New issue
Advanced search Search tips
Note: Color blocks (like or ) mean that a user may not be available. Tooltip shows the reason.

Issue 702053 link

Starred by 1 user
Status: Duplicate
Merged: issue 702064
Owner:
tsepez@chromium.org
Closed: Mar 2017
Cc:
msrchandra@chromium.org
Components:
EstimatedDays: ----
NextAction: ----
OS: Linux
Pri: 1
Type: Bug



Sign in to add a comment

Indirect-leak in pdfium::internal::MakeUniqueResult<CPDF_Number>::Scalar pdfium::MakeUnique<CPDF_

Project Member Reported by ClusterFuzz, Mar 16 2017

Comment 1 by msrchandra@chromium.org, Mar 16 2017

Cc: msrchandra@chromium.org
Components: Internals>Plugins>PDF
Labels: Test-Predator-Wrong-CLs M-58
Owner: tsepez@chromium.org
Status: Assigned (was: Untriaged)
Predator and CL did not provide any possible suspects.
Using Code Search for the file, "ptr_util.h" assigning to the concern owner.
Suspecting Commit#
https://pdfium.googlesource.com/pdfium.git/+/36eb4bdcae719cf33c536ff72ac000482aed8382

@tsepez -- Could you please look into the issue, kindly re-assign if this is not related to your changes.
Thank You.

Comment 2 by tsepez@chromium.org, Mar 17 2017

Mergedinto: 702064
Status: Duplicate (was: Assigned)
Presumably same root cause as 702064, CF will re-open if not the case.
Project Member

Comment 3 by ClusterFuzz, Mar 21 2017 

ClusterFuzz has detected this issue as fixed in range 457505:457874.

Detailed report: https://clusterfuzz.com/testcase?key=5658774582067200

Fuzzer: libfuzzer_pdfium_fuzzer
Job Type: libfuzzer_chrome_asan
Platform Id: linux

Crash Type: Indirect-leak
Crash Address: 
Crash State:
  pdfium::internal::MakeUniqueResult<CPDF_Number>::Scalar pdfium::MakeUnique<CPDF_
  CPDF_SyntaxParser::GetObject
  CPDF_SyntaxParser::GetObject
  
Sanitizer: address (ASAN)

Regressed: https://clusterfuzz.com/revisions?job=libfuzzer_chrome_asan&range=431756:431777
Fixed: https://clusterfuzz.com/revisions?job=libfuzzer_chrome_asan&range=457505:457874

Reproducer Testcase: https://clusterfuzz.com/download/AMIfv94NL68sOQW9EsKXYA3rie5yNjKLX3w0jUQ17E9xenU1O2Yen5PDOJc_qazaDSm5OOES3ILA2xZu1MOs_ax7KERporXtf973I5L_2TfytXYhjgSAFLdL-9MoaZeeh6zJ3kmpZ1celyF9yG7c8S_QKxDbuJsTFYCbcwzqmBsoVLUYrZ-ceGUvorKRpgBDdzZ4o1sbgNWzk6nRawZVaP4G_LuaqMUI9s_n982W3QWRzwyrbrTQNXmuPUHZQPBJ1y1-HMrlgJLgt4Cg3nSSCAGG8FeOIwBiJTwhvet69rEDExx1l22ThMFzO9J1SU5msssx683gY6KKzQVOvjoJas2DtENs6eQtIXH8bR5ubFtY8dqcF_7hRuU?testcase_id=5658774582067200


See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reproducing.md for more information.

If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
Project Member

Comment 4 by ClusterFuzz, Mar 21 2017 

ClusterFuzz has detected this issue as fixed in range 457505:457874.

Detailed report: https://clusterfuzz.com/testcase?key=5658774582067200

Fuzzer: libfuzzer_pdfium_fuzzer
Job Type: libfuzzer_chrome_asan
Platform Id: linux

Crash Type: Indirect-leak
Crash Address: 
Crash State:
  pdfium::internal::MakeUniqueResult<CPDF_Number>::Scalar pdfium::MakeUnique<CPDF_
  CPDF_SyntaxParser::GetObject
  CPDF_SyntaxParser::GetObject
  
Sanitizer: address (ASAN)

Regressed: https://clusterfuzz.com/revisions?job=libfuzzer_chrome_asan&range=431756:431777
Fixed: https://clusterfuzz.com/revisions?job=libfuzzer_chrome_asan&range=457505:457874

Reproducer Testcase: https://clusterfuzz.com/download/AMIfv94NL68sOQW9EsKXYA3rie5yNjKLX3w0jUQ17E9xenU1O2Yen5PDOJc_qazaDSm5OOES3ILA2xZu1MOs_ax7KERporXtf973I5L_2TfytXYhjgSAFLdL-9MoaZeeh6zJ3kmpZ1celyF9yG7c8S_QKxDbuJsTFYCbcwzqmBsoVLUYrZ-ceGUvorKRpgBDdzZ4o1sbgNWzk6nRawZVaP4G_LuaqMUI9s_n982W3QWRzwyrbrTQNXmuPUHZQPBJ1y1-HMrlgJLgt4Cg3nSSCAGG8FeOIwBiJTwhvet69rEDExx1l22ThMFzO9J1SU5msssx683gY6KKzQVOvjoJas2DtENs6eQtIXH8bR5ubFtY8dqcF_7hRuU?testcase_id=5658774582067200


See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reproducing.md for more information.

If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
Project Member

Comment 5 by ClusterFuzz, Mar 21 2017 

ClusterFuzz has detected this issue as fixed in range 457505:457874.

Detailed report: https://clusterfuzz.com/testcase?key=5658774582067200

Fuzzer: libfuzzer_pdfium_fuzzer
Job Type: libfuzzer_chrome_asan
Platform Id: linux

Crash Type: Indirect-leak
Crash Address: 
Crash State:
  pdfium::internal::MakeUniqueResult<CPDF_Number>::Scalar pdfium::MakeUnique<CPDF_
  CPDF_SyntaxParser::GetObject
  CPDF_SyntaxParser::GetObject
  
Sanitizer: address (ASAN)

Regressed: https://clusterfuzz.com/revisions?job=libfuzzer_chrome_asan&range=431756:431777
Fixed: https://clusterfuzz.com/revisions?job=libfuzzer_chrome_asan&range=457505:457874

Reproducer Testcase: https://clusterfuzz.com/download/AMIfv94NL68sOQW9EsKXYA3rie5yNjKLX3w0jUQ17E9xenU1O2Yen5PDOJc_qazaDSm5OOES3ILA2xZu1MOs_ax7KERporXtf973I5L_2TfytXYhjgSAFLdL-9MoaZeeh6zJ3kmpZ1celyF9yG7c8S_QKxDbuJsTFYCbcwzqmBsoVLUYrZ-ceGUvorKRpgBDdzZ4o1sbgNWzk6nRawZVaP4G_LuaqMUI9s_n982W3QWRzwyrbrTQNXmuPUHZQPBJ1y1-HMrlgJLgt4Cg3nSSCAGG8FeOIwBiJTwhvet69rEDExx1l22ThMFzO9J1SU5msssx683gY6KKzQVOvjoJas2DtENs6eQtIXH8bR5ubFtY8dqcF_7hRuU?testcase_id=5658774582067200


See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reproducing.md for more information.

If you suspect that the result above is incorrect, try re-doing that job on the test case report page.

Sign in to add a comment