Issue metadata
Sign in to add a comment
|
Heap-use-after-free in begin |
||||||||||||||||||||||
Issue descriptionDetailed report: https://cluster-fuzz.appspot.com/testcase?key=5817226486874112 Fuzzer: ochang_domfuzzer Job Type: linux_asan_content_shell_drt Platform Id: linux Crash Type: Heap-use-after-free READ 8 Crash Address: 0x61f000036498 Crash State: begin device::MockBluetoothGattNotifySession::DoNotify Run Sanitizer: address (ASAN) Recommended Security Severity: High Regressed: https://cluster-fuzz.appspot.com/revisions?job=linux_asan_content_shell_drt&range=424153:424757 Reproducer Testcase: https://cluster-fuzz.appspot.com/download/AMIfv96DOmqp_EPNhog6CI1ulOqtTfSy61c0bt9TzKiyVkWd6viv1sBiMwHfO6xSkmf5QTU7LrVloLhc-mYySNUR3l5K3e0cRC46vejgMJWMFzGRnaXfG4BYl-oQLvhSuvKX665CCl3htyRTelYpRGxR0qxaJj3tvJg5VmFdX809vU8mpAksxeaecZYBTVOcTs907N5Zmgvi-h8eA2U2-ujm2TbS_blp5fc84y6u1dewosMG9kUvvJeb8JTDIAhOW1kK-H5Snd2WxQDCFDxkJ8YnbGysOGLiWE6vdXtpA2obIbVhZzNtVfsRb7q0jdZydH1vh_ItE7qyr1Dj85X1Ai1eXOEtfi4Zf6BGtPnvNao5QZp0W_7JyqdHQZR5YzkWZ3UxmlIrBww5ddxl-AFmCMnbznh7p_8vqw?testcase_id=5817226486874112 Issue filed automatically. See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.
,
Feb 12 2017
,
Feb 12 2017
ortuno@, could you take a look at this one? Since your CL (https://chromium.googlesource.com/chromium/src/+/ef3e20882f2ca4cfbc196ca0f075a97b578c9f97) seems in the blame list. Please feel free to reassign owner. Thanks!
,
Feb 13 2017
This is a test only problem that uses a function that was removed a while ago. See Issue 683669 and Issue 668558
,
Jun 2 2017
This bug has been closed for more than 14 weeks. Removing security view restrictions. For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot |
|||||||||||||||||||||||
►
Sign in to add a comment |
|||||||||||||||||||||||
Comment 1 by sheriffbot@chromium.org
, Feb 12 2017