Groups
Groups
Sign in
Groups
Groups
syzkaller-bugs
Conversations
About
Send feedback
Help
Sort By Relevance
Sort By Date
1–30 of many
syzbot
14
Apr 25
[syzbot] [mm?] KASAN: use-after-free Read in copy_folio_from_iter_atomic (2)
issue:
KASAN
: slab-
use
-
after
-
free
Read in blk_update_request ================================================================== BUG:
KASAN
: slab-
use
-
after
-
free
in
unread,
[syzbot] [mm?] KASAN: use-after-free Read in copy_folio_from_iter_atomic (2)
issue:
KASAN
: slab-
use
-
after
-
free
Read in blk_update_request ================================================================== BUG:
KASAN
: slab-
use
-
after
-
free
in
Apr 25
syzbot ci
Apr 24
[syzbot ci] Re: netlink: clean up failed initial dump-start state
: *
KASAN
: slab-
use
-
after
-
free
Read in inet_diag_dump_done *
KASAN
: slab-
use
-
after
-
free
Read in netlink_dump_done *
KASAN
: slab-
use
-
after
-
free
Read in netlink_rcv_skb *
KASAN
unread,
[syzbot ci] Re: netlink: clean up failed initial dump-start state
: *
KASAN
: slab-
use
-
after
-
free
Read in inet_diag_dump_done *
KASAN
: slab-
use
-
after
-
free
Read in netlink_dump_done *
KASAN
: slab-
use
-
after
-
free
Read in netlink_rcv_skb *
KASAN
Apr 24
syzbot ci
,
Jan Kara
2
Apr 23
[syzbot ci] Re: fs: Handle multiply claimed blocks more gracefully with mmb
: >
KASAN
: slab-
use
-
after
-
free
Read in remove_assoc_queue > > Full report is available here: > https://ci.syzbot.org/series/3ac1baf5-8cbb-4927-a4b1-c051f76ce076
unread,
[syzbot ci] Re: fs: Handle multiply claimed blocks more gracefully with mmb
: >
KASAN
: slab-
use
-
after
-
free
Read in remove_assoc_queue > > Full report is available here: > https://ci.syzbot.org/series/3ac1baf5-8cbb-4927-a4b1-c051f76ce076
Apr 23
syzbot
Apr 22
[syzbot] [bluetooth] KASAN: slab-use-after-free Read in process_one_work (2)
BUG:
KASAN
: slab-
use
-
after
-
free
in __raw_spin_lock_irqsave include/linux/spinlock_api_smp.h:132 [inline] BUG:
KASAN
: slab-
use
-
after
-
free
in _raw_spin_lock_irqsave
unread,
[syzbot] [bluetooth] KASAN: slab-use-after-free Read in process_one_work (2)
BUG:
KASAN
: slab-
use
-
after
-
free
in __raw_spin_lock_irqsave include/linux/spinlock_api_smp.h:132 [inline] BUG:
KASAN
: slab-
use
-
after
-
free
in _raw_spin_lock_irqsave
Apr 22
syzbot
3
Apr 17
Re: [syzbot] [jfs?] UBSAN: shift-out-of-bounds in dbJoin (2)
issue:
KASAN
: slab-
use
-
after
-
free
Read in lbmIODone ================================================================== BUG:
KASAN
: slab-
use
-
after
-
free
in lbmIODone
unread,
Re: [syzbot] [jfs?] UBSAN: shift-out-of-bounds in dbJoin (2)
issue:
KASAN
: slab-
use
-
after
-
free
Read in lbmIODone ================================================================== BUG:
KASAN
: slab-
use
-
after
-
free
in lbmIODone
Apr 17
syzbot
,
Edward Adam Davis
26
Apr 18
[syzbot] [jfs?] KASAN: slab-use-after-free Read in lbmIODone
issue:
KASAN
: slab-
use
-
after
-
free
Read in rtlock_slowlock_locked ================================================================== BUG:
KASAN
: slab-
use
-
after
-
free
unread,
[syzbot] [jfs?] KASAN: slab-use-after-free Read in lbmIODone
issue:
KASAN
: slab-
use
-
after
-
free
Read in rtlock_slowlock_locked ================================================================== BUG:
KASAN
: slab-
use
-
after
-
free
Apr 18
syzbot
2
Apr 17
Re: [syzbot] [jfs?] UBSAN: shift-out-of-bounds in extAlloc (2)
issue:
KASAN
: slab-
use
-
after
-
free
Read in lbmIODone ================================================================== BUG:
KASAN
: slab-
use
-
after
-
free
in lbmIODone
unread,
Re: [syzbot] [jfs?] UBSAN: shift-out-of-bounds in extAlloc (2)
issue:
KASAN
: slab-
use
-
after
-
free
Read in lbmIODone ================================================================== BUG:
KASAN
: slab-
use
-
after
-
free
in lbmIODone
Apr 17
syzbot
2
Apr 17
Re: [syzbot] [jfs?] UBSAN: array-index-out-of-bounds in dbFindLeaf (2)
issue:
KASAN
: slab-
use
-
after
-
free
Read in lbmIODone ================================================================== BUG:
KASAN
: slab-
use
-
after
-
free
in lbmIODone
unread,
Re: [syzbot] [jfs?] UBSAN: array-index-out-of-bounds in dbFindLeaf (2)
issue:
KASAN
: slab-
use
-
after
-
free
Read in lbmIODone ================================================================== BUG:
KASAN
: slab-
use
-
after
-
free
in lbmIODone
Apr 17
syzbot
Apr 17
Re: [syzbot] [jfs?] general protection fault in metapage_write_folio
issue:
KASAN
: slab-
use
-
after
-
free
Read in lbmIODone =========================[ 161.221911][ C1] ================================================================
unread,
Re: [syzbot] [jfs?] general protection fault in metapage_write_folio
issue:
KASAN
: slab-
use
-
after
-
free
Read in lbmIODone =========================[ 161.221911][ C1] ================================================================
Apr 17
syzbot
, …
Edward Adam Davis
26
Apr 16
[syzbot] [dri?] KASAN: slab-use-after-free Read in drm_gem_object_release_handle
issue:
KASAN
: slab-
use
-
after
-
free
Read in drm_gem_object_release_handle ================================================================== BUG:
KASAN
: slab-
use
-
unread,
[syzbot] [dri?] KASAN: slab-use-after-free Read in drm_gem_object_release_handle
issue:
KASAN
: slab-
use
-
after
-
free
Read in drm_gem_object_release_handle ================================================================== BUG:
KASAN
: slab-
use
-
Apr 16
syzbot
,
Wentao Guan
2
Apr 10
[syzbot] [serial?] KASAN: slab-use-after-free Read in kbd_event (2)
BUG:
KASAN
: slab-
use
-
after
-
free
in kbd_keycode drivers/tty/vt/keyboard.c:1435 [inline] BUG: KASA[ 730.192938][ T7920] BUG:
KASAN
: slab-
use
-
after
-
free
in kbd_event+0x3330
unread,
[syzbot] [serial?] KASAN: slab-use-after-free Read in kbd_event (2)
BUG:
KASAN
: slab-
use
-
after
-
free
in kbd_keycode drivers/tty/vt/keyboard.c:1435 [inline] BUG: KASA[ 730.192938][ T7920] BUG:
KASAN
: slab-
use
-
after
-
free
in kbd_event+0x3330
Apr 10
syzbot
Apr 1
[syzbot] [input?] [usb?] KASAN: slab-use-after-free Read in hiddev_disconnect (4)
BUG:
KASAN
: slab-
use
-
after
-
free
in debug_spin_lock_before kernel/locking/spinlock_debug.c:86 [inline] BUG:
KASAN
: slab-
use
-
after
-
free
in do_raw_spin_lock+0x23b/0x260
unread,
[syzbot] [input?] [usb?] KASAN: slab-use-after-free Read in hiddev_disconnect (4)
BUG:
KASAN
: slab-
use
-
after
-
free
in debug_spin_lock_before kernel/locking/spinlock_debug.c:86 [inline] BUG:
KASAN
: slab-
use
-
after
-
free
in do_raw_spin_lock+0x23b/0x260
Apr 1
syzbot
Mar 31
[syzbot] [bpf?] [net?] KASAN: slab-use-after-free Read in sk_psock_verdict_data_ready (4)
BUG:
KASAN
: slab-
use
-
after
-
free
in sk_psock_verdict_data_ready+0xec/0x590 net/core/skmsg.c:1278 Read of size 8 at addr ffff8880594da860 by task syz.4.1842/11013 CPU: 1 UID
unread,
[syzbot] [bpf?] [net?] KASAN: slab-use-after-free Read in sk_psock_verdict_data_ready (4)
BUG:
KASAN
: slab-
use
-
after
-
free
in sk_psock_verdict_data_ready+0xec/0x590 net/core/skmsg.c:1278 Read of size 8 at addr ffff8880594da860 by task syz.4.1842/11013 CPU: 1 UID
Mar 31
syzbot
,
Rafael Alejandro Diaz Cruz
12
Mar 30
Re: [syzbot] [jfs] general protection fault in txEnd
Busy inodes
after
unmount (
use
-
after
-
free
) VFS: Busy inodes
after
unmount of loop0 (jfs) ------------[ cut here ]------------ kernel BUG at fs/super.c:656! Oops: invalid opcode
unread,
Re: [syzbot] [jfs] general protection fault in txEnd
Busy inodes
after
unmount (
use
-
after
-
free
) VFS: Busy inodes
after
unmount of loop0 (jfs) ------------[ cut here ]------------ kernel BUG at fs/super.c:656! Oops: invalid opcode
Mar 30
syzbot
,
Edward Adam Davis
14
Mar 25
[syzbot] [gfs2?] INFO: task hung in gfs2_recover_journal (4)
issue:
KASAN
: slab-
use
-
after
-
free
Read in gfs2_invalidate_folio RBP: 00007ffd3cccca40 R08: 00007ffd3cccda40 R09: 00000000ffffffff R10: 0000000000000000 R11: 0000000000000246
unread,
[syzbot] [gfs2?] INFO: task hung in gfs2_recover_journal (4)
issue:
KASAN
: slab-
use
-
after
-
free
Read in gfs2_invalidate_folio RBP: 00007ffd3cccca40 R08: 00007ffd3cccda40 R09: 00000000ffffffff R10: 0000000000000000 R11: 0000000000000246
Mar 25
syzbot
5
Mar 25
[syzbot] [gfs2?] WARNING in gfs2_fill_super
issue:
KASAN
: slab-
use
-
after
-
free
Read in gfs2_put_super ================================================================== BUG:
KASAN
: slab-
use
-
after
-
free
in gfs2_put_super
unread,
[syzbot] [gfs2?] WARNING in gfs2_fill_super
issue:
KASAN
: slab-
use
-
after
-
free
Read in gfs2_put_super ================================================================== BUG:
KASAN
: slab-
use
-
after
-
free
in gfs2_put_super
Mar 25
syzbot ci
Mar 24
[syzbot ci] Re: context_tracking,x86: Defer some IPIs until a user->kernel transition
: *
KASAN
: slab-out-of-bounds Read in __dynamic_pr_debug *
KASAN
: slab-
use
-
after
-
free
Read in __dynamic_dev_dbg Full report is available here: https://ci.syzbot.org/series
unread,
[syzbot ci] Re: context_tracking,x86: Defer some IPIs until a user->kernel transition
: *
KASAN
: slab-out-of-bounds Read in __dynamic_pr_debug *
KASAN
: slab-
use
-
after
-
free
Read in __dynamic_dev_dbg Full report is available here: https://ci.syzbot.org/series
Mar 24
syzbot
,
Qing Wang
2
Mar 19
[syzbot] [bpf?] [trace?] KASAN: slab-use-after-free Read in bpf_trace_run4 (2)
BUG:
KASAN
: slab-
use
-
after
-
free
in __bpf_trace_run kernel/trace/bpf_trace.c:2075 [inline] BUG:
KASAN
: slab-
use
-
after
-
free
in bpf_trace_run4+0xe6/0x850 kernel/trace
unread,
[syzbot] [bpf?] [trace?] KASAN: slab-use-after-free Read in bpf_trace_run4 (2)
BUG:
KASAN
: slab-
use
-
after
-
free
in __bpf_trace_run kernel/trace/bpf_trace.c:2075 [inline] BUG:
KASAN
: slab-
use
-
after
-
free
in bpf_trace_run4+0xe6/0x850 kernel/trace
Mar 19
syzbot
, …
Heitor Alves de Siqueira
9
Mar 12
[syzbot] [usb?] KASAN: slab-use-after-free Write in usb_anchor_suspend_wakeups (2)
issue:
KASAN
: slab-
use
-
after
-
free
Write in usb_anchor_suspend_wakeups ================================================================== BUG:
KASAN
: slab-
use
-
after
unread,
[syzbot] [usb?] KASAN: slab-use-after-free Write in usb_anchor_suspend_wakeups (2)
issue:
KASAN
: slab-
use
-
after
-
free
Write in usb_anchor_suspend_wakeups ================================================================== BUG:
KASAN
: slab-
use
-
after
Mar 12
syzbot
, …
Hillf Danton
27
Mar 13
[syzbot] [net?] KASAN: slab-use-after-free Read in sock_def_readable (2)
issue:
KASAN
: slab-
use
-
after
-
free
Read in sock_def_readable ================================================================== BUG:
KASAN
: slab-
use
-
after
-
free
in
unread,
[syzbot] [net?] KASAN: slab-use-after-free Read in sock_def_readable (2)
issue:
KASAN
: slab-
use
-
after
-
free
Read in sock_def_readable ================================================================== BUG:
KASAN
: slab-
use
-
after
-
free
in
Mar 13
syzbot
,
Cássio Gabriel
3
Apr 28
[syzbot] [sound?] KASAN: slab-use-after-free Read in snd_pcm_post_stop
BUG:
KASAN
: slab-
use
-
after
-
free
in rt_spin_lock+0x88/0x3e0 > kernel/locking/spinlock_rt.c:56 > Read of size 1 at addr ffff88802fee8170 by task syz.0.79/6271 > >
unread,
[syzbot] [sound?] KASAN: slab-use-after-free Read in snd_pcm_post_stop
BUG:
KASAN
: slab-
use
-
after
-
free
in rt_spin_lock+0x88/0x3e0 > kernel/locking/spinlock_rt.c:56 > Read of size 1 at addr ffff88802fee8170 by task syz.0.79/6271 > >
Apr 28
syzbot
Mar 10
[syzbot] [media?] [dri?] KASAN: slab-use-after-free Read in dma_buf_fd
BUG:
KASAN
: slab-
use
-
after
-
free
in __raw_spin_lock_irqsave include/linux/spinlock_api_smp.h:132 [inline] BUG:
KASAN
: slab-
use
-
after
-
free
in _raw_spin_lock_irqsave
unread,
[syzbot] [media?] [dri?] KASAN: slab-use-after-free Read in dma_buf_fd
BUG:
KASAN
: slab-
use
-
after
-
free
in __raw_spin_lock_irqsave include/linux/spinlock_api_smp.h:132 [inline] BUG:
KASAN
: slab-
use
-
after
-
free
in _raw_spin_lock_irqsave
Mar 10
syzbot
Mar 10
Re: Mensagem particular referente a: [syzbot] [sound?] KASAN: slab-use-after-free Read in snd_pcm_post_stop
BUG:
KASAN
: slab-
use
-
after
-
free
in rt_spin_lock+0x88/0x3e0 > kernel/locking/spinlock_rt.c:56 > Read of size 1 at addr ffff88802fee8170 by task syz.0.79/6271 > >
unread,
Re: Mensagem particular referente a: [syzbot] [sound?] KASAN: slab-use-after-free Read in snd_pcm_post_stop
BUG:
KASAN
: slab-
use
-
after
-
free
in rt_spin_lock+0x88/0x3e0 > kernel/locking/spinlock_rt.c:56 > Read of size 1 at addr ffff88802fee8170 by task syz.0.79/6271 > >
Mar 10
syzbot
7
Mar 5
Re: [syzbot] [netfilter?] KASAN: use-after-free Read in nf_hook_entry_head
issue:
KASAN
:
use
-
after
-
free
Read in nf_hook_entry_head nft_flowtable_event: unregistering device syzkaller0@ffff88805fae4000 in ops @ffff888035bb2180 of hook @ffff888035bb2200
unread,
Re: [syzbot] [netfilter?] KASAN: use-after-free Read in nf_hook_entry_head
issue:
KASAN
:
use
-
after
-
free
Read in nf_hook_entry_head nft_flowtable_event: unregistering device syzkaller0@ffff88805fae4000 in ops @ffff888035bb2180 of hook @ffff888035bb2200
Mar 5
syzbot ci
Mar 3
[syzbot ci] Re: fs: Move metadata bh tracking from address_space
ext4:
Use
inode_has_buffers() * [PATCH 07/32] bfs: Sync and invalidate metadata buffers from bfs_evict_inode() * [PATCH 08/32] affs: Sync and invalidate metadata buffers from
unread,
[syzbot ci] Re: fs: Move metadata bh tracking from address_space
ext4:
Use
inode_has_buffers() * [PATCH 07/32] bfs: Sync and invalidate metadata buffers from bfs_evict_inode() * [PATCH 08/32] affs: Sync and invalidate metadata buffers from
Mar 3
syzbot
,
Qing Wang
4
Mar 3
[syzbot] [bpf?] [trace?] KASAN: slab-use-after-free Read in bpf_trace_run9
BUG:
KASAN
: slab-
use
-
after
-
free
in __bpf_trace_run kernel/trace/bpf_trace.c:2075 [inline] BUG:
KASAN
: slab-
use
-
after
-
free
in bpf_trace_run9+0x13b/0x8c0 kernel/trace
unread,
[syzbot] [bpf?] [trace?] KASAN: slab-use-after-free Read in bpf_trace_run9
BUG:
KASAN
: slab-
use
-
after
-
free
in __bpf_trace_run kernel/trace/bpf_trace.c:2075 [inline] BUG:
KASAN
: slab-
use
-
after
-
free
in bpf_trace_run9+0x13b/0x8c0 kernel/trace
Mar 3
syzbot
7
Mar 5
[syzbot] [netfilter?] KASAN: use-after-free Read in nf_hook_entry_head
?]
KASAN
:
use
-
after
-
free
Read in nf_hook_entry_head Author: koike@igalia.com #syz test On 2/19/26 7:03 AM, syzbot wrote: > Hello, > > syzbot found the following issue
unread,
[syzbot] [netfilter?] KASAN: use-after-free Read in nf_hook_entry_head
?]
KASAN
:
use
-
after
-
free
Read in nf_hook_entry_head Author: koike@igalia.com #syz test On 2/19/26 7:03 AM, syzbot wrote: > Hello, > > syzbot found the following issue
Mar 5
syzbot
, …
Theodore Ts'o
24
Mar 27
[syzbot] [ext4?] INFO: task hung in filename_unlinkat
: *
KASAN
: slab-out-of-bounds Write in ext4_xattr_block_set *
KASAN
: slab-
use
-
after
-
free
Read in do_exit *
KASAN
: slab-
use
-
after
-
free
Write in ext4_xattr_block_set *
KASAN
unread,
[syzbot] [ext4?] INFO: task hung in filename_unlinkat
: *
KASAN
: slab-out-of-bounds Write in ext4_xattr_block_set *
KASAN
: slab-
use
-
after
-
free
Read in do_exit *
KASAN
: slab-
use
-
after
-
free
Write in ext4_xattr_block_set *
KASAN
Mar 27
syzbot
,
Qing Wang
9
Mar 4
[syzbot] [bpf?] [trace?] KASAN: slab-use-after-free Read in bpf_trace_run3 (2)
BUG:
KASAN
: slab-
use
-
after
-
free
in __bpf_trace_run kernel/trace/bpf_trace.c:2075 [inline] BUG:
KASAN
: slab-
use
-
after
-
free
in bpf_trace_run3+0xdd/0x850 kernel/trace
unread,
[syzbot] [bpf?] [trace?] KASAN: slab-use-after-free Read in bpf_trace_run3 (2)
BUG:
KASAN
: slab-
use
-
after
-
free
in __bpf_trace_run kernel/trace/bpf_trace.c:2075 [inline] BUG:
KASAN
: slab-
use
-
after
-
free
in bpf_trace_run3+0xdd/0x850 kernel/trace
Mar 4
syzbot ci
, …
syzbot ci
8
Feb 26
[syzbot ci] Re: Close race in freeing special fields and map value
: >
KASAN
: slab-
use
-
after
-
free
Read in free_all > > Full report is available here: > https://ci.syzbot.org/series/ad9c7ce6-d861-4afe-821a-e8fae6120b12 >
unread,
[syzbot ci] Re: Close race in freeing special fields and map value
: >
KASAN
: slab-
use
-
after
-
free
Read in free_all > > Full report is available here: > https://ci.syzbot.org/series/ad9c7ce6-d861-4afe-821a-e8fae6120b12 >
Feb 26
