Re: KASAN: use-after-free Read in joydev_cleanup

From: Eric Biggers
Date: Fri Jun 05 2020 - 00:20:54 EST

Next message: Eric Biggers: "Re: possible deadlock in media_devnode_release"
Previous message: Eric Biggers: "Re: KASAN: use-after-free Read in evdev_cleanup"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Sun, May 24, 2020 at 03:24:12AM -0700, syzbot wrote:
> Hello,
>
> syzbot found the following crash on:
>
> HEAD commit: c11d28ab Add linux-next specific files for 20200522
> git tree: linux-next
> console output: https://syzkaller.appspot.com/x/log.txt?x=1587269a100000
> kernel config: https://syzkaller.appspot.com/x/.config?x=3f6dbdea4159fb66
> dashboard link: https://syzkaller.appspot.com/bug?extid=833ac95f0a2451d63a9f
> compiler: gcc (GCC) 9.0.0 20181231 (experimental)
> syz repro: https://syzkaller.appspot.com/x/repro.syz?x=1114d626100000
> C reproducer: https://syzkaller.appspot.com/x/repro.c?x=14c4da9a100000
>
> The bug was bisected to:
>
> commit 4ef12f7198023c09ad6d25b652bd8748c965c7fa
> Author: Heikki Krogerus <heikki.krogerus@xxxxxxxxxxxxxxx>
> Date: Wed May 13 15:18:40 2020 +0000
>
> kobject: Make sure the parent does not get released before its children
>

Commit was reverted.

#syz invalid

Next message: Eric Biggers: "Re: possible deadlock in media_devnode_release"
Previous message: Eric Biggers: "Re: KASAN: use-after-free Read in evdev_cleanup"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]