Issue metadata
Sign in to add a comment
|
Heap-buffer-overflow in _get_bitmap_surface |
||||||||||||||||||||||
Issue descriptionDetailed report: https://cluster-fuzz.appspot.com/testcase?key=6505068310560768 Fuzzer: attekett_dom_fuzzer Job Type: linux_lsan_chrome_mp Platform Id: linux Crash Type: Heap-buffer-overflow READ 4 Crash Address: 0x6040012d447c Crash State: _get_bitmap_surface Recommended Security Severity: Low Regressed: https://cluster-fuzz.appspot.com/revisions?job=linux_lsan_chrome_mp&range=297214:297254 Unminimized Testcase: https://cluster-fuzz.appspot.com/download/AMIfv96jhb9aMKdVAAqHVNnS8uSUddT0KPB4BvohMFMibm_-3lznSDTaeAzA8ul3ohLPwbsV1eARHOZlygF_GMhkb3Dc7-T6bxhitxR8w5B_gBTxezLrYLP7uMW8y7nnQ26hc4MKl3r7Xs3OHlqMNCVIHBXLZZFxV71-QTPrITIHDxzg_rme4jk?testcase_id=6505068310560768 Additional requirements: Requires Gestures Issue filed automatically. See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.
,
Oct 24 2016
This may just be an issue with the version of freetype we're using for testing. I'll confirm soon.
,
Oct 24 2016
,
Dec 10 2016
ClusterFuzz testcase 6505068310560768 is flaky and no longer reproduces, so closing issue. If this is incorrect, please add ClusterFuzz-Wrong label and re-open the issue.
,
Dec 10 2016
,
Mar 18 2017
This bug has been closed for more than 14 weeks. Removing security view restrictions. For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot |
|||||||||||||||||||||||
►
Sign in to add a comment |
|||||||||||||||||||||||
Comment 1 by sheriffbot@chromium.org
, Oct 18 2016