KASAN: use-after-free Read in rcu_cblist

Kernel	Title	Rank 🛈	Repro	Count	Last	Reported	Patched	Status
android-6-1	KASAN: use-after-free Read in rcu_cblist_dequeue origin:upstream	19	C	83	14h10m	11d	0/2	upstream: reported C repro on 2026/06/11 16:19
upstream	KASAN: use-after-free Read in rcu_cblist_dequeue kernel	19		1	2994d	2994d	0/29	closed as invalid on 2018/04/12 23:01
android-5-10	KASAN: use-after-free Read in rcu_cblist_dequeue	19		1	1699d	1693d	0/2	auto-closed as invalid on 2022/02/24 12:16
android-5-15	KASAN: use-after-free Read in rcu_cblist_dequeue	19		8	15h48m	16h32m	0/2	premoderation: reported on 2026/06/22 13:45
upstream	BUG: unable to handle kernel paging request in rcu_cblist_dequeue rcu	8		6	294d	298d	0/29	auto-obsoleted due to no activity on 2025/12/10 12:07
upstream	KASAN: slab-use-after-free Read in rcu_cblist_dequeue crypto	19		1	177d	173d	0/29	auto-obsoleted due to no activity on 2026/03/28 00:06

================================================================== BUG: KASAN: use-after-free in rcu_cblist_dequeue+0x6c/0xb0 kernel/rcu/rcu_segcblist.c:75 Read of size 8 at addr ffff8881115d3590 by task ksoftirqd/0/12 CPU: 0 PID: 12 Comm: ksoftirqd/0 Not tainted syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 Call Trace: __dump_stack+0x21/0x24 lib/dump_stack.c:77 dump_stack_lvl+0x1a7/0x208 lib/dump_stack.c:118 print_address_description+0x7f/0x2c0 mm/kasan/report.c:248 __kasan_report mm/kasan/report.c:435 [inline] kasan_report+0x100/0x140 mm/kasan/report.c:452 __asan_report_load8_noabort+0x14/0x20 mm/kasan/report_generic.c:309 rcu_cblist_dequeue+0x6c/0xb0 kernel/rcu/rcu_segcblist.c:75 rcu_do_batc

Crashes (20):
Time	Kernel	Commit	Syzkaller	Config	Log	Report	Syz repro	C repro	VM info	Assets (help?)	Manager	Title
2026/06/22 21:27	android13-5.10-lts	72aefab72b3d	5a630be6	.config	console log	report	syz / log	C		[disk image] [vmlinux] [kernel image]	ci2-android-5-10	KASAN: use-after-free Read in rcu_cblist_dequeue
2026/06/22 19:42	android13-5.10-lts	72aefab72b3d	5a630be6	.config	console log	report			info	[disk image] [vmlinux] [kernel image]	ci2-android-5-10	KASAN: use-after-free Read in rcu_cblist_dequeue
2026/06/22 19:42	android13-5.10-lts	72aefab72b3d	5a630be6	.config	console log	report			info	[disk image] [vmlinux] [kernel image]	ci2-android-5-10	KASAN: use-after-free Read in rcu_cblist_dequeue
2026/06/22 19:41	android13-5.10-lts	72aefab72b3d	5a630be6	.config	console log	report			info	[disk image] [vmlinux] [kernel image]	ci2-android-5-10	KASAN: use-after-free Read in rcu_cblist_dequeue
2026/06/22 19:41	android13-5.10-lts	72aefab72b3d	5a630be6	.config	console log	report			info	[disk image] [vmlinux] [kernel image]	ci2-android-5-10	KASAN: use-after-free Read in rcu_cblist_dequeue
2026/06/22 19:41	android13-5.10-lts	72aefab72b3d	5a630be6	.config	console log	report			info	[disk image] [vmlinux] [kernel image]	ci2-android-5-10	KASAN: use-after-free Read in rcu_cblist_dequeue
2026/06/22 19:41	android13-5.10-lts	72aefab72b3d	5a630be6	.config	console log	report			info	[disk image] [vmlinux] [kernel image]	ci2-android-5-10	KASAN: use-after-free Read in rcu_cblist_dequeue
2026/06/22 19:34	android13-5.10-lts	72aefab72b3d	5a630be6	.config	console log	report			info	[disk image] [vmlinux] [kernel image]	ci2-android-5-10	KASAN: use-after-free Read in rcu_cblist_dequeue
2026/06/22 19:14	android13-5.10-lts	72aefab72b3d	5a630be6	.config	console log	report			info	[disk image] [vmlinux] [kernel image]	ci2-android-5-10	KASAN: use-after-free Read in rcu_cblist_dequeue
2026/06/22 19:10	android13-5.10-lts	72aefab72b3d	5a630be6	.config	console log	report			info	[disk image] [vmlinux] [kernel image]	ci2-android-5-10	KASAN: use-after-free Read in rcu_cblist_dequeue
2026/06/22 19:10	android13-5.10-lts	72aefab72b3d	5a630be6	.config	console log	report			info	[disk image] [vmlinux] [kernel image]	ci2-android-5-10	KASAN: use-after-free Read in rcu_cblist_dequeue
2026/06/22 18:59	android13-5.10-lts	72aefab72b3d	5a630be6	.config	console log	report			info	[disk image] [vmlinux] [kernel image]	ci2-android-5-10	KASAN: use-after-free Read in rcu_cblist_dequeue
2026/06/22 18:59	android13-5.10-lts	72aefab72b3d	5a630be6	.config	console log	report			info	[disk image] [vmlinux] [kernel image]	ci2-android-5-10	KASAN: use-after-free Read in rcu_cblist_dequeue
2026/06/22 18:48	android13-5.10-lts	72aefab72b3d	5a630be6	.config	console log	report			info	[disk image] [vmlinux] [kernel image]	ci2-android-5-10	KASAN: use-after-free Read in rcu_cblist_dequeue
2026/06/22 18:48	android13-5.10-lts	72aefab72b3d	5a630be6	.config	console log	report			info	[disk image] [vmlinux] [kernel image]	ci2-android-5-10	KASAN: use-after-free Read in rcu_cblist_dequeue
2026/06/22 18:46	android13-5.10-lts	72aefab72b3d	5a630be6	.config	console log	report			info	[disk image] [vmlinux] [kernel image]	ci2-android-5-10	KASAN: use-after-free Read in rcu_cblist_dequeue
2026/06/22 18:46	android13-5.10-lts	72aefab72b3d	5a630be6	.config	console log	report			info	[disk image] [vmlinux] [kernel image]	ci2-android-5-10	KASAN: use-after-free Read in rcu_cblist_dequeue
2026/06/22 18:46	android13-5.10-lts	72aefab72b3d	5a630be6	.config	console log	report			info	[disk image] [vmlinux] [kernel image]	ci2-android-5-10	KASAN: use-after-free Read in rcu_cblist_dequeue
2026/06/22 18:44	android13-5.10-lts	72aefab72b3d	5a630be6	.config	console log	report			info	[disk image] [vmlinux] [kernel image]	ci2-android-5-10	KASAN: use-after-free Read in rcu_cblist_dequeue
2026/06/22 18:44	android13-5.10-lts	72aefab72b3d	5a630be6	.config	console log	report			info	[disk image] [vmlinux] [kernel image]	ci2-android-5-10	KASAN: use-after-free Read in rcu_cblist_dequeue

Crashes (20):

Assets (help?)

2026/06/22 21:27

android13-5.10-lts