Crash in blink::PtrStorageImpl<blink::Prerender, |
|||||
Issue descriptionDetailed report: https://cluster-fuzz.appspot.com/testcase?key=4575142281216000 Fuzzer: attekett_surku_fuzzer Job Type: linux_asan_chrome_chromeos Platform Id: linux Crash Type: UNKNOWN READ Crash Address: 0x000000000008 Crash State: blink::PtrStorageImpl<blink::Prerender, std::_Rb_tree<int, std::pair<int const, blink::WebPrerender>, std::_Select1st<st std::_Rb_tree<int, std::pair<int const, blink::WebPrerender>, std::_Select1st<st Regressed: https://cluster-fuzz.appspot.com/revisions?job=linux_asan_chrome_chromeos&range=387207:387248 Minimized Testcase (0.09 Kb): Download: https://cluster-fuzz.appspot.com/download/AMIfv96FpxdiNm6Ezrnc524weYp45rjvVuO4-91z7SBbgcXx4BlM8rtl5d1vx-cu3gZx-y2arzoLn2HoKpCRoDJ_Ycti5Dr5uHjqTPwqARO1Xn82HmOwUsbGALQ3xUe2jcFrNuoBvwANY9p0TytzoFB6OOokP0_fcg <link rel="next" type="text/css >} type="text/css >#test1{background:red;<link rel="next"> Filer: tkonchada See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.
,
Apr 15 2016
,
Apr 15 2016
My CL is renaming of method names.
,
Apr 16 2016
ClusterFuzz has detected this issue as fixed in range 387407:387541. Detailed report: https://cluster-fuzz.appspot.com/testcase?key=4575142281216000 Fuzzer: attekett_surku_fuzzer Job Type: linux_asan_chrome_chromeos Platform Id: linux Crash Type: UNKNOWN READ Crash Address: 0x000000000008 Crash State: blink::PtrStorageImpl<blink::Prerender, std::_Rb_tree<int, std::pair<int const, blink::WebPrerender>, std::_Select1st<st std::_Rb_tree<int, std::pair<int const, blink::WebPrerender>, std::_Select1st<st Regressed: https://cluster-fuzz.appspot.com/revisions?job=linux_asan_chrome_chromeos&range=387207:387248 Fixed: https://cluster-fuzz.appspot.com/revisions?job=linux_asan_chrome_chromeos&range=387407:387541 Minimized Testcase (0.09 Kb): Download: https://cluster-fuzz.appspot.com/download/AMIfv96FpxdiNm6Ezrnc524weYp45rjvVuO4-91z7SBbgcXx4BlM8rtl5d1vx-cu3gZx-y2arzoLn2HoKpCRoDJ_Ycti5Dr5uHjqTPwqARO1Xn82HmOwUsbGALQ3xUe2jcFrNuoBvwANY9p0TytzoFB6OOokP0_fcg <link rel="next" type="text/css >} type="text/css >#test1{background:red;<link rel="next"> See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Apr 18 2016
,
Nov 22 2016
Removing EditIssue view restrictions from ClusterFuzz filed bugs. If you believe that this issue should still be restricted, please reapply the label. For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot |
|||||
►
Sign in to add a comment |
|||||
Comment 1 by tkonch...@chromium.org
, Apr 15 2016Owner: danakj@chromium.org
Status: Assigned (was: Available)