Stack-overflow in blink::LayoutBlockFlow::computeInlinePreferredLogicalWidths |
||
Issue descriptionDetailed report: https://clusterfuzz.com/testcase?key=4715205700616192 Fuzzer: inferno_layout_test_unmodified Job Type: mac_asan_chrome Platform Id: mac Crash Type: Stack-overflow Crash Address: 0x7fff53aebf00 Crash State: blink::LayoutBlockFlow::computeInlinePreferredLogicalWidths blink::LayoutBlock::computeIntrinsicLogicalWidths blink::LayoutBlock::computePreferredLogicalWidths Sanitizer: address (ASAN) Regressed: https://clusterfuzz.com/revisions?job=mac_asan_chrome&range=423441:423477 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4715205700616192 Issue filed automatically. See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.
,
May 1 2017
Stack overflow for deeply nested content. Not a security issue, not seen in the wild. WontFix.
,
May 27 2017
ClusterFuzz has detected this issue as fixed in range 474922:474938. Detailed report: https://clusterfuzz.com/testcase?key=4715205700616192 Fuzzer: inferno_layout_test_unmodified Job Type: mac_asan_chrome Platform Id: mac Crash Type: Stack-overflow Crash Address: 0x7fff53aebf00 Crash State: blink::LayoutBlockFlow::computeInlinePreferredLogicalWidths blink::LayoutBlock::computeIntrinsicLogicalWidths blink::LayoutBlock::computePreferredLogicalWidths Sanitizer: address (ASAN) Regressed: https://clusterfuzz.com/revisions?job=mac_asan_chrome&range=423441:423477 Fixed: https://clusterfuzz.com/revisions?job=mac_asan_chrome&range=474922:474938 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4715205700616192 See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page. |
||
►
Sign in to add a comment |
||
Comment 1 by shrike@chromium.org
, Apr 28 2017