Re: KASAN: use-after-free Write in __xfrm_policy_unlink

From: Florian Westphal
Date: Wed Dec 26 2018 - 05:42:34 EST

Next message: Sam Ravnborg: "Re: [PATCH] drm/bridge/panel: Remove duplicate header"
Previous message: Yong: "Re: [linux-sunxi] [PATCH v12 0/2] Initial Allwinner V3s CSI Support"
Next in thread: Dmitry Vyukov: "Re: KASAN: use-after-free Write in __xfrm_policy_unlink"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

syzbot <syzbot+9d971dd21eb26567036b@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote:
> syzbot has found a reproducer for the following crash on:
>
> HEAD commit: ce28bb445388 Merge git://git.kernel.org/pub/scm/linux/kern..
> git tree: net-next
> console output: https://syzkaller.appspot.com/x/log.txt?x=1673fb1b400000
> kernel config: https://syzkaller.appspot.com/x/.config?x=67a2081147a23142
> dashboard link: https://syzkaller.appspot.com/bug?extid=9d971dd21eb26567036b
> compiler: gcc (GCC) 8.0.1 20180413 (experimental)
> syz repro: https://syzkaller.appspot.com/x/repro.syz?x=1134dcc7400000
> C reproducer: https://syzkaller.appspot.com/x/repro.c?x=126986ed400000
>
> IMPORTANT: if you fix the bug, please add the following tag to the commit:
> Reported-by: syzbot+9d971dd21eb26567036b@xxxxxxxxxxxxxxxxxxxxxxxxx

I've fixed this one. Chances are that at least some of the other
reports are duplicates of this one.

I will continue to look at other reports over the next few days and plan
to send out fixes and test cases next week.

Next message: Sam Ravnborg: "Re: [PATCH] drm/bridge/panel: Remove duplicate header"
Previous message: Yong: "Re: [linux-sunxi] [PATCH v12 0/2] Initial Allwinner V3s CSI Support"
Next in thread: Dmitry Vyukov: "Re: KASAN: use-after-free Write in __xfrm_policy_unlink"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]