Issue 694355 link

Starred by 1 user

Issue metadata

Status:	Verified
Owner:	█ dominicc@chromium.org Last visit > 30 days ago
Closed:	Jun 2017
Cc:	█ msrchandra@chromium.org
EstimatedDays:	----
NextAction:	----
OS:	Linux
Pri:	3
Type:	Bug
Stability-Crash Reproducible Stability-Memory-AddressSanitizer Stability-Memory-LeakSanitizer Stability-Libfuzzer Clusterfuzz M-58 ClusterFuzz-Verified Test-Predator-Wrong-CLs

Indirect-leak in xmlNewText

Project Member Reported by ClusterFuzz, Feb 21 2017

Issue description

Detailed report: https://cluster-fuzz.appspot.com/testcase?key=6653740003360768

Fuzzer: libfuzzer_libxml_xml_read_memory_fuzzer
Job Type: libfuzzer_chrome_asan
Platform Id: linux

Crash Type: Indirect-leak
Crash Address: 
Crash State:
  xmlNewText
  xmlNewDocText
  xmlStringGetNodeList
  
Sanitizer: address (ASAN)

Regressed: https://cluster-fuzz.appspot.com/revisions?job=libfuzzer_chrome_asan&range=450688:450717

Reproducer Testcase: https://cluster-fuzz.appspot.com/download/AMIfv95M3VPw8x_oNQqCZS8ItqiLzQJ_v9XbFe7_db2FPP2dvYTBqFILbAs1LVgVxjgoarysz-fvupy0IR8dkqGHzOgww-q7gY_Igivnh7rh9t1mwOfRllU4O8Z8uPn-un9CUh7Y7DNvhYjCHcJs6XEkCExemtYwHyXOxWF1joK_6MlkX_wD_7YaF-wWnDAqqxldyvK_Ti28KzGf94RMohqhQ6L4pIcdgCpznmHY3PANhj3UV1XmMoflMwfk02WNj_oRQkoM4QvjQ8UjnjNHUQ1vcJbtudiydZNngb-pbt5m8_uMAkdCJn4r37nWin3PfJimPFIKcns1iGZ5O-RLmJyOzQx-TpP0h8_bTbPFZ2mAU2GKyN2wo9hqCQ5I-BgbhV0JWdPE88-lxHjf3Aj4jF-wAckcvMyfjA?testcase_id=6653740003360768


Issue filed automatically.

See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reproducing.md for more information.

Comment 1 by msrchandra@chromium.org, Feb 21 2017

Cc: msrchandra@chromium.org
Labels: Test-Predator-Wrong-CLs M-58
Owner: dominicc@chromium.org
Status: Assigned (was: Untriaged)

Predator, CL and Code Search did not provide any possible suspects.
Assigning to the concern owner who previously worked on similar issues.
dominicc -- Could you please look into the issue, kindly re-assign if this is not related to your changes.
Thank You.

Comment 2 by dominicc@chromium.org, Feb 22 2017

Labels: -Pri-1 Pri-3

Thank you.

For now, fixing libxml leaks are not a priority for Blink.

Project Member

Comment 3 by ClusterFuzz, Jun 21 2017

ClusterFuzz has detected this issue as fixed in range 480737:480767.

Detailed report: https://clusterfuzz.com/testcase?key=6653740003360768

Fuzzer: libFuzzer_libxml_xml_read_memory_fuzzer
Job Type: libfuzzer_chrome_asan
Platform Id: linux

Crash Type: Indirect-leak
Crash Address: 
Crash State:
  xmlNewText
  xmlNewDocText
  xmlStringGetNodeList
  
Sanitizer: address (ASAN)

Regressed: https://clusterfuzz.com/revisions?job=libfuzzer_chrome_asan&range=450688:450717
Fixed: https://clusterfuzz.com/revisions?job=libfuzzer_chrome_asan&range=480737:480767

Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=6653740003360768


See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reproducing.md for more information.

If you suspect that the result above is incorrect, try re-doing that job on the test case report page.

Project Member

Comment 4 by ClusterFuzz, Jun 21 2017

Labels: ClusterFuzz-Verified
Status: Verified (was: Assigned)

ClusterFuzz testcase 6653740003360768 is verified as fixed, so closing issue.

If this is incorrect, please add ClusterFuzz-Wrong label and re-open the issue.

►

Issue 694355 link

Issue metadata

Indirect-leak in xmlNewText

Issue description

Comment 1 by msrchandra@chromium.org, Feb 21 2017

Comment 1 Deleted

Comment 2 by dominicc@chromium.org, Feb 22 2017

Comment 2 Deleted

Comment 3 by ClusterFuzz, Jun 21 2017

Comment 3 Deleted

Comment 4 by ClusterFuzz, Jun 21 2017

Comment 4 Deleted

Sign in to add a comment