• LK v4.16.x - mon_bin_read - possible deadlock

    mon_bin_read - possible circular locking dependency detected posted & found by zer0day tl;dr Got from syzkaller & Found in LK v4.16.0. Maybe, this post is similar with the past post (mon_bin_vma… stuff…). Call Trace (Dump) Here’s a syzkaller report. WARNING: possible circular locking dependency detected 4.16.0+ #28 Not tainted ------------------------------------------------------...


  • LK v4.16.x - get_work_pool - general page fault

    get_work_pool - general page fault posted & found by zer0day tl;dr Found on LK v4.16.0-rc7. leaded to null-dereference. Not analyzed yet… Call Trace (Dump) Here’s a dmesg & Call Trace. [ 981.132280] general protection fault: 0000 [#1] SMP KASAN PTI [ 981.132834] Dumping ftrace buffer: [ 981.133121] (ftrace buffer empty)...


  • LK v4.16.x - slab ... overwritten

    kmalloc-1024 - slab padding/red zone overwritten posted & found by zer0day tl;dr Got from syzkaller & Found in LK v4.16.0-rc7. Call Trace (Dump) Here’s a syzkaller report. BUG kmalloc-1024 (Not tainted): Padding overwritten. 0x000000007f0b2d60-0x00000000dd7f0dc3 BUG kmalloc-1024 (Not tainted): Padding overwritten. 0x000000007f0b2d60-0x00000000dd7f0dc3 ----------------------------------------------------------------------------- INFO: Slab 0x0000000063ffd7ff objects=23 used=23 fp=0x (null) flags=0x100000000008100...


  • LK v4.16.x - xxx - memory leak

    anon_vma_chain - memory leak posted & found by zer0day tl;dr Found in LK v4.16.0-rc7. I’ll update more info about this bug later… Not yet analyzed… Call Trace (Dump) Here’s a kmemleak message. [ 171.804669] kmemleak: 1 new suspected memory leaks (see /sys/kernel/debug/kmemleak) [ 178.286239] kmemleak: 1 new suspected memory leaks...


  • LK v4.16.x - anon_vma_chain - slab ... overwritten

    anon_vma_chain - slab padding/red zone overwritten posted & found by zer0day tl;dr Got from syzkaller & Found in LK v4.16.0-rc7. Call Trace (Dump) Here’s a syzkaller report. INFO: Slab ADDR objects=18 used=18 fp=0x (null) flags=ADDR BUG anon_vma_chain (Not tainted): Padding overwritten. 0x000000006fe6e975-0x00000000d2999cdc ----------------------------------------------------------------------------- Disabling lock debugging due to kernel taint...