New issue
Advanced search Search tips

Issue 704569 link

Starred by 1 user
Status: Duplicate
Merged: issue 529146
Owner: ----
Closed: Mar 2017
Components:
EstimatedDays: ----
NextAction: ----
OS: Linux
Pri: 1
Type: Bug



Sign in to add a comment

Fatal error in v8::Isolate::Dispose

Project Member Reported by ClusterFuzz, Mar 23 2017

Comment 1 by mummare...@chromium.org, Mar 23 2017

Components: Blink>JavaScript
Labels: Test-Predator-Wrong M-58

Comment 2 by mstarzinger@chromium.org, Mar 24 2017

Mergedinto: 529146
Status: Duplicate (was: Untriaged)
Project Member

Comment 3 by ClusterFuzz, May 20 2017 

ClusterFuzz has detected this issue as fixed in range 473053:473098.

Detailed report: https://clusterfuzz.com/testcase?key=5218382627733504

Fuzzer: libfuzzer_v8_regexp_parser_fuzzer
Job Type: libfuzzer_chrome_ubsan
Platform Id: linux

Crash Type: Fatal error
Crash Address: 
Crash State:
  v8::Isolate::Dispose
  
Sanitizer: undefined (UBSAN)

Regressed: https://clusterfuzz.com/revisions?job=libfuzzer_chrome_ubsan&range=405489:405645
Fixed: https://clusterfuzz.com/revisions?job=libfuzzer_chrome_ubsan&range=473053:473098

Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=5218382627733504


See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reproducing.md for more information.

If you suspect that the result above is incorrect, try re-doing that job on the test case report page.

Sign in to add a comment