Received: by 2002:a25:23cc:0:0:0:0:0 with SMTP id j195csp532397ybj;
        Thu, 7 May 2020 01:25:58 -0700 (PDT)
X-Google-Smtp-Source: APiQypLculS8fBIWB1EeotjyCAjL5aqqjF7fzL7BGz12vxTDS9tLGD6+7QXspH1Q398BCyF2nR1t
X-Received: by 2002:aa7:dd14:: with SMTP id i20mr10462449edv.225.1588839958749;
        Thu, 07 May 2020 01:25:58 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1588839958; cv=none;
        d=google.com; s=arc-20160816;
        b=1DfzphyVNC6E57N5IHdTXnDPR24I+0nhSM7axd8lSi7vseLZ5QpPGzlM0XZgbMKTGn
         lYeW0VytyfahU9fTy69dBZRNP/ALt9cAH1tbmTol3QnHAVItwbGGCsrqDI6JqxCIBlWb
         41ow4wvpOw8tKeecGLOp14BKYeAcapyIr9UvLQnqzZdb0tZCjHZilNF1EFo0Ii2o0lLJ
         NJERpI7O6szxAk03bo/8k6hGSFMIKhyN2Q5AXdefWlH73BloJEipfXgpTsmL8P8dHZIn
         DEHr241SvcaJlTzhtsNfLRLAqXg4k5q8hif+u3T4Pil9nI7aNe/xeyDFGtzjUMXsH95b
         QwRA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:sender:in-reply-to:content-disposition
         :mime-version:references:message-id:subject:cc:to:from:date
         :dkim-signature;
        bh=pRsG29Vl7M+c/8VmEHyhN/xYZcaJjMw15C7kyh98TIU=;
        b=vYZISWpJCWTIJH/7zBZEbc8TQ2aSwdfsLdgrrGGHkiAQNiYkLPG0qMNYf790anJnWH
         fINXEzJEN4nqIqJ++jHSLmif4byU1qtqA7wxmTUTGNOyiGHS4mqBBz21JFn2EErnJruJ
         XykIAs49fx4k1Fw5JQySwZM54eLTqyk9Tkr+Zt02GQ/EJl95xrYFjDkIvAKfsUV8DAiv
         0spASiwRIdt6vT0P1b253cB6hVnZji7T9s4tZWWe8GzM+NkIBrHyhZJvjSzmNS5lrHXt
         HPOpU9w85d1U74GPySYVfom7rxbGKXwpN0m9bIniGaRszSInZJJUc/mknne+iFcJTdnJ
         7oRw==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@kernel.org header.s=default header.b=trQNiFUB;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18])
        by mx.google.com with ESMTP id z23si2256922edl.64.2020.05.07.01.25.35;
        Thu, 07 May 2020 01:25:58 -0700 (PDT)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@kernel.org header.s=default header.b=trQNiFUB;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1726476AbgEGIXF (ORCPT <rfc822;linuxbirdgao@gmail.com>
        + 99 others); Thu, 7 May 2020 04:23:05 -0400
Received: from mail.kernel.org ([198.145.29.99]:38890 "EHLO mail.kernel.org"
        rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP
        id S1725862AbgEGIXF (ORCPT <rfc822;linux-kernel@vger.kernel.org>);
        Thu, 7 May 2020 04:23:05 -0400
Received: from localhost (83-86-89-107.cable.dynamic.v4.ziggo.nl [83.86.89.107])
        (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
        (No client certificate requested)
        by mail.kernel.org (Postfix) with ESMTPSA id A425120753;
        Thu,  7 May 2020 08:23:04 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=kernel.org;
        s=default; t=1588839785;
        bh=VbhDvdY34Jcu5KiAN1pZ92Y1fd0IZzNk42+LVNukGeI=;
        h=Date:From:To:Cc:Subject:References:In-Reply-To:From;
        b=trQNiFUBXZ5pVsEgPE3dB0CtGTaFJ0lFXJ1UzMHcsJz5mI12GHgK1TEEPCbKBLkUh
         lrkcdPgEPORrl6EmiDft00lZogxyfp5hJ6fJflMgERsTPtiU0dKC22iL62snqJ+4YQ
         RgJ8ohvn4YNU7Kkr6fFLqimacuJWzvsf5rLirVMw=
Date:   Thu, 7 May 2020 10:23:02 +0200
From:   Greg Kroah-Hartman <gregkh@linuxfoundation.org>
To:     butt3rflyh4ck <butterflyhuangxx@gmail.com>
Cc:     security@kernel.org, syzkaller <syzkaller@googlegroups.com>,
        tiwai@suse.com, alsa-devel@alsa-project.org,
        linux-kernel@vger.kernel.org
Subject: Re: KASAN: use-after-free Write in snd_rawmidi_kernel_write1
Message-ID: <20200507082302.GF1024567@kroah.com>
References: <CAFcO6XMGT42wFBxEa01Ee5Msuecm+WiXnn4rc-VWkC4vTzycPg@mail.gmail.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <CAFcO6XMGT42wFBxEa01Ee5Msuecm+WiXnn4rc-VWkC4vTzycPg@mail.gmail.com>
Sender: linux-kernel-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

On Thu, May 07, 2020 at 04:04:25PM +0800, butt3rflyh4ck wrote:
> I report a bug (in linux-5.7-rc1) found by syzkaller.
> 
> kernel config: https://github.com/butterflyhack/syzkaller-fuzz/blob/master/v5.7.0-rc1.config
> reproducer: https://github.com/butterflyhack/syzkaller-fuzz/blob/master/repro.cprog
> 
> I test the reproducer in linux-5.7-rc4 and crash too.

Great, care to create a fix for this and send it to the proper
maintainers?  That's the best way to get it fixed, otherwise it just
goes in the file with the rest of the syzbot reports we are burried
under.

thanks,

greg k-h