New issue
Advanced search Search tips

Issue 716739 link

Starred by 1 user
Status: WontFix
Owner: ----
Closed: May 2017
Components:
EstimatedDays: ----
NextAction: ----
OS: Linux , Android , Windows , Chrome , Mac
Pri: 1
Type: Bug



Sign in to add a comment

Invalid-address in (unknown)

Project Member Reported by ClusterFuzz, Apr 29 2017 
Detailed report: https://clusterfuzz.com/testcase?key=4612504224530432

Fuzzer: inferno_layout_test_unmodified
Job Type: windows_syzyasan_content_shell
Platform Id: windows

Crash Type: Invalid-address READ 1
Crash Address: 0x00000008
Crash State:
  (unknown)
  
Memory Tool: SYZYASAN

Regressed: https://clusterfuzz.com/revisions?job=windows_syzyasan_content_shell&range=465765:465806

Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4612504224530432


Issue filed automatically.

See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.
Project Member

Comment 1 by sheriffbot@chromium.org, Apr 29 2017

Labels: M-60
Project Member

Comment 2 by sheriffbot@chromium.org, Apr 29 2017

Labels: ReleaseBlock-Beta
This issue is a security regression. If you are not able to fix this quickly, please revert the change that introduced it.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot
Project Member

Comment 3 by sheriffbot@chromium.org, Apr 29 2017

Labels: Pri-1

Comment 4 by mbarbe...@chromium.org, May 1 2017

Components: Blink
Labels: -Type-Bug-Security -ReleaseBlock-Beta -Restrict-View-SecurityTeam -Security_Impact-Head -Security_Severity-High OS-Android OS-Chrome OS-Linux OS-Mac Type-Bug
Not a security bug, but it does look like there was a regression in ClusterFuzz that caused us to start classifying some SyzyASan bugs incorrectly. Filed issue 717087 to track the CF bug.

Comment 5 by tkent@chromium.org, May 5 2017

Status: WontFix (was: Untriaged)
Using internals.shadowRoot() -> WontFix.

Sign in to add a comment