syzbot

 sign-in | mailing list | source | docs
🐞 Open [1430]
Subsystems
🐞 Fixed [6752]
🐞 Invalid [17381]
Missing Backports [221]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
Total Repo Heatmap Subsystems Heatmap
💬 Send us feedback

bluetooth subsystem


List(s): linux-bluetooth@vger.kernel.org
Maintainer(s): luiz.dentz@gmail.com, marcel@holtmann.org
Fixed bugs: 97
Parent subsystem(s): kernel (90)
open (39):
Title Rank 🛈 Repro Cause bisect Fix bisect Count Last Reported Discussions
KASAN: slab-use-after-free Read in hci_cmd_work (2) bluetooth 19 27015 2d12h 3d10h
memory leak in __hci_cmd_sync_sk bluetooth usb 3 C 1 8d02h 4d02h 💬 14 [2h39m]
linux-next test error: KASAN: slab-use-after-free Read in hci_cmd_work bluetooth -1 4 4d06h 6d21h
INFO: trying to register non-static key in l2cap_unregister_user bluetooth -1 1 40d 36d
KASAN: vmalloc-out-of-bounds Read in kcov_remote_start bluetooth usb 17 279 5h30m 47d
KASAN: slab-use-after-free Read in l2cap_disconn_ind (2) bluetooth 19 6 13d 48d
WARNING in hci_conn_drop (3) bluetooth -1 2 17d 49d
BUG: unable to handle kernel paging request in l2cap_conn_del bluetooth 8 1 66d 61d
KASAN: slab-use-after-free Read in hidp_session_thread (2) bluetooth 19 2 22d 70d
WARNING in hci_devcd_register (2) bluetooth -1 4 79d 98d
stack segment fault in kernfs_rename_ns bluetooth 2 18 8d23h 124d
KASAN: slab-use-after-free Read in hci_uart_write_work bluetooth 19 syz 9 14d 130d 💬 3 [122d]
INFO: task hung in hci_conn_failed (4) bluetooth 1 syz 16 29d 163d
INFO: task hung in hci_remote_features_evt (2) bluetooth 1 syz error inconclusive 9 53d 198d
possible deadlock in l2cap_conn_del bluetooth 4 syz error 380 3d06h 234d
KASAN: wild-memory-access Read in l2cap_connect_cfm bluetooth 19 C error 91 1h00m 249d 💬 1 [40d]
possible deadlock in l2cap_info_timeout bluetooth 4 46 6d21h 268d
general protection fault in h5_recv bluetooth 10 C done 2353 1h02m 285d 💬 1 [25d]
KASAN: slab-use-after-free Read in msft_opcode_get bluetooth 19 19 80d 329d
KASAN: slab-use-after-free Read in force_devcd_write bluetooth 19 C 448 78d 331d 💬 4 [88d]
WARNING: held lock freed in bt_accept_dequeue bluetooth 4 16 14d 338d
WARNING in hci_conn_timeout (2) bluetooth -1 C error 1109 55m 338d
INFO: task hung in hci_cmd_sync_clear (3) bluetooth 1 syz done 22 10d 377d
KASAN: slab-use-after-free Read in l2cap_unregister_user bluetooth 24 C done 44974 51m 384d PATCH [14d]
BUG: corrupted list in hci_cmd_sync_dequeue_once bluetooth 8 129 21d 396d
KASAN: slab-use-after-free Read in bt_accept_unlink bluetooth 19 syz 99 6d18h 396d 💬 1 [6d15h]
KASAN: slab-use-after-free Read in l2cap_sock_new_connection_cb bluetooth 19 84 6d21h 396d
KASAN: slab-use-after-free Read in l2cap_sock_ready_cb (2) bluetooth 19 61 25d 416d
BUG: corrupted list in _hci_cmd_sync_cancel_entry bluetooth 8 syz error 46 28d 420d 💬 1 [148d]
WARNING: ODEBUG bug in hci_release_dev (2) bluetooth -1 C error 387 4h40m 485d
KASAN: slab-use-after-free Read in l2cap_recv_frame bluetooth 19 C inconclusive inconclusive 139 63d 573d 💬 2 [58d]
WARNING in hci_recv_frame bluetooth -1 C error 110 2d15h 574d 💬 1 [185d]
WARNING in l2cap_chan_send bluetooth -1 50 35d 586d
KASAN: slab-use-after-free Read in __hci_req_sync bluetooth 19 C error error 3383 464d 593d 💬 2 [498d]
WARNING in l2cap_chan_del bluetooth -1 327 20h33m 614d
general protection fault in lock_sock_nested bluetooth 19 C done done 3759 6h15m 802d
WARNING in call_timer_fn bluetooth -1 C unreliable 7652 7h41m 1101d 💬 8 [25d]
general protection fault in l2cap_chan_timeout (3) bluetooth 19 C inconclusive inconclusive 71 6d05h 1379d
general protection fault in skb_release_data (2) net bluetooth 24 C done error 703 234d 1899d
moderation (4):
Title Rank 🛈 Repro Cause bisect Fix bisect Count Last Reported Discussions
KCSAN: data-race in hci_uart_open / hci_uart_tty_close bluetooth 6 1 25d 25d
WARNING: refcount bug in hci_conn_del_sysfs bluetooth 13 1 63d 59d
KASAN: slab-use-after-free Read in full_proxy_write (2) bluetooth 19 3 88d 87d
KASAN: slab-use-after-free Read in skb_dequeue bluetooth 19 4 71d 167d