Issue 657447 link

Starred by 1 user

Issue metadata

Status:	Fixed
Merged:	issue 652222
Owner:	----
Closed:	Nov 2017
Cc:	mac-bugs-priority@chromium.org
Components:	Internals>Plugins>PDF
EstimatedDays:	----
NextAction:	----
OS:	Mac
Pri:	1
Type:	Bug
Stability-Crash Reproducible Stability-Memory-AddressSanitizer Stability-Libfuzzer Clusterfuzz

Crash in __pthread_kill

Project Member Reported by ClusterFuzz, Oct 19 2016

Issue description

Detailed report: https://cluster-fuzz.appspot.com/testcase?key=5078278429999104

Fuzzer: libfuzzer_pdf_codec_tiff_fuzzer
Job Type: mac_libfuzzer_chrome_asan
Platform Id: mac

Crash Type: UNKNOWN
Crash Address: 0x7fff9b0b4f06
Crash State:
  __pthread_kill
  abort
  int pdfium::base::checked_cast<int, unsigned int>
  
Regressed: https://cluster-fuzz.appspot.com/revisions?job=mac_libfuzzer_chrome_asan&range=419764:419788

Minimized Testcase (0.39 Kb): https://cluster-fuzz.appspot.com/download/AMIfv957M8L47ipgqkp4w1neprWVsBLnKfaBFXrbnxD1sKhYvSAG20QAy3eRbPCiOXYypR7iAiQBgf5b6zyH5kQZn7vh6tOQqvR4_tQq0p7sGLUQ4NZi9LhUV6MhIkyoQ3qaOQsi9loGe_C1PMDpQK_bEnK96zt5wQ?testcase_id=5078278429999104

Issue filed automatically.

See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reproducing.md for more information.

Comment 1 by rsesek@chromium.org, Oct 26 2016

Mergedinto: 652222
Status: Duplicate (was: Untriaged)

Project Member

Comment 2 by sheriffbot@chromium.org, Nov 22 2016

Labels: -Restrict-View-EditIssue

Removing EditIssue view restrictions from ClusterFuzz filed bugs. If you believe that this issue should still be restricted, please reapply the label.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot

Comment 3 by mmoroz@google.com, Nov 9 2017

Status: Unconfirmed (was: Duplicate)

Comment 4 by mmoroz@google.com, Nov 9 2017

Components: Internals>Plugins>PDF

Comment 5 by mmoroz@google.com, Nov 9 2017

De-duplicated issue as per https://bugs.chromium.org/p/chromium/issues/detail?id=652222#c18

Project Member

Comment 6 by ClusterFuzz, Nov 9 2017

ClusterFuzz has detected this issue as fixed in range 442365:442383.

Detailed report: https://clusterfuzz.com/testcase?key=5078278429999104

Fuzzer: libFuzzer_pdf_codec_tiff_fuzzer
Job Type: mac_libfuzzer_chrome_asan
Platform Id: mac

Crash Type: UNKNOWN
Crash Address: 0x7fff8c49bf06
Crash State:
  int pdfium::base::checked_cast<int, unsigned int>
  CCodec_TiffContext::LoadFrameInfo
  CCodec_TiffModule::LoadFrameInfo
  
Sanitizer: address (ASAN)

Regressed: https://clusterfuzz.com/revisions?job=mac_libfuzzer_chrome_asan&range=423384:423408
Fixed: https://clusterfuzz.com/revisions?job=mac_libfuzzer_chrome_asan&range=442365:442383

Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=5078278429999104

See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reference.md for more information.

If you suspect that the result above is incorrect, try re-doing that job on the test case report page.

Comment 7 by rharrison@chromium.org, Nov 13 2017

Status: Fixed (was: Unconfirmed)

Confirmed that this is actually fixed.

►

Issue 657447 link

Issue metadata

Crash in __pthread_kill

Issue description

Comment 1 by rsesek@chromium.org, Oct 26 2016

Comment 1 Deleted

Comment 2 by sheriffbot@chromium.org, Nov 22 2016

Comment 2 Deleted

Comment 3 by mmoroz@google.com, Nov 9 2017

Comment 3 Deleted

Comment 4 by mmoroz@google.com, Nov 9 2017

Comment 4 Deleted

Comment 5 by mmoroz@google.com, Nov 9 2017

Comment 5 Deleted

Comment 6 by ClusterFuzz, Nov 9 2017

Comment 6 Deleted

Comment 7 by rharrison@chromium.org, Nov 13 2017

Comment 7 Deleted

Sign in to add a comment