Issue 629046 link

Starred by 1 user

Issue metadata

Status:	Duplicate
Merged:	issue 628573
Owner:	----
Closed:	Jul 2016
Cc:	ishell@chromium.org mstarzinger@chromium.org u...@chromium.org
Components:	Blink>JavaScript
EstimatedDays:	----
NextAction:	----
OS:	Windows
Pri:	2
Type:	Bug-Security
Reproducible Stability-Memory-AddressSanitizer M-53 Security_Severity-Medium Security_Impact-Head allpublic Clusterfuzz

Crash in v8::internal::JavaScriptFrame::Print

Project Member Reported by ClusterFuzz, Jul 18 2016

Issue description

Detailed report: https://cluster-fuzz.appspot.com/testcase?key=5659279583608832

Fuzzer: mbarbella_js_mutation
Job Type: windows_asan_d8
Platform Id: windows

Crash Type: UNKNOWN READ
Crash Address: 0xffffffff
Crash State:
  v8::internal::JavaScriptFrame::Print
  v8::internal::Isolate::PrintStack
  v8::internal::Isolate::PrintStack
  
Recommended Security Severity: Medium

Regressed: https://cluster-fuzz.appspot.com/revisions?job=windows_asan_d8&range=405784:405844

Minimized Testcase (0.46 Kb): https://cluster-fuzz.appspot.com/download/AMIfv94CfQQmlmL8MOFK8FBAYINn9NLwuj5inbuzbnnE3PghzGvwEbKShRtUU2aKNh1xuflv9Ty_Jxs30hGQ_gJkXrTvDRaVHlZ5J8moKkLd46w6_YyuLxWNKfXKNVS51BZQV1PmqTfnamQO_O0Rk5oKxEYunErEjw?testcase_id=5659279583608832

Filer: mmoroz

See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.

Comment 1 by mmoroz@chromium.org, Jul 18 2016

Labels: M-53 Pri-2
Owner: u...@chromium.org

ulan@, this crash is a bit similar to  bug 544223 . Could you please take a look or suggest another owner?

Comment 2 by u...@chromium.org, Jul 18 2016

Cc: u...@chromium.org
Owner: ----
Status: Untriaged (was: Available)

544223 is android specific and old.

This is most likely a different issue. Deferring to cluster fuzz sheriffs.

Comment 3 by ishell@chromium.org, Jul 18 2016

Mergedinto: 628573
Status: Duplicate (was: Untriaged)

Project Member

Comment 4 by sheriffbot@chromium.org, Oct 24 2016

Labels: -Restrict-View-SecurityTeam allpublic

This bug has been closed for more than 14 weeks. Removing security view restrictions.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot

►

Issue 629046 link

Issue metadata

Crash in v8::internal::JavaScriptFrame::Print

Issue description

Comment 1 by mmoroz@chromium.org, Jul 18 2016

Comment 1 Deleted

Comment 2 by u...@chromium.org, Jul 18 2016

Comment 2 Deleted

Comment 3 by ishell@chromium.org, Jul 18 2016

Comment 3 Deleted

Comment 4 by sheriffbot@chromium.org, Oct 24 2016

Comment 4 Deleted

Sign in to add a comment