Re: [syzbot] [media?] KASAN: slab-use-after-free Read in dvb_device_open

From: Hillf Danton
Date: Sat Jan 18 2025 - 20:05:38 EST

Next message: Edward Adam Davis: "Re: [syzbot] [media?] KASAN: slab-use-after-free Read in dvb_device_open"
Previous message: Bryan O'Donoghue: "[PATCH v4 4/4] arm64: dts: qcom: x1e80100: Add CAMSS block definition"
In reply to: syzbot: "Re: [syzbot] [media?] KASAN: slab-use-after-free Read in dvb_device_open"
Next in thread: syzbot: "Re: [syzbot] [media?] KASAN: slab-use-after-free Read in dvb_device_open"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Sat, 18 Jan 2025 11:50:29 -0800
> syzbot has found a reproducer for the following issue on:
>
> HEAD commit: 595523945be0 Merge tag 'devicetree-fixes-for-6.13-2' of gi..
> git tree: upstream
> C reproducer: https://syzkaller.appspot.com/x/repro.c?x=12183fc4580000

#syz test

--- x/drivers/media/dvb-core/dvb_frontend.c
+++ y/drivers/media/dvb-core/dvb_frontend.c
@@ -2887,6 +2887,7 @@ err3:
mutex_unlock(&fe->dvb->mdev_lock);
err2:
#endif
+ dvb_device_get(dvbdev);
dvb_generic_release(inode, file);
err1:
if (dvbdev->users == -1 && fe->ops.ts_bus_ctrl)
--

Next message: Edward Adam Davis: "Re: [syzbot] [media?] KASAN: slab-use-after-free Read in dvb_device_open"
Previous message: Bryan O'Donoghue: "[PATCH v4 4/4] arm64: dts: qcom: x1e80100: Add CAMSS block definition"
In reply to: syzbot: "Re: [syzbot] [media?] KASAN: slab-use-after-free Read in dvb_device_open"
Next in thread: syzbot: "Re: [syzbot] [media?] KASAN: slab-use-after-free Read in dvb_device_open"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]