syzbot

 sign-in | mailing list | source | docs
🐞 Open [983] Subsystems 🐞 Fixed [4543] 🐞 Invalid [10475] 📈 Kernel Health 📈 Bug Lifetimes 📈 Fuzzing 📈 Crashes 💬 Send us feedback

bluetooth subsystem


List(s): linux-bluetooth@vger.kernel.org
Maintainer(s): johan.hedberg@gmail.com, luiz.dentz@gmail.com, marcel@holtmann.org
Fixed bugs: 52
Parent subsystem(s): net (76)
open (22):
Title Repro Cause bisect Fix bisect Count Last Reported Discussions
KASAN: slab-use-after-free Write in hci_conn_drop bluetooth 1 11d 6d21h 💬 0 [6d21h]
KASAN: slab-use-after-free Write in sco_chan_del bluetooth 2 6d17h 13d 💬 1 [13d]
WARNING: bad unlock balance in l2cap_disconnect_rsp bluetooth C 72 13d 39d 💬 0 [28d]
WARNING: bad unlock balance in l2cap_bredr_sig_cmd bluetooth 2 38d 41d 💬 0 [41d]
WARNING in hci_send_acl bluetooth 1 90d 86d 💬 0 [86d]
WARNING in l2cap_do_send bluetooth 2 36d 111d 💬 0 [111d]
possible deadlock in rfcomm_dlc_exists bluetooth C error 619 2h50m 128d 💬 0 [28d]
WARNING in call_timer_fn mm bluetooth ext4 syz unreliable 81 2d15h 193d 💬 8 [28d]
possible deadlock in hci_conn_hash_flush bluetooth 4 100d 230d 💬 0 [230d]
possible deadlock in discov_off bluetooth 47 30d 237d 💬 0 [28d]
possible deadlock in hci_unregister_dev bluetooth 82 30d 279d 💬 0 [28d]
general protection fault in hci_uart_tty_ioctl bluetooth C error 3 25d 285d 💬 0 [285d]
possible deadlock in sco_conn_del bluetooth C done 279 12d 416d 💬 0 [60d]
general protection fault in l2cap_chan_timeout (3) bluetooth C inconclusive inconclusive 3 45d 472d 💬 0 [472d]
possible deadlock in rfcomm_sk_state_change bluetooth C done 6454 2h12m 622d PATCH [137d]
INFO: task can't die in __lock_sock bluetooth C done error 1048 24d 651d PATCH [601d]
KASAN: use-after-free Read in __queue_work (3) bluetooth syz done done 83 194d 1023d 💬 1 [744d]
WARNING: ODEBUG bug in put_device bluetooth syz done error 36 2d13h 1024d 💬 0 [28d]
KASAN: use-after-free Read in __sco_sock_close bluetooth syz error error 1 1027d 1027d 💬 0 [1027d]
KASAN: use-after-free Write in hci_conn_del bluetooth syz done inconclusive 3 614d 1027d 💬 1 [1020d]
general protection fault in hci_phy_link_complete_evt bluetooth C done unreliable 50 902d 1029d 💬 0 [1026d]
WARNING in hci_conn_timeout bluetooth C done 3357 37m 1030d 💬 1 [28d]
moderation (1):
Title Repro Cause bisect Fix bisect Count Last Reported Discussions
KASAN: slab-use-after-free Write in sco_conn_del bluetooth 1 4d06h 6h34m 💬 0 [never]