lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date:   Sun, 5 May 2019 17:44:22 +0900
From:   Tetsuo Handa <penguin-kernel@...ove.SAKURA.ne.jp>
To:     syzbot <syzbot+6da9575ba2db4da91831@...kaller.appspotmail.com>,
        syzkaller-bugs@...glegroups.com
Cc:     airlied@...ux.ie, dmitry.torokhov@...il.com,
        dri-devel@...ts.freedesktop.org, hpa@...or.com,
        linux-input@...r.kernel.org, linux-kernel@...r.kernel.org,
        mingo@...hat.com, patrik.r.jakobsson@...il.com,
        rydberg@...math.org, tglx@...utronix.de, wsa@...-dreams.de,
        x86@...nel.org
Subject: Re: KASAN: use-after-free Read in add_uevent_var

This seems to be triggered by "pkg/report: skip printk and other printing functions " on syzbot side.
The fix should be "kobject: Don't trigger kobject_uevent(KOBJ_REMOVE) twice." in linux-next.git.

#syz dup: KASAN: use-after-free Read in string

Powered by blists - more mailing lists