syzbot

 sign-in | mailing list | source | docs
🐞 Open [1595]
Subsystems
🐞 Fixed [6235]
🐞 Invalid [15806]
Missing Backports [184]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
Total Repo Heatmap Subsystems Heatmap
💬 Send us feedback

Applied filters: Label=subsystems:hams (drop)
Title Repro Cause bisect Fix bisect Count Last Reported Patched Closed Patch
WARNING: refcount bug in ax25_release (3) hams C done 5256 55d 360d 17/28 never bca0902e6173 ax25: Fix refcount leak caused by setting SO_BINDTODEVICE sockopt 2f6efbabceb6 ax25: Remove broken autobind
BUG: soft lockup in rose_loopback_timer hams C 1 111d 107d 27/28 never a1300691aed9 net: rose: lock the socket in rose_bind()
KASAN: slab-use-after-free Read in rose_timer_expiry (2) hams 158 8d01h 132d 28/28 7d09h 5de7665e0a07 net: rose: fix timer races against user threads
possible deadlock in ax25_setsockopt hams 2 134d 141d 28/28 13d 95fc45d1dea8 ax25: rcu protect dev->ax25_ptr
kernel BUG in nr_header hams 2 181d 168d 28/28 15d a6d75ecee2bf net: lapb: increase LAPB_HEADER_LEN
memory leak in nr_create (3) hams C 9 518d 708d 26/28 316d 0b9130247f3b netrom: Fix a memory leak in nr_heartbeat_expiry()
possible deadlock in nr_rt_ioctl hams C inconclusive 8 354d 382d 25/28 348d e03e7f20ebf7 netrom: fix possible dead-lock in nr_rt_ioctl()
WARNING: refcount bug in ax25_release (2) hams C 240 364d 429d 25/28 364d 467324bcfe1a ax25: Fix netdev refcount issue
WARNING in rose_device_event hams 1 525d 525d 25/28 485d 64b8bc7d5f14 net/rose: fix races in rose_kill_by_device()
general protection fault in prepare_to_wait (2) hams syz inconclusive 4 604d 642d 23/28 587d c2f8fd794960 netrom: Deny concurrent connect().
KASAN: use-after-free Write in nr_release hams C done error 1784 727d 2001d 22/28 713d 611792920925 netrom: Fix use-after-free caused by accept on already connected socket
WARNING: refcount bug in nr_release (4) hams C 24 828d 1133d 22/28 713d 409db27e3a2e netrom: Fix use-after-free of a listening socket.
KASAN: use-after-free Read in do_accept hams 1 859d 855d 22/28 713d 409db27e3a2e netrom: Fix use-after-free of a listening socket.
memory leak in nr_create (2) hams C 11 784d 843d 22/28 713d 611792920925 netrom: Fix use-after-free caused by accept on already connected socket
general protection fault in ax25_send_frame (2) hams 13 929d 915d 22/28 817d e97c089d7a49 rose: Fix NULL pointer dereference in rose_send_frame()
general protection fault in rose_send_frame (2) hams 7 931d 956d 22/28 817d e97c089d7a49 rose: Fix NULL pointer dereference in rose_send_frame()
KASAN: use-after-free Read in sixpack_close hams C done 879 1279d 1284d 20/28 1170d 81b1d548d00b hamradio: remove needs_free_netdev to avoid UAF
memory leak in nr_create hams C 250 1401d 2186d 20/28 1289d 517a16b1a88b netrom: Decrease sock refcount when sock timers expire
KASAN: slab-out-of-bounds Write in decode_data hams C done error 7 1839d 1995d 20/28 1289d 19d1532a1876 net: 6pack: fix slab-out-of-bounds in decode_data
KMSAN: uninit-value in ax25_connect hams C 15 1716d 1849d 15/28 1708d 2f2a7ffad5c6 AX.25: Fix out-of-bounds read in ax25_connect()
KMSAN: uninit-value in __dev_get_by_name hams C 2 1831d 1831d 15/28 1769d 687775cec056 ax25: fix setsockopt(SO_BINDTODEVICE)
WARNING: held lock freed! (2) hams C done 1 2148d 2144d 12/28 2094d 4638faac0327 netrom: hold sock when setting skb->destructor
KASAN: use-after-free Read in release_sock hams C done 10 2117d 2127d 12/28 2094d 4638faac0327 netrom: hold sock when setting skb->destructor
KASAN: use-after-free Read in nr_release hams C done 25 2095d 2174d 12/28 2094d 4638faac0327 netrom: hold sock when setting skb->destructor
KASAN: use-after-free Read in nr_insert_socket hams C done 22 2118d 2134d 12/28 2094d 4638faac0327 netrom: hold sock when setting skb->destructor
KASAN: use-after-free Read in nr_rx_frame (2) hams C done 3 2122d 2129d 12/28 2094d 4638faac0327 netrom: hold sock when setting skb->destructor
memory leak in nr_rx_frame hams C 5 2123d 2186d 12/28 2116d c8c8218ec5af netrom: fix a memory leak in nr_rx_frame()
inconsistent lock state in ax25_destroy_timer hams 2 2166d 2167d 12/28 2142d d4d5d8e83c96 ax25: fix inconsistent lock state in ax25_destroy_timer
inconsistent lock state in ax25_rt_autobind hams 2 2166d 2166d 12/28 2142d d4d5d8e83c96 ax25: fix inconsistent lock state in ax25_destroy_timer
INFO: rcu detected stall in rose_loopback_timer hams 5 2201d 2220d 12/28 2186d 0453c6824595 net/rose: fix unbound loop in rose_loopback_timer()
KASAN: stack-out-of-bounds Write in rose_write_internal hams 1 2260d 2260d 12/28 2233d e5dcc0c3223c net: rose: fix a possible stack overflow
general protection fault in ax25cmp hams C 2294 2304d 2336d 11/28 2269d b0cf029234f9 net/rose: fix NULL ax25_cb kernel panic
KASAN: use-after-free Read in refcount_inc_not_zero_checked hams syz 24 2272d 2331d 11/28 2269d 63346650c1a9 netrom: switch to sock timer API
KASAN: use-after-free Read in kmemdup hams 1 2315d 2315d 11/28 2269d 63530aba7826 ax25: fix possible use-after-free
WARNING: refcount bug in nr_release hams 1 2328d 2326d 11/28 2269d 63346650c1a9 netrom: switch to sock timer API
inconsistent lock state in nr_find_socket hams C 19 2320d 2335d 11/28 2318d 7314f5480f3e netrom: fix locking in nr_find_socket()
kernel BUG at kernel/time/timer.c:LINE! (2) hams C 5 2330d 2332d 11/28 2318d 202700e30740 net/hamradio/6pack: use mod_timer() to rearm timers
KASAN: use-after-free Read in nr_rx_frame hams syz 2 2325d 2331d 11/28 2318d 7314f5480f3e netrom: fix locking in nr_find_socket()
possible deadlock in nr_destroy_socket hams syz 20 2321d 2331d 11/28 2318d 7314f5480f3e netrom: fix locking in nr_find_socket()
KASAN: use-after-free Read in ax25_fillin_cb hams syz 4 2339d 2336d 11/28 2318d c433570458e4 ax25: fix a use-after-free in ax25_fillin_cb()