Issue metadata
Sign in to add a comment
|
Use-of-uninitialized-value in EvalSegmentedFn |
||||||||||||||||||||||
Issue descriptionDetailed report: https://cluster-fuzz.appspot.com/testcase?key=5293890036039680 Fuzzer: libfuzzer_pdf_codec_icc_fuzzer Job Type: libfuzzer_chrome_msan Platform Id: linux Crash Type: Use-of-uninitialized-value Crash Address: Crash State: EvalSegmentedFn cmsEvalToneCurveFloat EvaluateCurves Recommended Security Severity: Medium Regressed: https://cluster-fuzz.appspot.com/revisions?job=libfuzzer_chrome_msan&range=420535:420584 Minimized Testcase (0.20 Kb): https://cluster-fuzz.appspot.com/download/AMIfv97wwwxZ8jDeZziIHC6_aYSXg9wpm6I6hv85A90kQhsR8IJSYsnILEcI4fzZPB554baVAuDxqnqBhvhniZ65Kf4-SFjEuy_Zi3yZJOX91PRvuYmfrHKjIjOKYNuUPx53IDuFt5yemRo0k-hBU5JNJloyjK6KTQ?testcase_id=5293890036039680 Issue filed automatically. See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reproducing.md for more information.
,
Nov 20 2016
,
Nov 20 2016
,
Nov 20 2016
,
Nov 20 2016
,
Nov 20 2016
Too late to block M55 stable.
,
Nov 21 2016
Can you take a look at this or send it to someone who can? I'm trying to spread the PDFium bugs around a few of the OWNERS.
,
Nov 21 2016
kcwu@ more fun from the ICC fuzzer. Feel free to assign back if you don't have time to look into it.
,
Nov 23 2016
ClusterFuzz has detected this issue as fixed in range 433980:434071. Detailed report: https://cluster-fuzz.appspot.com/testcase?key=5293890036039680 Fuzzer: libfuzzer_pdf_codec_icc_fuzzer Job Type: libfuzzer_chrome_msan Platform Id: linux Crash Type: Use-of-uninitialized-value Crash Address: Crash State: EvalSegmentedFn cmsEvalToneCurveFloat EvaluateCurves Recommended Security Severity: Medium Regressed: https://cluster-fuzz.appspot.com/revisions?job=libfuzzer_chrome_msan&range=420535:420584 Fixed: https://cluster-fuzz.appspot.com/revisions?job=libfuzzer_chrome_msan&range=433980:434071 Minimized Testcase (0.20 Kb): https://cluster-fuzz.appspot.com/download/AMIfv97wwwxZ8jDeZziIHC6_aYSXg9wpm6I6hv85A90kQhsR8IJSYsnILEcI4fzZPB554baVAuDxqnqBhvhniZ65Kf4-SFjEuy_Zi3yZJOX91PRvuYmfrHKjIjOKYNuUPx53IDuFt5yemRo0k-hBU5JNJloyjK6KTQ?testcase_id=5293890036039680 See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reproducing.md for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Nov 23 2016
ClusterFuzz testcase is verified as fixed, closing issue. If this is incorrect, please add ClusterFuzz-Wrong label and re-open the issue.
,
Nov 23 2016
ClusterFuzz has detected this issue as fixed in range 433980:434071. Detailed report: https://cluster-fuzz.appspot.com/testcase?key=5293890036039680 Fuzzer: libfuzzer_pdf_codec_icc_fuzzer Job Type: libfuzzer_chrome_msan Platform Id: linux Crash Type: Use-of-uninitialized-value Crash Address: Crash State: EvalSegmentedFn cmsEvalToneCurveFloat EvaluateCurves Recommended Security Severity: Medium Regressed: https://cluster-fuzz.appspot.com/revisions?job=libfuzzer_chrome_msan&range=420535:420584 Fixed: https://cluster-fuzz.appspot.com/revisions?job=libfuzzer_chrome_msan&range=433980:434071 Minimized Testcase (0.20 Kb): https://cluster-fuzz.appspot.com/download/AMIfv97wwwxZ8jDeZziIHC6_aYSXg9wpm6I6hv85A90kQhsR8IJSYsnILEcI4fzZPB554baVAuDxqnqBhvhniZ65Kf4-SFjEuy_Zi3yZJOX91PRvuYmfrHKjIjOKYNuUPx53IDuFt5yemRo0k-hBU5JNJloyjK6KTQ?testcase_id=5293890036039680 See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reproducing.md for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Nov 23 2016
https://pdfium.googlesource.com/pdfium/+/89a2d92549d25df6786d53de5671eb141e1fd3e2%5E%21/ has stricter requirement for input colorspace. I don't know whether it really fixed this problem or just hide it.
,
Nov 23 2016
,
Dec 15 2016
,
Dec 16 2016
This bug requires manual review: No test file found in commits. Please contact the milestone owner if you have questions. Owners: amineer@(clank), cmasso@(bling), gkihumba@(cros), bustamante@(desktop) For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot
,
Dec 16 2016
[Automated comment] removing mislabelled Merge-Review-56, Hotlist-Merge-Review
,
Jan 13 2017
Removing RBS since we don't have an identified fix to merge.
,
Jan 17 2017
,
Mar 1 2017
This bug has been closed for more than 14 weeks. Removing security view restrictions. For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot
,
Mar 6 2017
,
Mar 6 2017
|
|||||||||||||||||||||||
►
Sign in to add a comment |
|||||||||||||||||||||||
Comment 1 by sheriffbot@chromium.org
, Nov 20 2016