syzbot

 sign-in | mailing list | source | docs
🐞 Open [1466]
Subsystems
🐞 Fixed [6848]
🐞 Invalid [17769]
Missing Backports [226]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
Total Repo Heatmap Subsystems Heatmap
💬 Send us feedback

bluetooth subsystem


List(s): linux-bluetooth@vger.kernel.org
Maintainer(s): luiz.dentz@gmail.com, marcel@holtmann.org
Fixed bugs: 97
Parent subsystem(s): kernel (82)
open (44):
Title Rank 🛈 Repro Cause bisect Fix bisect Count Last Reported Discussions
memory leak in skb_clone (3) batman bluetooth 3 C 3 26d 5d07h
WARNING: locking bug in l2cap_unregister_user bluetooth 4 3 8d05h 18d
WARNING in hci_connect_sco bluetooth -1 1 22d 18d
WARNING in hci_send_cmd (3) bluetooth -1 1 32d 28d
KASAN: null-ptr-deref Write in l2cap_sock_suspend_cb (3) bluetooth 12 3 24d 34d
KASAN: slab-use-after-free Write in le_read_features_complete bluetooth 24 C error 432 5d05h 35d PATCH [25d]
INFO: task hung in get_signal (2) bluetooth 1 syz 1 41d 37d
KASAN: slab-use-after-free Write in hci_conn_drop (3) bluetooth 24 C error 471 1h49m 40d 💬 1 [39d]
KASAN: slab-use-after-free Read in skb_pull bluetooth 19 1 49d 45d
KASAN: slab-use-after-free Read in hci_cmd_work (2) bluetooth 19 27015 54d 55d PATCH [18d]
memory leak in __hci_cmd_sync_sk bluetooth usb 3 C 1 51d 56d 💬 19 [50d]
linux-next test error: KASAN: slab-use-after-free Read in hci_cmd_work bluetooth -1 4 56d 59d
INFO: trying to register non-static key in l2cap_unregister_user bluetooth -1 7 12d 88d
KASAN: vmalloc-out-of-bounds Read in kcov_remote_start usb bluetooth 17 719 3h08m 99d
KASAN: slab-use-after-free Read in l2cap_disconn_ind (2) bluetooth 19 6 65d 100d
WARNING in hci_conn_drop (3) bluetooth -1 2 69d 101d
KASAN: slab-use-after-free Read in hidp_session_thread (2) bluetooth 19 2 74d 123d
stack segment fault in kernfs_rename_ns bluetooth 2 32 1d08h 176d
KASAN: slab-use-after-free Read in hci_uart_write_work bluetooth 19 syz error 62 5h56m 182d 💬 3 [174d]
INFO: task hung in hci_conn_failed (4) bluetooth 1 syz 17 38d 215d
INFO: task hung in hci_remote_features_evt (2) bluetooth 1 syz error inconclusive 9 106d 250d
possible deadlock in l2cap_conn_del bluetooth 4 syz error 472 1h28m 287d
KASAN: wild-memory-access Read in l2cap_connect_cfm bluetooth 19 C error 168 21h31m 301d 💬 1 [92d]
possible deadlock in l2cap_info_timeout bluetooth 4 62 10d 321d
general protection fault in h5_recv bluetooth 10 C done 3340 2h03m 337d 💬 1 [14d]
KASAN: slab-use-after-free Read in force_devcd_write bluetooth 19 C 448 130d 383d 💬 4 [140d]
WARNING: held lock freed in bt_accept_dequeue bluetooth 4 20 21d 390d
WARNING in hci_conn_timeout (2) bluetooth -1 C error 5018 28m 391d
INFO: task hung in hci_cmd_sync_clear (3) bluetooth 1 syz done 68 5d13h 429d
KASAN: slab-use-after-free Read in l2cap_unregister_user bluetooth 24 C done 45835 5h06m 437d PATCH [67d]
KASAN: slab-use-after-free Read in bt_accept_unlink bluetooth 19 syz 107 11d 448d 💬 1 [58d]
KASAN: slab-use-after-free Read in l2cap_sock_new_connection_cb bluetooth 19 syz error 110 14h22m 448d 💬 3 [48d]
KASAN: slab-use-after-free Read in l2cap_sock_ready_cb (2) bluetooth 19 65 17h38m 468d
BUG: corrupted list in _hci_cmd_sync_cancel_entry bluetooth 8 syz error error 46 80d 472d 💬 1 [200d]
WARNING: ODEBUG bug in hci_release_dev (2) bluetooth -1 C error 442 3d23h 537d
KASAN: slab-use-after-free Read in l2cap_recv_frame bluetooth 19 C inconclusive inconclusive 140 4d10h 625d 💬 2 [110d]
WARNING in hci_recv_frame bluetooth -1 C error 131 3d21h 626d 💬 1 [238d]
WARNING in l2cap_chan_send bluetooth -1 53 17d 639d
KASAN: slab-use-after-free Read in __hci_req_sync bluetooth 19 C error error 3383 517d 645d 💬 2 [550d]
WARNING in l2cap_chan_del bluetooth -1 339 4d02h 666d
general protection fault in lock_sock_nested bluetooth 19 C done done 4087 3h06m 854d
WARNING in call_timer_fn bluetooth -1 C unreliable 7987 4h20m 1153d 💬 8 [14d]
general protection fault in l2cap_chan_timeout (3) bluetooth 19 C inconclusive inconclusive 76 24d 1432d
general protection fault in skb_release_data (2) net bluetooth 24 C done error 703 286d 1951d
moderation (3):
Title Rank 🛈 Repro Cause bisect Fix bisect Count Last Reported Discussions
KCSAN: data-race in __hci_cmd_sync_sk / hci_cmd_sync_cancel_sync bluetooth 6 1 34d 34d
KCSAN: data-race in data_push_tail / vsnprintf (9) bluetooth 6 176 3d15h 325d
KCSAN: data-race in data_alloc / data_push_tail (3) bluetooth 6 57 7d11h 491d