syzbot

 sign-in | mailing list | source | docs
🐞 Open [1457]
Subsystems
🐞 Fixed [6865]
🐞 Invalid [17817]
Missing Backports [226]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
Total Repo Heatmap Subsystems Heatmap
💬 Send us feedback

bluetooth subsystem


List(s): linux-bluetooth@vger.kernel.org
Maintainer(s): luiz.dentz@gmail.com, marcel@holtmann.org
Fixed bugs: 97
Parent subsystem(s): kernel (80)
Title Rank 🛈 Repro Cause bisect Fix bisect Count Last Reported Discussions
memory leak in skb_clone (3) batman bluetooth 3 C 3 32d 10d
WARNING: locking bug in l2cap_unregister_user bluetooth 4 3 13d 24d
WARNING in hci_connect_sco bluetooth -1 1 28d 24d
WARNING in hci_send_cmd (3) bluetooth -1 1 38d 34d
KASAN: null-ptr-deref Write in l2cap_sock_suspend_cb (3) bluetooth 12 3 30d 40d
KASAN: slab-use-after-free Write in le_read_features_complete bluetooth 24 C error 432 10d 41d PATCH [30d]
INFO: task hung in get_signal (2) bluetooth 1 syz 1 47d 43d
KASAN: slab-use-after-free Write in hci_conn_drop (3) bluetooth 24 C error 554 2h32m 46d 💬 1 [45d]
KASAN: slab-use-after-free Read in skb_pull bluetooth 19 1 55d 51d
KASAN: slab-use-after-free Read in hci_cmd_work (2) bluetooth 19 27015 60d 61d PATCH [24d]
memory leak in __hci_cmd_sync_sk bluetooth usb 3 C 1 57d 62d 💬 19 [56d]
linux-next test error: KASAN: slab-use-after-free Read in hci_cmd_work bluetooth -1 4 62d 64d
INFO: trying to register non-static key in l2cap_unregister_user bluetooth -1 8 3d12h 94d
KASAN: vmalloc-out-of-bounds Read in kcov_remote_start usb bluetooth 17 765 4h50m 105d
KASAN: slab-use-after-free Read in l2cap_disconn_ind (2) bluetooth 19 6 71d 106d
WARNING in hci_conn_drop (3) bluetooth -1 2 75d 106d
KASAN: slab-use-after-free Read in hidp_session_thread (2) bluetooth 19 2 80d 128d
stack segment fault in kernfs_rename_ns bluetooth 2 34 2d18h 182d
KASAN: slab-use-after-free Read in hci_uart_write_work bluetooth 19 syz error 65 1d15h 187d 💬 3 [180d]
INFO: task hung in hci_conn_failed (4) bluetooth 1 syz 17 44d 221d
INFO: task hung in hci_remote_features_evt (2) bluetooth 1 syz error inconclusive 9 111d 256d
possible deadlock in l2cap_conn_del bluetooth 4 syz error 485 1d01h 292d
KASAN: wild-memory-access Read in l2cap_connect_cfm bluetooth 19 C error 174 1d13h 307d 💬 1 [98d]
possible deadlock in l2cap_info_timeout bluetooth 4 64 19h59m 326d
general protection fault in h5_recv bluetooth 10 C done 3433 1h35m 343d 💬 1 [20d]
KASAN: slab-use-after-free Read in force_devcd_write bluetooth 19 C 448 136d 389d 💬 4 [146d]
WARNING: held lock freed in bt_accept_dequeue bluetooth 4 20 26d 396d
WARNING in hci_conn_timeout (2) bluetooth -1 C error 5549 10m 396d
INFO: task hung in hci_cmd_sync_clear (3) bluetooth 1 syz done 74 2h36m 435d
KASAN: slab-use-after-free Read in l2cap_unregister_user bluetooth 24 C done 45872 32m 442d PATCH [72d]
KASAN: slab-use-after-free Read in bt_accept_unlink bluetooth 19 syz 109 3d18h 454d 💬 1 [64d]
KASAN: slab-use-after-free Read in l2cap_sock_new_connection_cb bluetooth 19 syz error 112 3d06h 454d 💬 3 [54d]
KASAN: slab-use-after-free Read in l2cap_sock_ready_cb (2) bluetooth 19 65 6d09h 474d
BUG: corrupted list in _hci_cmd_sync_cancel_entry bluetooth 8 syz error error 46 86d 478d 💬 1 [206d]
WARNING: ODEBUG bug in hci_release_dev (2) bluetooth -1 C error 444 3d00h 543d
KASAN: slab-use-after-free Read in l2cap_recv_frame bluetooth 19 C inconclusive inconclusive 140 10d 631d 💬 2 [116d]
WARNING in hci_recv_frame bluetooth -1 C error 132 1d23h 632d 💬 1 [243d]
WARNING in l2cap_chan_send bluetooth -1 53 23d 644d
KASAN: slab-use-after-free Read in __hci_req_sync bluetooth 19 C error error 3383 522d 651d 💬 2 [556d]
WARNING in l2cap_chan_del bluetooth -1 339 9d18h 672d
general protection fault in lock_sock_nested bluetooth 19 C done done 4124 12m 860d
WARNING in call_timer_fn bluetooth -1 C unreliable 8019 4h56m 1159d 💬 8 [20d]
general protection fault in l2cap_chan_timeout (3) bluetooth 19 C inconclusive inconclusive 77 3d08h 1437d
general protection fault in skb_release_data (2) net bluetooth 24 C done error 703 292d 1957d
Title Rank 🛈 Repro Cause bisect Fix bisect Count Last Reported Discussions
KCSAN: data-race in __hci_cmd_sync_sk / hci_cmd_sync_cancel_sync bluetooth 6 1 40d 40d
KCSAN: data-race in data_push_tail / vsnprintf (9) bluetooth 6 179 13h50m 331d
KCSAN: data-race in data_alloc / data_push_tail (3) bluetooth 6 57 13d 497d