lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [day] [month] [year] [list] 
Date:   Mon, 31 Jul 2023 09:46:19 +0200
From:   Miquel Raynal <miquel.raynal@...tlin.com>
To:     Richard Weinberger <richard@....at>
Cc:     Zheng Zhang <zheng.zhang@...il.ucr.edu>,
        Vignesh Raghavendra <vigneshr@...com>,
        linux-mtd <linux-mtd@...ts.infradead.org>,
        linux-kernel <linux-kernel@...r.kernel.org>,
        Alexander Usyskin <alexander.usyskin@...el.com>,
        Tomas Winkler <tomas.winkler@...el.com>,
        Vitaly Lubart <vitaly.lubart@...el.com>,
        Andy Shevchenko <andriy.shevchenko@...ux.intel.com>,
        Zhang Xiaoxu <zhangxiaoxu5@...wei.com>
Subject: Re: kernel BUG in __put_mtd_device

Hi Richard,

richard@....at wrote on Mon, 31 Jul 2023 07:35:15 +0200 (CEST):

> ----- Ursprüngliche Mail -----
> > Von: "Zheng Zhang" <zheng.zhang@...il.ucr.edu>
> > An: "Miquel Raynal" <miquel.raynal@...tlin.com>, "richard" <richard@....at>, "Vignesh Raghavendra" <vigneshr@...com>,
> > "linux-mtd" <linux-mtd@...ts.infradead.org>, "linux-kernel" <linux-kernel@...r.kernel.org>
> > Gesendet: Montag, 31. Juli 2023 01:27:09
> > Betreff: kernel BUG in __put_mtd_device  
> 
> > Miquel, Richard, Vignesh  and  to whom it may concern:
> > 
> > Hello! We have found a bug in MTD driver in the Linux kernel version 6.2.0
> > by Syzkaller with our own templates.
> > It's triggered for multiple times. Unfortunately, it doesn't generate a
> > reproducer.
> > Attached is the report, log generated by syzkaller.
> > Please let me know if there is any additional information that I can
> > provide to help debug this issue.  
> 
> Isn't this related to "[PATCH] mtd: fix use-after-free in mtd release"?

Yes, probably, we received two patches regarding the same issue, but so
far no agreement on them because none fully fixes the issue
apparently...

Thanks,
Miquèl

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ