Issue metadata
Sign in to add a comment
|
Stack-overflow in v8::internal::Object::ToString |
||||||||||||||||||||||||
Issue descriptionDetailed report: https://cluster-fuzz.appspot.com/testcase?key=5148690855755776 Fuzzer: decoder_langfuzz Job Type: linux_asan_d8_ignition_v8_arm_dbg Platform Id: linux Crash Type: Stack-overflow Crash Address: 0xff0b4f80 Crash State: v8::internal::Object::ToString v8::internal::__RT_impl_Runtime_ToString v8::internal::Runtime_ToString Regressed: https://cluster-fuzz.appspot.com/revisions?job=linux_asan_d8_ignition_v8_arm_dbg&range=35401:35402 Minimized Testcase (10.72 Kb): https://cluster-fuzz.appspot.com/download/AMIfv95E2XKFdLkWyzJ_xGsnKZVqDGmKRrWbWF_2tRMrBMqhmOQD34d3IBx1tROjfIubiCEOgY6jU0KHqCturHW7LdABqdaBwpcEjHZALKK-jmCHukp_ad1d5DraT5HfTABTUAnkWpQmDYia-V76auAyM6hg-frZ5A Filer: mstarzinger See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.
,
Jul 6 2016
ClusterFuzz has detected this testcase as flaky and is unable to reproduce it in the original crash revision. Skipping fixed testing check and marking it as potentially fixed. Detailed report: https://cluster-fuzz.appspot.com/testcase?key=5148690855755776 Fuzzer: decoder_langfuzz Job Type: linux_asan_d8_ignition_v8_arm_dbg Platform Id: linux Crash Type: Stack-overflow Crash Address: 0xff0b4f80 Crash State: v8::internal::Object::ToString v8::internal::__RT_impl_Runtime_ToString v8::internal::Runtime_ToString Regressed: V8: r35401:35402 Minimized Testcase (10.72 Kb): https://cluster-fuzz.appspot.com/download/AMIfv95E2XKFdLkWyzJ_xGsnKZVqDGmKRrWbWF_2tRMrBMqhmOQD34d3IBx1tROjfIubiCEOgY6jU0KHqCturHW7LdABqdaBwpcEjHZALKK-jmCHukp_ad1d5DraT5HfTABTUAnkWpQmDYia-V76auAyM6hg-frZ5A?testcase_id=5148690855755776 See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 7 2016
,
Jul 14 2016
,
Jul 14 2016
,
Jul 15 2016
ClusterFuzz has detected this issue as fixed in range 37748:37749. Detailed report: https://cluster-fuzz.appspot.com/testcase?key=5148690855755776 Fuzzer: decoder_langfuzz Job Type: linux_asan_d8_ignition_v8_arm_dbg Platform Id: linux Crash Type: Stack-overflow Crash Address: 0xff0b4f80 Crash State: v8::internal::Object::ToString v8::internal::__RT_impl_Runtime_ToString v8::internal::Runtime_ToString Regressed: V8: r35401:35402 Fixed: V8: r37748:37749 Minimized Testcase (10.72 Kb): https://cluster-fuzz.appspot.com/download/AMIfv95E2XKFdLkWyzJ_xGsnKZVqDGmKRrWbWF_2tRMrBMqhmOQD34d3IBx1tROjfIubiCEOgY6jU0KHqCturHW7LdABqdaBwpcEjHZALKK-jmCHukp_ad1d5DraT5HfTABTUAnkWpQmDYia-V76auAyM6hg-frZ5A?testcase_id=5148690855755776 See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Nov 22 2016
Removing EditIssue view restrictions from ClusterFuzz filed bugs. If you believe that this issue should still be restricted, please reapply the label. For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot |
|||||||||||||||||||||||||
►
Sign in to add a comment |
|||||||||||||||||||||||||
Comment 1 by ishell@chromium.org
, Jun 27 2016Status: Assigned (was: Available)