Date
June 7, 2025, 10:40 a.m.
| Environment | |
|---|---|
| qemu-arm64 |
[ 21.758674] ================================================================== [ 21.760415] BUG: KFENCE: use-after-free write in __memset+0x84/0x188 [ 21.760415] [ 21.761326] Use-after-free write at 0x00000000257a260f (in kfence-#81): [ 21.762670] __memset+0x84/0x188 [ 21.763284] kmalloc_double_kzfree+0x174/0x318 [ 21.764125] kunit_try_run_case+0x170/0x3f0 [ 21.764708] kunit_generic_run_threadfn_adapter+0x88/0x100 [ 21.765475] kthread+0x24c/0x2d0 [ 21.766053] ret_from_fork+0x10/0x20 [ 21.766665] [ 21.767489] kfence-#81: 0x00000000257a260f-0x000000006aca8a8b, size=16, cache=kmalloc-16 [ 21.767489] [ 21.768516] allocated by task 180 on cpu 1 at 21.757367s (0.011080s ago): [ 21.769566] kmalloc_double_kzfree+0xb8/0x318 [ 21.770206] kunit_try_run_case+0x170/0x3f0 [ 21.770806] kunit_generic_run_threadfn_adapter+0x88/0x100 [ 21.771463] kthread+0x24c/0x2d0 [ 21.772140] ret_from_fork+0x10/0x20 [ 21.772746] [ 21.773375] freed by task 180 on cpu 1 at 21.757455s (0.015744s ago): [ 21.774244] kfree_sensitive+0x80/0xb0 [ 21.774748] kmalloc_double_kzfree+0x120/0x318 [ 21.775371] kunit_try_run_case+0x170/0x3f0 [ 21.776160] kunit_generic_run_threadfn_adapter+0x88/0x100 [ 21.776896] kthread+0x24c/0x2d0 [ 21.777322] ret_from_fork+0x10/0x20 [ 21.777786] [ 21.778232] CPU: 1 UID: 0 PID: 180 Comm: kunit_try_catch Tainted: G B N 6.12.33-rc1 #1 [ 21.779287] Tainted: [B]=BAD_PAGE, [N]=TEST [ 21.779843] Hardware name: linux,dummy-virt (DT) [ 21.781080] ==================================================================