Issue metadata
Sign in to add a comment
|
Crash in blink::Canvas2DLayerBridge::disableAcceleration |
||||||||||||||||||||||
Issue descriptionDetailed report: https://cluster-fuzz.appspot.com/testcase?key=5508916251459584 Fuzzer: inferno_layout_test_unmodified Job Type: mac_asan_chrome Platform Id: mac Crash Type: UNKNOWN READ Crash Address: 0x000000000000 Crash State: blink::Canvas2DLayerBridge::disableAcceleration blink::Canvas2DLayerBridge::getOrCreateSurface blink::Canvas2DLayerBridge::newImageSnapshot Regressed: https://cluster-fuzz.appspot.com/revisions?job=mac_asan_chrome&range=403894:403906 Minimized Testcase (0.23 Kb): Download: https://cluster-fuzz.appspot.com/download/AMIfv97JYix4srkcsR6UMkuOZICB0tCEk2-U51cLTFW6NOCeyi4U7PcpEGgbn9ArWkvGMhfrkEMp0nuP-t77pWjUzmNUtXgY1Kk-x9_E8PnPDv2FRN2N0kRQTAQeTVqZhxly8CoLHa8VsQ852tGfv4yFSWK5coPaTw?testcase_id=5508916251459584 <script src="../../resources/js-test.js"></script> <canvas id="destination" width="300" height="300"</canvas> <canvas id="source" width="300"</canvas> <script src="script-tests/canvas-imageSmoothingEnabled-repaint.js"></script> Filer: ssamanoori See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.
,
Jul 7 2016
,
Jul 8 2016
,
Jul 8 2016
ClusterFuzz has detected this issue as fixed in range 404191:404223. Detailed report: https://cluster-fuzz.appspot.com/testcase?key=5508916251459584 Fuzzer: inferno_layout_test_unmodified Job Type: mac_asan_chrome Platform Id: mac Crash Type: UNKNOWN READ Crash Address: 0x000000000000 Crash State: blink::Canvas2DLayerBridge::disableAcceleration blink::Canvas2DLayerBridge::getOrCreateSurface blink::Canvas2DLayerBridge::newImageSnapshot Regressed: https://cluster-fuzz.appspot.com/revisions?job=mac_asan_chrome&range=403894:403906 Fixed: https://cluster-fuzz.appspot.com/revisions?job=mac_asan_chrome&range=404191:404223 Minimized Testcase (0.23 Kb): Download: https://cluster-fuzz.appspot.com/download/AMIfv97JYix4srkcsR6UMkuOZICB0tCEk2-U51cLTFW6NOCeyi4U7PcpEGgbn9ArWkvGMhfrkEMp0nuP-t77pWjUzmNUtXgY1Kk-x9_E8PnPDv2FRN2N0kRQTAQeTVqZhxly8CoLHa8VsQ852tGfv4yFSWK5coPaTw?testcase_id=5508916251459584 <script src="../../resources/js-test.js"></script> <canvas id="destination" width="300" height="300"</canvas> <canvas id="source" width="300"</canvas> <script src="script-tests/canvas-imageSmoothingEnabled-repaint.js"></script> See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 8 2016
ClusterFuzz testcase is verified as fixed, closing issue. If this is incorrect, please add ClusterFuzz-Wrong label and re-open the issue.
,
Oct 18 2016
,
Nov 22 2016
Removing EditIssue view restrictions from ClusterFuzz filed bugs. If you believe that this issue should still be restricted, please reapply the label. For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot |
|||||||||||||||||||||||
►
Sign in to add a comment |
|||||||||||||||||||||||
Comment 1 by ssamanoori@chromium.org
, Jul 7 2016Components: Blink
Labels: -Type-Bug Te-Logged Type-Bug-Regression
Owner: junov@chromium.org
Status: Assigned (was: Available)