Issue 628326 link

Starred by 1 user

Issue metadata

Status:	Duplicate
Merged:	issue 627387
Owner:	robertphillips@chromium.org
Closed:	Jul 2016
Components:	Internals>Skia
EstimatedDays:	----
NextAction:	----
OS:	Linux
Pri:	1
Type:	Bug
Stability-Crash Reproducible Stability-Memory-AddressSanitizer Clusterfuzz

Crash in SkSpecialImage_Raster::SkSpecialImage_Raster

Project Member Reported by ClusterFuzz, Jul 14 2016

Issue description

Detailed report: https://cluster-fuzz.appspot.com/testcase?key=4801725777313792

Fuzzer: sugoi_filter_fuzzer
Job Type: linux_asan_filter_fuzz_stub_32bit
Platform Id: linux

Crash Type: UNKNOWN WRITE
Crash Address: 0x00000004
Crash State:
  SkSpecialImage_Raster::SkSpecialImage_Raster
  SkSpecialImage::MakeFromRaster
  SkDisplacementMapEffect::onFilterImage
  
Regressed: https://cluster-fuzz.appspot.com/revisions?job=linux_asan_filter_fuzz_stub_32bit&range=386376:386397

Minimized Testcase (0.38 Kb): https://cluster-fuzz.appspot.com/download/AMIfv94BBOtjXIw6_-evATvP-Fr-Br8dkeFtZ1uijMjjkbqy-FRcAGdlfgvjosry4Y3-paLsBZSAmJrxC9Qm3bmZejrI5XdPBS-Y_v3r_eD2O3RuVgJ17Ds_Vfp7fq9Qmk8RC5tAbMEjFoFeHMmwyzPI_lcnqVQI4g?testcase_id=4801725777313792

Filer: mmohammad

See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.

Comment 1 by mmohammad@chromium.org, Jul 14 2016

Components: Internals>Skia
Owner: robertphillips@chromium.org
Status: Assigned (was: Available)



Changelist: https://chromium.googlesource.com/skia.git/+/e6277de4ebb1b00a15f8f3c7cd9d6027c6b021fe
robertphillips @ could you please look into this. Thanks

Comment 2 by robertphillips@chromium.org, Jul 14 2016

Mergedinto: 627387
Status: Duplicate (was: Assigned)

Project Member

Comment 3 by sheriffbot@chromium.org, Nov 22 2016

Labels: -Restrict-View-EditIssue

Removing EditIssue view restrictions from ClusterFuzz filed bugs. If you believe that this issue should still be restricted, please reapply the label.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot

Project Member

Comment 4 by ClusterFuzz, Apr 15 2017

ClusterFuzz has detected this issue as fixed in range 464815:464837.

Detailed report: https://clusterfuzz.com/testcase?key=4801725777313792

Fuzzer: sugoi_filter_fuzzer
Job Type: linux_asan_filter_fuzz_stub_32bit
Platform Id: linux

Crash Type: UNKNOWN WRITE
Crash Address: 0x00000004
Crash State:
  SkSpecialImage_Raster::SkSpecialImage_Raster
  SkSpecialImage::MakeFromRaster
  SkDisplacementMapEffect::onFilterImage
  
Sanitizer: address (ASAN)

Regressed: https://clusterfuzz.com/revisions?job=linux_asan_filter_fuzz_stub_32bit&range=386376:386397
Fixed: https://clusterfuzz.com/revisions?job=linux_asan_filter_fuzz_stub_32bit&range=464815:464837

Reproducer Testcase: https://clusterfuzz.com/download/AMIfv94BBOtjXIw6_-evATvP-Fr-Br8dkeFtZ1uijMjjkbqy-FRcAGdlfgvjosry4Y3-paLsBZSAmJrxC9Qm3bmZejrI5XdPBS-Y_v3r_eD2O3RuVgJ17Ds_Vfp7fq9Qmk8RC5tAbMEjFoFeHMmwyzPI_lcnqVQI4g?testcase_id=4801725777313792


See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.

If you suspect that the result above is incorrect, try re-doing that job on the test case report page.

►

Issue 628326 link

Issue metadata

Crash in SkSpecialImage_Raster::SkSpecialImage_Raster

Issue description

Comment 1 by mmohammad@chromium.org, Jul 14 2016

Comment 1 Deleted

Comment 2 by robertphillips@chromium.org, Jul 14 2016

Comment 2 Deleted

Comment 3 by sheriffbot@chromium.org, Nov 22 2016

Comment 3 Deleted

Comment 4 by ClusterFuzz, Apr 15 2017

Comment 4 Deleted

Sign in to add a comment