Detailed report: https://cluster-fuzz.appspot.com/testcase?key=6750724902092800

Fuzzer: inferno_layout_test_unmodified
Job Type: mac_asan_content_shell
Platform Id: mac

Crash Type: Heap-buffer-overflow READ 8
Crash Address: 0x604000099ff8
Crash State:
  elt
  vbo_split_copy
  vbo_split_prims
  
Recommended Security Severity: Medium

Regressed: https://cluster-fuzz.appspot.com/revisions?job=mac_asan_content_shell&range=408444:408557

Minimized Testcase (19.84 Kb): https://cluster-fuzz.appspot.com/download/AMIfv97afIBFLVlXFgqSiwhhWBTvdJcDEzsgkBIzM6x2hEhS1SEp3Kde3lIANc6YFwjER4CNnh2KCSAVPgRh61M7hag_3_WDr-AY7_Tk3o2PnGrVYmup3Gm3GoAaG-MWq1FvKjMiuDJ_QktD76XUHqHNxTKWMWzPirxaNFg3PX6GRRh35pnYiE0?testcase_id=6750724902092800

Filer: tanin

See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.

Hey zmo@, I see you've helped on out bugs around this area in the past - mind taking a look at this one on reassigning to someone who might be familiar? Thanks!

This issue is a security regression. If you are not able to fix this quickly, please revert the change that introduced it.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot

We're working on replacing the old copy of Mesa used for these tests by SwiftShader.

ClusterFuzz has detected this issue as fixed in range 410916:411073.

Detailed report: https://cluster-fuzz.appspot.com/testcase?key=6218488662458368

Fuzzer: inferno_layout_test_unmodified
Job Type: mac_asan_content_shell
Platform Id: mac

Crash Type: Heap-buffer-overflow READ 4
Crash Address: 0x0002bcc1467c
Crash State:
  elt
  vbo_split_copy
  vbo_split_prims
  
Recommended Security Severity: Medium

Regressed: https://cluster-fuzz.appspot.com/revisions?job=mac_asan_content_shell&range=408444:408557
Fixed: https://cluster-fuzz.appspot.com/revisions?job=mac_asan_content_shell&range=410916:411073

Minimized Testcase (14.24 Kb): https://cluster-fuzz.appspot.com/download/AMIfv96si0INZl4_52EV5_9-8qjG6aFjPWWulGAEUP06I-xIhKFr76fKY_-hwgIGERqAFOgIZ1yK1EpBfNvXeWlyEVwb1biVvN8DSUIQJdyoWDRroAsJhnOYew2DY5hF2TWL2SY8IGu4P61vNaQrLVHFpJNXvbwVuQ?testcase_id=6218488662458368

See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.

If you suspect that the result above is incorrect, try re-doing that job on the test case report page.

ClusterFuzz has detected this issue as fixed in range 410916:411073.

Detailed report: https://cluster-fuzz.appspot.com/testcase?key=6750724902092800

Fuzzer: inferno_layout_test_unmodified
Job Type: mac_asan_content_shell
Platform Id: mac

Crash Type: Heap-buffer-overflow READ 8
Crash Address: 0x604000099ff8
Crash State:
  elt
  vbo_split_copy
  vbo_split_prims
  
Recommended Security Severity: Medium

Regressed: https://cluster-fuzz.appspot.com/revisions?job=mac_asan_content_shell&range=408444:408557
Fixed: https://cluster-fuzz.appspot.com/revisions?job=mac_asan_content_shell&range=410916:411073

Minimized Testcase (19.84 Kb): https://cluster-fuzz.appspot.com/download/AMIfv97afIBFLVlXFgqSiwhhWBTvdJcDEzsgkBIzM6x2hEhS1SEp3Kde3lIANc6YFwjER4CNnh2KCSAVPgRh61M7hag_3_WDr-AY7_Tk3o2PnGrVYmup3Gm3GoAaG-MWq1FvKjMiuDJ_QktD76XUHqHNxTKWMWzPirxaNFg3PX6GRRh35pnYiE0?testcase_id=6750724902092800

See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.

If you suspect that the result above is incorrect, try re-doing that job on the test case report page.

This is not fixed, just that ClusterFuzz is able to ignore these crashes properly now!. Mac was having missing source paths which now show up and we ignore based on #0 and #1 with mesa is ignored.

This bug has been closed for more than 14 weeks. Removing security view restrictions.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot