New issue
Advanced search Search tips
Note: Color blocks (like or ) mean that a user may not be available. Tooltip shows the reason.

Issue 632846 link

Starred by 1 user

Issue metadata

Status: WontFix
Owner:
Last visit > 30 days ago
Closed: Jan 2017
Components:
EstimatedDays: ----
NextAction: ----
OS: Linux
Pri: 1
Type: Bug-Security



Sign in to add a comment

Crash in libpepflashplayer.so

Project Member Reported by ClusterFuzz, Jul 29 2016

Issue description

Project Member

Comment 1 by ClusterFuzz, Jul 29 2016

Detailed report: https://cluster-fuzz.appspot.com/testcase?key=6338371937107968

Fuzzer: taviso_swf_api_fuzz
Job Type: linux_asan_chrome_mp
Platform Id: linux

Crash Type: UNKNOWN READ
Crash Address: 0x344e43b77318
Crash State:
  libpepflashplayer.so
  
Recommended Security Severity: Medium

Regressed: https://cluster-fuzz.appspot.com/revisions?job=linux_asan_chrome_mp&range=268656:269696

Minimized Testcase (10.31 Kb): https://cluster-fuzz.appspot.com/download/AMIfv97aBrQHcuzIP2nf9EJ-mDMEyTm-JBTsPGIWG0CkVhcx4o9Cg6jny_ZuI-OHtEsmrO9PDrvVflg-hdr_12FbwWzFC_karEz_NHG7Gj4JEoMWqeycIpoL5pto5knvLmK-SNlymPDF4YxT5IN_FYQuLVcjt3YG9Q?testcase_id=6338371937107968

Filer: tanin

See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.

Comment 2 by rickyz@chromium.org, Jul 29 2016

Components: Internals>Plugins>Flash
Owner: natashenka@google.com
Status: Assigned (was: Untriaged)
Hey, natashenka@, mind taking a look at this?
Thanks, reported to Adobe.
Project Member

Comment 4 by sheriffbot@chromium.org, Jul 30 2016

Labels: M-52
Project Member

Comment 5 by sheriffbot@chromium.org, Jul 30 2016

Labels: Pri-1

Comment 6 by och...@chromium.org, Aug 11 2016

Status: ExternalDependency (was: Assigned)
Project Member

Comment 7 by sheriffbot@chromium.org, Sep 1 2016

Labels: -M-52 M-53
Project Member

Comment 8 by sheriffbot@chromium.org, Oct 13 2016

Labels: -M-53 M-54
Project Member

Comment 9 by sheriffbot@chromium.org, Dec 2 2016

Labels: -M-54 M-55
Project Member

Comment 10 by ClusterFuzz, Jan 1 2017

Status: WontFix (was: ExternalDependency)
ClusterFuzz testcase 6338371937107968 is flaky and no longer reproduces, so closing issue.

If this is incorrect, please add ClusterFuzz-Wrong label and re-open the issue.
Project Member

Comment 11 by sheriffbot@chromium.org, Apr 10 2017

Labels: -Restrict-View-SecurityTeam allpublic
This bug has been closed for more than 14 weeks. Removing security view restrictions.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot

Sign in to add a comment