syzbot

 sign-in | mailing list | source | docs
🐞 Open [1462]
Subsystems
🐞 Fixed [6847]
🐞 Invalid [17763]
Missing Backports [226]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
Total Repo Heatmap Subsystems Heatmap
💬 Send us feedback

bluetooth subsystem


List(s): linux-bluetooth@vger.kernel.org
Maintainer(s): luiz.dentz@gmail.com, marcel@holtmann.org
Fixed bugs: 97
Parent subsystem(s): kernel (82)
open (44):
Title Rank 🛈 Repro Cause bisect Fix bisect Count Last Reported Discussions
memory leak in skb_clone (3) batman bluetooth 3 C 3 26d 4d12h
WARNING: locking bug in l2cap_unregister_user bluetooth 4 3 7d10h 18d
WARNING in hci_connect_sco bluetooth -1 1 22d 18d
WARNING in hci_send_cmd (3) bluetooth -1 1 31d 27d
KASAN: null-ptr-deref Write in l2cap_sock_suspend_cb (3) bluetooth 12 3 24d 33d
KASAN: slab-use-after-free Write in le_read_features_complete bluetooth 24 C error 432 4d10h 35d PATCH [24d]
INFO: task hung in get_signal (2) bluetooth 1 syz 1 41d 37d
KASAN: slab-use-after-free Write in hci_conn_drop (3) bluetooth 24 C error 459 3h43m 39d 💬 1 [39d]
KASAN: slab-use-after-free Read in skb_pull bluetooth 19 1 49d 44d
KASAN: slab-use-after-free Read in hci_cmd_work (2) bluetooth 19 27015 54d 54d PATCH [17d]
memory leak in __hci_cmd_sync_sk bluetooth usb 3 C 1 50d 55d 💬 19 [49d]
linux-next test error: KASAN: slab-use-after-free Read in hci_cmd_work bluetooth -1 4 55d 58d
INFO: trying to register non-static key in l2cap_unregister_user bluetooth -1 7 12d 87d
KASAN: vmalloc-out-of-bounds Read in kcov_remote_start usb bluetooth 17 710 3h56m 99d
KASAN: slab-use-after-free Read in l2cap_disconn_ind (2) bluetooth 19 6 64d 99d
WARNING in hci_conn_drop (3) bluetooth -1 2 68d 100d
KASAN: slab-use-after-free Read in hidp_session_thread (2) bluetooth 19 2 73d 122d
stack segment fault in kernfs_rename_ns bluetooth 2 32 13h35m 176d
KASAN: slab-use-after-free Read in hci_uart_write_work bluetooth 19 syz error 47 4d14h 181d 💬 3 [174d]
INFO: task hung in hci_conn_failed (4) bluetooth 1 syz 17 37d 214d
INFO: task hung in hci_remote_features_evt (2) bluetooth 1 syz error inconclusive 9 105d 250d
possible deadlock in l2cap_conn_del bluetooth 4 syz error 470 9h47m 286d
KASAN: wild-memory-access Read in l2cap_connect_cfm bluetooth 19 C error 168 2h25m 300d 💬 1 [91d]
possible deadlock in l2cap_info_timeout bluetooth 4 62 9d17h 320d
general protection fault in h5_recv bluetooth 10 C done 3327 5h03m 336d 💬 1 [13d]
KASAN: slab-use-after-free Read in force_devcd_write bluetooth 19 C 448 129d 383d 💬 4 [139d]
WARNING: held lock freed in bt_accept_dequeue bluetooth 4 20 20d 389d
WARNING in hci_conn_timeout (2) bluetooth -1 C error 4956 49m 390d
INFO: task hung in hci_cmd_sync_clear (3) bluetooth 1 syz done 68 4d18h 428d
KASAN: slab-use-after-free Read in l2cap_unregister_user bluetooth 24 C done 45831 2h42m 436d PATCH [66d]
KASAN: slab-use-after-free Read in bt_accept_unlink bluetooth 19 syz 107 10d 447d 💬 1 [58d]
KASAN: slab-use-after-free Read in l2cap_sock_new_connection_cb bluetooth 19 syz error 109 1d09h 447d 💬 3 [47d]
KASAN: slab-use-after-free Read in l2cap_sock_ready_cb (2) bluetooth 19 64 7d01h 467d
BUG: corrupted list in _hci_cmd_sync_cancel_entry bluetooth 8 syz error error 46 79d 471d 💬 1 [200d]
WARNING: ODEBUG bug in hci_release_dev (2) bluetooth -1 C error 442 3d04h 536d
KASAN: slab-use-after-free Read in l2cap_recv_frame bluetooth 19 C inconclusive inconclusive 140 3d15h 624d 💬 2 [109d]
WARNING in hci_recv_frame bluetooth -1 C error 131 3d02h 625d 💬 1 [237d]
WARNING in l2cap_chan_send bluetooth -1 53 16d 638d
KASAN: slab-use-after-free Read in __hci_req_sync bluetooth 19 C error error 3383 516d 644d 💬 2 [549d]
WARNING in l2cap_chan_del bluetooth -1 339 3d07h 665d
general protection fault in lock_sock_nested bluetooth 19 C done done 4082 6h15m 853d
WARNING in call_timer_fn bluetooth -1 C unreliable 7983 5h03m 1152d 💬 8 [13d]
general protection fault in l2cap_chan_timeout (3) bluetooth 19 C inconclusive inconclusive 76 23d 1431d
general protection fault in skb_release_data (2) net bluetooth 24 C done error 703 286d 1950d
moderation (3):
Title Rank 🛈 Repro Cause bisect Fix bisect Count Last Reported Discussions
KCSAN: data-race in __hci_cmd_sync_sk / hci_cmd_sync_cancel_sync bluetooth 6 1 33d 33d
KCSAN: data-race in data_push_tail / vsnprintf (9) bluetooth 6 176 2d19h 324d
KCSAN: data-race in data_alloc / data_push_tail (3) bluetooth 6 57 6d16h 490d