Issue 689327 link

Starred by 1 user

Issue metadata

Status:	Verified
Owner:	scottmg@chromium.org
Closed:	Jun 2017
Cc:	nyerramilli@chromium.org █ dominicc@chromium.org
EstimatedDays:	----
NextAction:	----
OS:	Linux
Pri:	1
Type:	Bug
Stability-Crash Reproducible Stability-Memory-AddressSanitizer Stability-Memory-LeakSanitizer Stability-Libfuzzer Clusterfuzz M-58 ClusterFuzz-Verified Test-Predator-Wrong-CLs

Indirect-leak in xmlNewDocElementContent

Project Member Reported by ClusterFuzz, Feb 7 2017

Issue description

Detailed report: https://cluster-fuzz.appspot.com/testcase?key=5471909975425024

Fuzzer: libfuzzer_libxml_xml_read_memory_fuzzer
Job Type: libfuzzer_chrome_asan_debug
Platform Id: linux

Crash Type: Indirect-leak
Crash Address: 
Crash State:
  xmlNewDocElementContent
  xmlParseElementMixedContentDecl
  xmlParseElementContentDecl
  
Sanitizer: address (ASAN)

Regressed: https://cluster-fuzz.appspot.com/revisions?job=libfuzzer_chrome_asan_debug&range=414961:414962

Reproducer Testcase: https://cluster-fuzz.appspot.com/download/AMIfv95ZXFVbknRDim6QEjiLfmQAom_U7YJRi-pid3E2BRkoFmMpLUb-bA4tgAOMpZRHQRa5mw_zpCaxiebUdTZoE3IlIqAMTEwToOHrdE3mXceXur_sSwP5z_uZw5pIFWgHVVs76bEpEuSxhSuC_tmlF_ZD-K3DhKuEhFupJg9PDPS7DXrrv1W8EEW_8y4HLTDBh70MCR9-SIy3MGvKwW1zCJYCtafSonuXkNycYR_bX7U2fkPsAtKdWKQ14DKCj11mWyHEBJO4-njR-ThTTuqB2puhsBHS7NdFK_4jjHl_VXaN829wGyz9iLblOlpLps7RTwonjA6uH2Vq3vc5RM9JPPemEUw4fo0TjQzOcNEekO2omBrQhKL3sBiE4o1XpF98dYEn4amZTyBC2ZmlSfKIU6Iyxrw8pQ?testcase_id=5471909975425024


Issue filed automatically.

See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reproducing.md for more information.

Comment 1 by nyerramilli@chromium.org, Feb 7 2017

Cc: nyerramilli@chromium.org
Labels: Test-Predator-Wrong-CLs M-58
Owner: scottmg@chromium.org
Status: Assigned (was: Untriaged)

Findit cannot find any culprit results.

assigning to /src/third_party/libxml/OWNERS, requesting to check the issue and help.

Comment 2 by scottmg@chromium.org, Feb 7 2017

Cc: dominicc@chromium.org

Project Member

Comment 3 by ClusterFuzz, Jun 21 2017

ClusterFuzz has detected this issue as fixed in range 480710:480765.

Detailed report: https://clusterfuzz.com/testcase?key=5471909975425024

Fuzzer: libFuzzer_libxml_xml_read_memory_fuzzer
Job Type: libfuzzer_chrome_asan_debug
Platform Id: linux

Crash Type: Indirect-leak
Crash Address: 
Crash State:
  xmlNewDocElementContent
  xmlParseElementMixedContentDecl
  xmlParseElementContentDecl
  
Sanitizer: address (ASAN)

Regressed: https://clusterfuzz.com/revisions?job=libfuzzer_chrome_asan_debug&range=414961:414962
Fixed: https://clusterfuzz.com/revisions?job=libfuzzer_chrome_asan_debug&range=480710:480765

Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=5471909975425024


See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reproducing.md for more information.

If you suspect that the result above is incorrect, try re-doing that job on the test case report page.

Project Member

Comment 4 by ClusterFuzz, Jun 21 2017

Labels: ClusterFuzz-Verified
Status: Verified (was: Assigned)

ClusterFuzz testcase 5471909975425024 is verified as fixed, so closing issue.

If this is incorrect, please add ClusterFuzz-Wrong label and re-open the issue.

►

Issue 689327 link

Issue metadata

Indirect-leak in xmlNewDocElementContent

Issue description

Comment 1 by nyerramilli@chromium.org, Feb 7 2017

Comment 1 Deleted

Comment 2 by scottmg@chromium.org, Feb 7 2017

Comment 2 Deleted

Comment 3 by ClusterFuzz, Jun 21 2017

Comment 3 Deleted

Comment 4 by ClusterFuzz, Jun 21 2017

Comment 4 Deleted

Sign in to add a comment