bmp_ptr->width > 0 |
|||||
Issue descriptionDetailed report: https://cluster-fuzz.appspot.com/testcase?key=6094844243214336 Fuzzer: libfuzzer_pdf_codec_bmp_fuzzer Job Type: libfuzzer_chrome_asan_debug Platform Id: linux Crash Type: ASSERT Crash Address: Crash State: bmp_ptr->width > 0 bmp_read_header CCodec_BmpModule::ReadHeader Regressed: https://cluster-fuzz.appspot.com/revisions?job=libfuzzer_chrome_asan_debug&range=400732:400874 Minimized Testcase (0.03 Kb): https://cluster-fuzz.appspot.com/download/AMIfv9731RGT27w3cyyQss5kgXmEYzohDmp9oi3AS5qhrZDdCXtb5CUyQ6aB2xp5RRbG6Bo9lW3PiDFTh3i4ctunFM8Ypp7qW5C6ffTYfCyCcfkNCgIxdw68n37eg5wnJhxECmUAUzZfHqkXg_eVY4KBXOCiId9Aqg?testcase_id=6094844243214336 Issue filed automatically. See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reproducing.md for more information.
,
Oct 31 2016
,
Nov 22 2016
Removing EditIssue view restrictions from ClusterFuzz filed bugs. If you believe that this issue should still be restricted, please reapply the label. For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot
,
Nov 28 2016
,
Nov 28 2016
,
Nov 28 2016
The following revision refers to this bug: https://chromium.googlesource.com/chromium/src.git/+/aef7772a047b3020d80b34edd126467bde196c22 commit aef7772a047b3020d80b34edd126467bde196c22 Author: pdfium-deps-roller <pdfium-deps-roller@chromium.org> Date: Mon Nov 28 18:37:36 2016 Roll src/third_party/pdfium/ 0354ccf37..e42132772 (1 commit). https://pdfium.googlesource.com/pdfium.git/+log/0354ccf37f05..e421327725da $ git log 0354ccf37..e42132772 --date=short --no-merges --format='%ad %ae %s' 2016-11-28 npm Replace ASSERT with error return in bmp_read_header BUG= 659497 Documentation for the AutoRoller is here: https://skia.googlesource.com/buildbot/+/master/autoroll/README.md If the roll is causing failures, see: http://www.chromium.org/developers/tree-sheriffs/sheriff-details-chromium#TOC-Failures-due-to-DEPS-rolls TBR=dsinclair@chromium.org Review-Url: https://codereview.chromium.org/2530373004 Cr-Commit-Position: refs/heads/master@{#434703} [modify] https://crrev.com/aef7772a047b3020d80b34edd126467bde196c22/DEPS
,
Nov 29 2016
ClusterFuzz has detected this issue as fixed in range 434669:434721. Detailed report: https://cluster-fuzz.appspot.com/testcase?key=6094844243214336 Fuzzer: libfuzzer_pdf_codec_bmp_fuzzer Job Type: libfuzzer_chrome_asan_debug Platform Id: linux Crash Type: ASSERT Crash Address: Crash State: bmp_ptr->width > 0 bmp_read_header CCodec_BmpModule::ReadHeader Regressed: https://cluster-fuzz.appspot.com/revisions?job=libfuzzer_chrome_asan_debug&range=400732:400874 Fixed: https://cluster-fuzz.appspot.com/revisions?job=libfuzzer_chrome_asan_debug&range=434669:434721 Minimized Testcase (0.03 Kb): https://cluster-fuzz.appspot.com/download/AMIfv9731RGT27w3cyyQss5kgXmEYzohDmp9oi3AS5qhrZDdCXtb5CUyQ6aB2xp5RRbG6Bo9lW3PiDFTh3i4ctunFM8Ypp7qW5C6ffTYfCyCcfkNCgIxdw68n37eg5wnJhxECmUAUzZfHqkXg_eVY4KBXOCiId9Aqg?testcase_id=6094844243214336 See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reproducing.md for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page. |
|||||
►
Sign in to add a comment |
|||||
Comment 1 by mmohammad@chromium.org
, Oct 26 2016Status: Assigned (was: Untriaged)