syzbot

 sign-in | mailing list | source | docs
🐞 Open [196]
🐞 Fixed [42]
🐞 Invalid [470]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
💬 Send us feedback

KASAN: use-after-free in sg_remove_request at addr ADDR (9)

Status: closed as invalid on 2017/11/18 16:19
First crash: 2973d, last: 2973d
Similar bugs (8)
Kernel Title Rank 🛈 Repro Cause bisect Fix bisect Count Last Reported Patched Status
android-49 KASAN: use-after-free in sg_remove_request at addr ADDR (6) 19 1 2991d 2991d 0/3 closed as invalid on 2017/11/01 18:02
android-49 KASAN: use-after-free in sg_remove_request at addr ADDR (2) 19 3 3000d 3002d 0/3 closed as invalid on 2017/10/22 12:19
android-49 KASAN: use-after-free in sg_remove_request at addr ADDR (4) 19 3 2997d 2997d 0/3 closed as invalid on 2017/10/26 15:19
android-49 KASAN: use-after-free in sg_remove_request at addr ADDR (8) 19 1 2989d 2989d 0/3 closed as invalid on 2017/11/03 09:19
android-49 KASAN: use-after-free in sg_remove_request at addr ADDR (7) 19 2 2989d 2989d 0/3 closed as invalid on 2017/11/03 07:08
android-49 KASAN: use-after-free in sg_remove_request at addr ADDR (3) 19 1 2997d 2997d 0/3 closed as invalid on 2017/10/25 10:19
android-49 KASAN: use-after-free in sg_remove_request at addr ADDR (5) 19 6 2993d 2995d 0/3 closed as invalid on 2017/10/30 13:35
android-49 KASAN: use-after-free in sg_remove_request at addr ADDR 19 28 3006d 3025d 0/3 closed as invalid on 2017/10/18 09:51

Sample crash report:
binder: 20247:20249 ioctl c0086420 20739ff8 returned -22
binder: 20247:20249 ioctl 40086425 203c4000 returned -22
==================================================================
BUG: KASAN: use-after-free in __read_once_size include/linux/compiler.h:243 [inline] at addr ffff8801c6b50240
BUG: KASAN: use-after-free in list_empty include/linux/list.h:189 [inline] at addr ffff8801c6b50240
BUG: KASAN: use-after-free in sg_remove_request+0x103/0x120 drivers/scsi/sg.c:2120 at addr ffff8801c6b50240

Crashes (1):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2017/11/18 13:12 https://android.googlesource.com/kernel/common android-4.9 f09daf140e6e bf820689 .config console log report ci-android-49-kasan-gce
* Struck through repros no longer work on HEAD.