Direct-leak in addBinding |
|||||
Issue descriptionDetailed report: https://cluster-fuzz.appspot.com/testcase?key=6134456689885184 Fuzzer: libfuzzer_expat_xml_parse_fuzzer Job Type: libfuzzer_chrome_asan Platform Id: linux Crash Type: Direct-leak Crash Address: Crash State: addBinding storeAtts doContent Regressed: https://cluster-fuzz.appspot.com/revisions?job=libfuzzer_chrome_asan&range=411420:411575 Minimized Testcase (0.03 Kb): Download: https://cluster-fuzz.appspot.com/download/AMIfv97-MpnT2kHyt2FKFEwc-_HC8-ciEgkZErbv_LySlqXaLYTEaDxFAxpUmYALY-W5hbnL-rxY4ElNltfdQoEYFMTkMhYOQ_897wXIpKsmYbjfdWijMRFAbaA-v3uKCkB90l5mXHeLAzF07lfgjgcJnBQKn1chQw?testcase_id=6134456689885184 <v xmlUs:W='W�' xmlns:o=': %a'/>:<v Issue filed automatically. See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reproducing.md for more information.
,
Mar 3 2017
nick@, could you please help us to find a right owner if possible? Thank you!
,
Mar 22 2017
,
Apr 26 2017
Good new here: the bug has been fixed in the upstream: - https://github.com/libexpat/libexpat/commit/16f87daae5a16132e479e4f71862128c7a915c73 - https://github.com/libexpat/libexpat/commit/b47dbc9745932c160893d433220e462bd605f8cd Thus, rolling out a new version of expat would be enough to fix this in Chromium.
,
Jul 30 2017
,
Jul 30 2017
Detailed report: https://clusterfuzz.com/testcase?key=4518022424559616 Fuzzer: expat_xml_parse_fuzzer Job Type: libfuzzer_chrome_asan Crash Type: Direct-leak Crash Address: Crash State: addBinding storeAtts doContent Sanitizer: address (ASAN) Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4518022424559616 See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reproducing.md for more information.
,
Jul 31 2017
Detailed report: https://clusterfuzz.com/testcase?key=4518022424559616 Fuzzer: expat_xml_parse_fuzzer Job Type: libfuzzer_chrome_asan Crash Type: Direct-leak Crash Address: Crash State: addBinding storeAtts doContent Sanitizer: address (ASAN) Regressed: https://clusterfuzz.com/revisions?job=libfuzzer_chrome_asan&range=411420:411575 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4518022424559616 See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reproducing.md for more information.
,
Sep 20 2017
ClusterFuzz has detected this issue as fixed in range 503023:503059. Detailed report: https://clusterfuzz.com/testcase?key=4518022424559616 Fuzzer: expat_xml_parse_fuzzer Job Type: libfuzzer_chrome_asan Crash Type: Direct-leak Crash Address: Crash State: addBinding storeAtts doContent Sanitizer: address (ASAN) Regressed: https://clusterfuzz.com/revisions?job=libfuzzer_chrome_asan&range=411420:411575 Fixed: https://clusterfuzz.com/revisions?job=libfuzzer_chrome_asan&range=503023:503059 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4518022424559616 See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reproducing.md for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Sep 21 2017
ClusterFuzz testcase 4518022424559616 is verified as fixed, so closing issue as verified. If this is incorrect, please add ClusterFuzz-Wrong label and re-open the issue. |
|||||
►
Sign in to add a comment |
|||||
Comment 1 by mummare...@chromium.org
, Dec 29 2016