New issue
Advanced search Search tips
Note: Color blocks (like or ) mean that a user may not be available. Tooltip shows the reason.

Issue 716509 link

Starred by 1 user
Status: WontFix
Owner:
ortuno@chromium.org
Last visit > 30 days ago
Closed: Apr 2017
Cc:
ericwilligers@chromium.org
scheib@chromium.org
Components:
EstimatedDays: ----
NextAction: ----
OS: Linux
Pri: ----
Type: Bug-Security



Sign in to add a comment

Use-of-uninitialized-value in device::MockBluetoothGattNotifySession::DoNotify

Project Member Reported by ClusterFuzz, Apr 28 2017 
Detailed report: https://clusterfuzz.com/testcase?key=4512532812529664

Fuzzer: inferno_layout_test_unmodified
Job Type: linux_msan_content_shell_drt
Platform Id: linux

Crash Type: Use-of-uninitialized-value
Crash Address: 
Crash State:
  device::MockBluetoothGattNotifySession::DoNotify
  base::Timer::RunScheduledTask
  base::debug::TaskAnnotator::RunTask
  
Sanitizer: memory (MSAN)

Recommended Security Severity: Medium

Regressed: https://clusterfuzz.com/revisions?job=linux_msan_content_shell_drt&range=396347:396435

Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4512532812529664


Issue filed automatically.

See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.

Comment 1 by elawrence@chromium.org, Apr 28 2017

Components: Blink>Bluetooth
This looks like Test only code?

The only obviously-Bluetooth CL in range is https://chromium.googlesource.com/chromium/src/+/b6374dd8ae9d5d1b4d99bfbebb45e9adddc45a24

Comment 2 by palmer@chromium.org, Apr 28 2017

Cc: scheib@chromium.org ericwilligers@chromium.org
Owner: ortuno@chromium.org
Status: Assigned (was: Untriaged)

Comment 3 by aarya@google.com, Apr 28 2017

Status: WontFix (was: Assigned)
This is a known issue in old mock driver.
Project Member

Comment 4 by sheriffbot@chromium.org, Aug 5 2017

Labels: -Restrict-View-SecurityTeam allpublic
This bug has been closed for more than 14 weeks. Removing security view restrictions.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot

Sign in to add a comment