Detailed report: https://cluster-fuzz.appspot.com/testcase?key=6468824920752128

Fuzzer: inferno_layout_test_unmodified
Job Type: linux_lsan_chrome_mp
Platform Id: linux

Crash Type: Stack-use-after-return WRITE {*}
Crash Address: 0x7f72b5826800
Crash State:
  FillRect
  tracked_objects::TrackedTime::Now
  
Regressed: https://cluster-fuzz.appspot.com/revisions?job=linux_lsan_chrome_mp&range=173978:174317

Minimized Testcase (10.44 Kb): https://cluster-fuzz.appspot.com/download/AMIfv95wlzGCYxVLByltOfRLBt2ybT0En76_iQ4c-xzEPMSDYTU36bspyPysCrcZt7ZVJ6pu4yEte_g_2E2SCVCjWCPg1F0oazeju8laUJp7ajRPc8UGrgGbhnIshI_zqsW6xbebhaAfY3Xs-JAt-Gz9qhj9ACDiRQ?testcase_id=6468824920752128

Filer: tanin

See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.

ClusterFuzz has detected this testcase as flaky and is unable to reproduce it in the original crash revision. Skipping fixed testing check and marking it as potentially fixed.

Detailed report: https://cluster-fuzz.appspot.com/testcase?key=5378244409032704

Fuzzer: inferno_layout_test_unmodified
Job Type: linux_lsan_chrome_mp
Platform Id: linux

Crash Type: Stack-use-after-return WRITE {*}
Crash Address: 0x7f2ca1e55800
Crash State:
  FillRect
  tracked_objects::TrackedTime::Now
  TSafeThread::Start
  
Regressed: https://cluster-fuzz.appspot.com/revisions?job=linux_lsan_chrome_mp&range=172066:172152

Unminimized Testcase: https://cluster-fuzz.appspot.com/download/AMIfv95o_hq3xexjpTKcQVw1Ybecm_4V0DC5MK5Txep36IHhtGHl3yT11tgSmhr9p3T6u22m6UfCoU0gjxCvlD6E4WVrLovsrls2iGZ5YsPIN0-iA7_mGBv9MSmN76ak9kuLzMAwNnNLDuNioH3FvEvaxGYCyrUagA?testcase_id=5378244409032704


See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.

If you suspect that the result above is incorrect, try re-doing that job on the test case report page.

ClusterFuzz has detected this testcase as flaky and is unable to reproduce it in the original crash revision. Skipping fixed testing check and marking it as potentially fixed.

Detailed report: https://cluster-fuzz.appspot.com/testcase?key=6468824920752128

Fuzzer: inferno_layout_test_unmodified
Job Type: linux_lsan_chrome_mp
Platform Id: linux

Crash Type: Stack-use-after-return WRITE {*}
Crash Address: 0x7f72b5826800
Crash State:
  FillRect
  tracked_objects::TrackedTime::Now
  
Regressed: https://cluster-fuzz.appspot.com/revisions?job=linux_lsan_chrome_mp&range=173978:174317

Minimized Testcase (10.44 Kb): https://cluster-fuzz.appspot.com/download/AMIfv95wlzGCYxVLByltOfRLBt2ybT0En76_iQ4c-xzEPMSDYTU36bspyPysCrcZt7ZVJ6pu4yEte_g_2E2SCVCjWCPg1F0oazeju8laUJp7ajRPc8UGrgGbhnIshI_zqsW6xbebhaAfY3Xs-JAt-Gz9qhj9ACDiRQ?testcase_id=6468824920752128

See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.

If you suspect that the result above is incorrect, try re-doing that job on the test case report page.

+ochang: are you the right person to look at this?

ClusterFuzz has detected this testcase as flaky and is unable to reproduce it in the original crash revision. Skipping fixed testing check and marking it as potentially fixed.

Detailed report: https://cluster-fuzz.appspot.com/testcase?key=5378244409032704

Fuzzer: inferno_layout_test_unmodified
Job Type: linux_lsan_chrome_mp
Platform Id: linux

Crash Type: Stack-use-after-return WRITE {*}
Crash Address: 0x7f2ca1e55800
Crash State:
  FillRect
  tracked_objects::TrackedTime::Now
  TSafeThread::Start
  
Regressed: https://cluster-fuzz.appspot.com/revisions?job=linux_lsan_chrome_mp&range=172066:172152

Unminimized Testcase: https://cluster-fuzz.appspot.com/download/AMIfv95o_hq3xexjpTKcQVw1Ybecm_4V0DC5MK5Txep36IHhtGHl3yT11tgSmhr9p3T6u22m6UfCoU0gjxCvlD6E4WVrLovsrls2iGZ5YsPIN0-iA7_mGBv9MSmN76ak9kuLzMAwNnNLDuNioH3FvEvaxGYCyrUagA?testcase_id=5378244409032704


See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.

If you suspect that the result above is incorrect, try re-doing that job on the test case report page.

ochang: Uh oh! This issue still open and hasn't been updated in the last 14 days. This is a serious vulnerability, and we want to ensure that there's progress. Could you please leave an update with the current status and any potential blockers?

If you're not the right owner for this issue, could you please remove yourself as soon as possible or help us find the right one?

If the issue is fixed or you can't reproduce it, please close the bug. If you've started working on a fix, please set the status to Started.

Thanks for your time! To disable nags, add the Disable-Nags label.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot

Marking as WontFix, since it no longer repros on original revision, and we're not seeing this happen anymore. (I'm also not the right owner).

This bug has been closed for more than 14 weeks. Removing security view restrictions.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot