New issue
Advanced search Search tips

Issue 628549 link

Starred by 1 user
Status: Verified
Owner:
wolenetz@chromium.org
Closed: Jul 2016
Cc:
ajha@chromium.org
xhw...@chromium.org
chcunningham@chromium.org
Components:
EstimatedDays: ----
NextAction: ----
OS: Linux
Pri: 2
Type: Bug



Sign in to add a comment

Direct-leak in posix_memalign

Project Member Reported by ClusterFuzz, Jul 15 2016

Comment 1 by ajha@chromium.org, Jul 15 2016

Cc: xhw...@chromium.org ajha@chromium.org
Components: Internals>Media>FFmpeg
Labels: findit-for-crash M-54 Te-Logged
Owner: dalecur...@chromium.org
Status: Assigned (was: Available)
Suspected CLs	No CL in the regression range changes the crashed files. The result is the blame information.

Author: Michael Niedermayer
Project: chromium-ffmpeg
Changelist: https://chromium.googlesource.com/chromium/third_party/ffmpeg.git/+/6912e7a008acd1464a63b0a00779a3de81b9a8ab
Time: Sat Oct 20 11:18:59 2012
The CL last changed line 98 of file mem.c, which is stack frame 1.

Author: Ben Boeckel
Project: chromium-ffmpeg
Changelist: https://chromium.googlesource.com/chromium/third_party/ffmpeg.git/+/5a633ec2dd453c67ff23819c28d98e6b09c47295
Time: Wed Feb 05 17:10:56 2014
The CL last changed line 286 of file oggparsevorbis.c, which is stack frame 2.

Author: Michael Niedermayer
Project: chromium-ffmpeg
Changelist: https://chromium.googlesource.com/chromium/third_party/ffmpeg.git/+/f5d1d1e4667ba346ea7e0f97e6d2756bc9d4abde
Time: Sun Mar 02 04:02:15 2014
The CL last changed line 368 of file oggparsevorbis.c, which is stack frame 3.

Author: Luca Barbato
Project: chromium-ffmpeg
Changelist: https://chromium.googlesource.com/chromium/third_party/ffmpeg.git/+/f5f1cf52240759208b42477e2157a7b4409ade10
Time: Fri Dec 21 18:12:41 2012
The CL last changed line 530 of file oggdec.c, which is stack frame 4.

Author: Reimar Döffinger
Project: chromium-ffmpeg
Changelist: https://chromium.googlesource.com/chromium/third_party/ffmpeg.git/+/a4163b2d6583396845e06b1b976c3a981eb8cb1c
Time: Sun Aug 05 07:41:20 2012
The CL last changed line 642 of file oggdec.c, which is stack frame 5.

Author: Luca Barbato
Project: chromium-ffmpeg
Changelist: https://chromium.googlesource.com/chromium/third_party/ffmpeg.git/+/656e31ed8728b0c095d037dc9764fc8137c87200
Time: Sat Mar 21 15:34:39 2015
The CL last changed line 719 of file oggdec.c, which is stack frame 6.

Author: Anton Khirnov
Project: chromium-ffmpeg
Changelist: https://chromium.googlesource.com/chromium/third_party/ffmpeg.git/+/6e9651d1064b6a3e18c24f15d5b03bb9c5fc3393
Time: Thu Jan 12 12:20:36 2012
The CL last changed line 498 of file utils.c, which is stack frame 7.

Suspected Project: chromium-ffmpeg

None of the changes above from the Findit looks related.

Assigning to chromium//src/third_party/ffmpeg/OWNERS for help in investigating this further and help in finding an appropriate owner for this.

dalecurtis@/xhwang@: Could you please take a look at this.

Thank you!

Comment 2 by ajha@chromium.org, Jul 15 2016

Components: Tools>Test>FindIt>WrongResult
Labels: -findit-for-crash

Comment 3 by dalecur...@chromium.org, Jul 18 2016

Cc: chcunningham@chromium.org
Owner: wolenetz@chromium.org
Project Member

Comment 4 by ClusterFuzz, Jul 23 2016 

ClusterFuzz has detected this issue as fixed in range 407167:407197.

Detailed report: https://cluster-fuzz.appspot.com/testcase?key=5621187921313792

Fuzzer: attekett_dom_fuzzer
Job Type: linux_lsan_chrome_mp
Platform Id: linux

Crash Type: Direct-leak
Crash Address: 
Crash State:
  posix_memalign
  av_malloc
  vorbis_update_metadata
  
Regressed: https://cluster-fuzz.appspot.com/revisions?job=linux_lsan_chrome_mp&range=403234:403281
Fixed: https://cluster-fuzz.appspot.com/revisions?job=linux_lsan_chrome_mp&range=407167:407197

Minimized Testcase (292.48 Kb): https://cluster-fuzz.appspot.com/download/AMIfv95_O1N9UHf9njJc5YT3bmi5AGCh_owN6eJ1AyxX-7NoHO97n72fT3_aRRpCzVAiJHZ7f163h-sayiaTiB8NoDdkvmbf8eClXEC166mq4tdOSBtgZMSRiIClyZoDhIvoUKU3sY8KxNQ0onKXLt_igDgRhKdVajWD_41CKcXgwG4NzHPRR0k?testcase_id=5621187921313792

See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.

If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
Project Member

Comment 5 by ClusterFuzz, Jul 23 2016

Labels: ClusterFuzz-Verified
Status: Verified (was: Assigned)
ClusterFuzz testcase is verified as fixed, closing issue.

If this is incorrect, please add ClusterFuzz-Wrong label and re-open the issue.
Project Member

Comment 6 by ClusterFuzz, Jul 25 2016 

ClusterFuzz has detected this issue as fixed in range 407167:407197.

Detailed report: https://cluster-fuzz.appspot.com/testcase?key=5621187921313792

Fuzzer: attekett_dom_fuzzer
Job Type: linux_lsan_chrome_mp
Platform Id: linux

Crash Type: Direct-leak
Crash Address: 
Crash State:
  posix_memalign
  av_malloc
  vorbis_update_metadata
  
Regressed: https://cluster-fuzz.appspot.com/revisions?job=linux_lsan_chrome_mp&range=403234:403281
Fixed: https://cluster-fuzz.appspot.com/revisions?job=linux_lsan_chrome_mp&range=407167:407197

Minimized Testcase (292.48 Kb): https://cluster-fuzz.appspot.com/download/AMIfv95_O1N9UHf9njJc5YT3bmi5AGCh_owN6eJ1AyxX-7NoHO97n72fT3_aRRpCzVAiJHZ7f163h-sayiaTiB8NoDdkvmbf8eClXEC166mq4tdOSBtgZMSRiIClyZoDhIvoUKU3sY8KxNQ0onKXLt_igDgRhKdVajWD_41CKcXgwG4NzHPRR0k?testcase_id=5621187921313792

See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.

If you suspect that the result above is incorrect, try re-doing that job on the test case report page.

Comment 7 by kateso...@chromium.org, Oct 18 2016

Components: -Tools>Test>FindIt>WrongResult
Labels: Test-Predator-Wrong
Project Member

Comment 8 by sheriffbot@chromium.org, Nov 22 2016

Labels: -Restrict-View-EditIssue
Removing EditIssue view restrictions from ClusterFuzz filed bugs. If you believe that this issue should still be restricted, please reapply the label.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot

Sign in to add a comment