_timer in tun_flow_init()
|
|
BUG: unable to handle kernel paging request in snd_seq_oss_readq_puts
|
C |
|
|
389 |
2351d |
2357d
|
3/26 |
2341d |
132d358b183a
ALSA: seq: Fix OSS sysex delivery in OSS emulation
|
|
BUG: soft lockup
|
C |
|
|
466 |
2344d |
2357d
|
3/26 |
2341d |
9b7d869ee5a7
ALSA: timer: Limit max instances per timer
|
|
BUG: workqueue lockup
|
C |
|
|
172 |
2348d |
2359d
|
3/26 |
2348d |
93161922c658
tun/tap: sanitize TUNSETSNDBUF input
|
|
general protection fault in __list_del_entry_valid
|
C |
|
|
72 |
2351d |
2365d
|
3/26 |
2348d |
1137b5e2529a
ipsec: Fix aborted xfrm policy dump crash
|
|
KASAN: use-after-free Write in __run_timers
|
|
|
|
6144 |
2368d |
2428d
|
3/26 |
2348d |
0ad646c81b21
net-backports: tun: call dev_get_valid_name() before register_netdevice()
|
|
WARNING in sk_stream_kill_queues
|
syz |
|
|
96 |
2435d |
2438d
|
3/26 |
2351d |
7749d4ff88d3
net-backports: dccp: purge write queue in dccp_destroy_sock()
|
|
kernel BUG at net/ipv4/tcp_output.c:LINE!
|
|
|
|
37 |
2408d |
2420d
|
3/26 |
2351d |
b1ed4c4fa9a5
tcp: add an ability to dump and restore window parameters
|
|
general protection fault in refcount_sub_and_test
|
|
|
|
1 |
2452d |
2436d
|
3/26 |
2352d |
12d94a804946
ipv6: fix NULL dereference in ip6_route_dev_notify()
|
|
KASAN: double-free or invalid-free in selinux_tun_dev_free_security
|
C |
|
|
12033 |
2429d |
2439d
|
3/26 |
2353d |
ff244c6b29b1
tun: handle register_netdevice() failures properly
|
|
KASAN: use-after-free Read in dev_queue_xmit_nit
|
C |
|
|
13 |
2395d |
2407d
|
3/26 |
2353d |
008ba2a13f2d
packet: hold bind lock when rebinding to fanout hook
|
|
BUG: unable to handle kernel NULL pointer dereference in free_fib_info_rcu
|
|
|
|
3 |
2436d |
2436d
|
3/26 |
2353d |
187e5b3ac84d
ipv4: fix NULL dereference in free_fib_info_rcu()
|
|
KASAN: use-after-free Read in ccid2_hc_tx_rto_expire
|
|
|
|
5 |
2431d |
2435d
|
3/26 |
2353d |
120e9dabaf55
dccp: defer ccid_hc_tx_delete() at dismantle time
|
|
WARNING in fib6_del
|
|
|
|
24 |
2413d |
2427d
|
3/26 |
2353d |
7483cea79957
ipv6: fib: Unlink replaced routes from their nodes
|
|
KASAN: use-after-free Read in __list_add_valid
|
syz |
|
|
26 |
2369d |
2417d
|
3/26 |
2365d |
008ba2a13f2d
packet: hold bind lock when rebinding to fanout hook
|
|
general protection fault in kvm_cpuid
|
C |
|
|
20 |
2395d |
2414d
|
3/26 |
2365d |
d1cd3ce90044
KVM: MMU: check guest CR3 reserved bits based on its physical address width.
|
|
general protection fault in skb_clone
|
syz |
|
|
3 |
2434d |
2434d
|
3/26 |
2365d |
0bbd7dad34f8
tun: make tun_build_skb() thread safe
|
|
BUG: unable to handle kernel paging request in skb_release_data
|
syz |
|
|
15 |
2434d |
2435d
|
3/26 |
2365d |
0bbd7dad34f8
tun: make tun_build_skb() thread safe
|
|
WARNING: kernel stack regs has bad 'bp' value
|
C |
|
|
66131 |
2394d |
2439d
|
3/26 |
2366d |
d3dfbfe2e6e7
crypto: x86/sha256-avx2 - Fix RBP usage
|
|
WARNING in __local_bh_enable_ip
|
|
|
|
22 |
2396d |
2403d
|
3/26 |
2366d |
930651a75bf1
bpf: do not disable/enable BH in bpf_map_free_id()
|
|
general protection fault in SyS_bpf
|
C |
|
|
10 |
2425d |
2426d
|
3/26 |
2366d |
ae2b27b859a1
bpf: fix a return in sockmap_get_from_fd()
|
|
KASAN: use-after-free Read in free_ldt_struct
|
C |
|
|
109 |
2423d |
2437d
|
3/26 |
2366d |
ccd5b3235180
x86/mm: Fix use-after-free of ldt_struct
|
|
BUG: unable to handle kernel NULL pointer dereference at ADDR
|
C |
|
|
63 |
2423d |
2437d
|
3/26 |
2366d |
3fd871270732
strparser: initialize all callbacks
|
|
WARNING in idr_replace
|
C |
|
|
1209 |
2406d |
2438d
|
3/26 |
2366d |
a47f68d6a944
idr: remove WARN_ON_ONCE() when trying to replace negative ID
|
|
suspicious RCU usage at ./include/linux/kvm_host.h:LINE
|
C |
|
|
103402 |
2394d |
2439d
|
3/26 |
2366d |
021086e383fa
KVM: fix rcu warning on VM_CREATE errors
|
|
KASAN: use-after-free Read in skb_push
|
|
|
|
4 |
2430d |
2436d
|
3/26 |
2366d |
5bfd37b4de5c
tipc: fix use-after-free
|
|
KASAN: wild-memory-access Read in skb_copy_ubufs
|
C |
|
|
23 |
2434d |
2435d
|
3/26 |
2366d |
0bbd7dad34f8
tun: make tun_build_skb() thread safe
|
|
general protection fault in __skb_flow_dissect
|
C |
|
|
37 |
2436d |
2438d
|
3/26 |
2366d |
7324157b8af1
dsa: fix flow disector null pointer
|
|
general protection fault in __ip_options_echo (2)
|
C |
|
|
2 |
2415d |
2414d
|
3/26 |
2366d |
ca2c1418efe9
udp: drop head states only when all skb references are gone
|
|
WARNING in refcount_inc
|
|
|
|
7 |
2419d |
2427d
|
3/26 |
2366d |
551143d8d954
net_sched: fix a refcount_t issue with noop_qdisc
|
|
general protection fault in skb_release_data
|
syz |
|
|
198 |
2434d |
2435d
|
3/26 |
2366d |
0bbd7dad34f8
tun: make tun_build_skb() thread safe
|
|
KASAN: slab-out-of-bounds Read in skb_release_data
|
|
|
|
1 |
2434d |
2434d
|
3/26 |
2366d |
0bbd7dad34f8
tun: make tun_build_skb() thread safe
|
|
general protection fault in fib6_add
|
|
|
|
18 |
2430d |
2436d
|
3/26 |
2366d |
348a4002729c
ipv6: repair fib6 tree in failure case
|
|
kernel BUG at mm/slab.c:LINE!
|
C |
|
|
860 |
2413d |
2417d
|
3/26 |
2366d |
96e5ae4e76f1
bpf: fix numa_node validation
|
|
BUG: Bad page state
|
C |
|
|
2 |
2435d |
2436d
|
3/26 |
2366d |
263630e8d176
mm/madvise.c: fix freeing of locked page with MADV_FREE
|
|
KASAN: use-after-free Read in get_mm_exe_file
|
C |
|
|
2 |
2429d |
2434d
|
3/26 |
2366d |
2b7e8665b4ff
fork: fix incorrect fput of ->exe_file causing use-after-free
|
|
general protection fault in perf_trace_block_get_rq
|
C |
|
|
180 |
2406d |
2415d
|
3/26 |
2366d |
f8e9ec16611b
block: tolerate tracing of NULL bio
|
|
KASAN: use-after-free Read in ip6_pol_route
|
|
|
|
249 |
2429d |
2437d
|
3/26 |
2366d |
383143f31d7d
ipv6: reset fn->rr_ptr when replacing route
|
|
possible deadlock in kcm_sendpage
|
syz |
|
|
14 |
2418d |
2421d
|
3/26 |
2366d |
351050ecd652
kcm: do not attach PF_KCM sockets to avoid deadlock
|
|
KASAN: use-after-free Read in skb_release_data
|
syz |
|
|
7 |
2435d |
2435d
|
3/26 |
2366d |
0bbd7dad34f8
tun: make tun_build_skb() thread safe
|
|
general protection fault in fib_dump_info
|
C |
|
|
428 |
2429d |
2439d
|
3/26 |
2366d |
bc3aae2bbac4
net: check and errout if res->fi is NULL when RTM_F_FIB_MATCH is set
|
|
INFO: task hung
|
C |
|
|
13878 |
2394d |
2459d
|
3/26 |
2394d |
bd9dfc54e392
tcp: fix hang in tcp_sendpage_locked()
|
|
WARNING in kvm_arch_vcpu_ioctl_run
|
C |
|
|
20284 |
2394d |
2459d
|
3/26 |
2394d |
bbeac2830f4d
KVM: X86: Fix residual mmio emulation request to userspace
|
|
inconsistent lock state in sk_clone_lock
|
C |
|
|
16 |
2436d |
2439d
|
2/26 |
2414d |
d624d276d1dd
tcp: fix possible deadlock in TCP stack vs BPF filter
|
|
kernel BUG at mm/usercopy.c:LINE!
|
C |
|
|
23 |
2435d |
2439d
|
2/26 |
2414d |
fd851ba9caa9
udp: harden copy_linear_skb()
|
|
BUG: sleeping function called from invalid context at mm/slab.h:LINE
|
C |
|
|
8 |
2436d |
2439d
|
2/26 |
2414d |
36f41f8fc6d8
af_key: do not use GFP_KERNEL in atomic contexts
|