Integer-overflow in cmp |
|||||
Issue descriptionDetailed report: https://cluster-fuzz.appspot.com/testcase?key=6218292266270720 Fuzzer: libfuzzer_harfbuzz_fuzzer Job Type: libfuzzer_chrome_ubsan Platform Id: linux Crash Type: Integer-overflow Crash Address: Crash State: cmp bsearch<unsigned get_coverage Regressed: https://cluster-fuzz.appspot.com/revisions?job=libfuzzer_chrome_ubsan&range=395640:395746 Minimized Testcase (0.63 Kb): https://cluster-fuzz.appspot.com/download/AMIfv95jVUFttQiZjFbL9YWDi59vRLOH86aN_4EyJV2zMvjPMFvuLu5HFcRPHMIsZWMbZ0Fdjl7s_Y-LaDCb-IkU1AcZSKSjghrptxe51vMypmVg9pVqO0cyklCMp1QvkRbd0WcN6ZHQDp5sZbDEn5JNOjrycHo5jg?testcase_id=6218292266270720 Additional requirements: Requires Gestures Issue manually filed by: mmoroz See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reproducing.md for more information.
,
Sep 8 2016
Not a security issue.
,
Sep 15 2016
,
Oct 6 2016
ClusterFuzz has detected this issue as fixed in range 423338:423416. Detailed report: https://cluster-fuzz.appspot.com/testcase?key=6218292266270720 Fuzzer: libfuzzer_harfbuzz_fuzzer Job Type: libfuzzer_chrome_ubsan Platform Id: linux Crash Type: Integer-overflow Crash Address: Crash State: cmp bsearch<unsigned get_coverage Regressed: https://cluster-fuzz.appspot.com/revisions?job=libfuzzer_chrome_ubsan&range=395640:395746 Fixed: https://cluster-fuzz.appspot.com/revisions?job=libfuzzer_chrome_ubsan&range=423338:423416 Minimized Testcase (0.63 Kb): https://cluster-fuzz.appspot.com/download/AMIfv95jVUFttQiZjFbL9YWDi59vRLOH86aN_4EyJV2zMvjPMFvuLu5HFcRPHMIsZWMbZ0Fdjl7s_Y-LaDCb-IkU1AcZSKSjghrptxe51vMypmVg9pVqO0cyklCMp1QvkRbd0WcN6ZHQDp5sZbDEn5JNOjrycHo5jg?testcase_id=6218292266270720 Additional requirements: Requires Gestures See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reproducing.md for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Oct 6 2016
ClusterFuzz testcase is verified as fixed, closing issue. If this is incorrect, please add ClusterFuzz-Wrong label and re-open the issue.
,
Nov 22 2016
Removing EditIssue view restrictions from ClusterFuzz filed bugs. If you believe that this issue should still be restricted, please reapply the label. For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot |
|||||
►
Sign in to add a comment |
|||||
Comment 1 by mmoroz@chromium.org
, Sep 7 2016Components: Blink>Fonts
Owner: behdad@chromium.org