ASSERT: pBuffer && iLength > 0 |
|||||
Issue descriptionDetailed report: https://clusterfuzz.com/testcase?key=5865013129773056 Fuzzer: libfuzzer_pdf_xml_fuzzer Job Type: libfuzzer_chrome_asan_debug Platform Id: linux Crash Type: ASSERT Crash Address: Crash State: pBuffer && iLength > 0 UTF16ToWChar CFX_SeekableStreamProxy::ReadString Sanitizer: address (ASAN) Regressed: https://clusterfuzz.com/revisions?job=libfuzzer_chrome_asan_debug&range=465929:466779 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=5865013129773056 Issue filed automatically. See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reproducing.md for more information.
,
May 8 2017
,
May 8 2017
,
May 9 2017
BTW, CF opened/closed this as bug 716953 previously.
,
Aug 21 2017
https://pdfium-review.googlesource.com/11570, maybe
,
Aug 22 2017
The following revision refers to this bug: https://pdfium.googlesource.com/pdfium/+/39fa751f84bc226c22d65c2fc5e7d3615dfe5ddb commit 39fa751f84bc226c22d65c2fc5e7d3615dfe5ddb Author: Lei Zhang <thestig@chromium.org> Date: Tue Aug 22 13:06:33 2017 Avoid an ASSERT failure in CFX_SeekableStreamProxy. BUG= chromium:718503 Change-Id: I6ff332c2ab5320d1b5f39a9aa1564e7e3e243cbe Reviewed-on: https://pdfium-review.googlesource.com/11570 Commit-Queue: dsinclair <dsinclair@chromium.org> Reviewed-by: dsinclair <dsinclair@chromium.org> [modify] https://crrev.com/39fa751f84bc226c22d65c2fc5e7d3615dfe5ddb/core/fxcrt/cfx_seekablestreamproxy.cpp
,
Aug 22 2017
The following revision refers to this bug: https://chromium.googlesource.com/chromium/src.git/+/d1b4461fda2d4c83e242cb721036112a10a8cd4f commit d1b4461fda2d4c83e242cb721036112a10a8cd4f Author: pdfium-deps-roller@chromium.org <pdfium-deps-roller@chromium.org> Date: Tue Aug 22 16:20:32 2017 Roll src/third_party/pdfium/ bde6f35d2..39fa751f8 (1 commit) https://pdfium.googlesource.com/pdfium.git/+log/bde6f35d285b..39fa751f84bc $ git log bde6f35d2..39fa751f8 --date=short --no-merges --format='%ad %ae %s' 2017-08-21 thestig Avoid an ASSERT failure in CFX_SeekableStreamProxy. Created with: roll-dep src/third_party/pdfium BUG= 718503 Documentation for the AutoRoller is here: https://skia.googlesource.com/buildbot/+/master/autoroll/README.md If the roll is causing failures, see: http://www.chromium.org/developers/tree-sheriffs/sheriff-details-chromium#TOC-Failures-due-to-DEPS-rolls TBR=dsinclair@chromium.org Change-Id: I9c5c323bfeddcd9be2a8b037d3b7e5599dd1ea61 Reviewed-on: https://chromium-review.googlesource.com/626337 Reviewed-by: <pdfium-deps-roller@chromium.org> Commit-Queue: <pdfium-deps-roller@chromium.org> Cr-Commit-Position: refs/heads/master@{#496323} [modify] https://crrev.com/d1b4461fda2d4c83e242cb721036112a10a8cd4f/DEPS
,
Aug 22 2017
,
Aug 23 2017
ClusterFuzz has detected this issue as fixed in range 496288:496324. Detailed report: https://clusterfuzz.com/testcase?key=5865013129773056 Fuzzer: libFuzzer_pdf_xml_fuzzer Job Type: libfuzzer_chrome_asan_debug Platform Id: linux Crash Type: ASSERT Crash Address: Crash State: pBuffer && iLength > 0 UTF16ToWChar CFX_SeekableStreamProxy::ReadString Sanitizer: address (ASAN) Regressed: https://clusterfuzz.com/revisions?job=libfuzzer_chrome_asan_debug&range=465929:466779 Fixed: https://clusterfuzz.com/revisions?job=libfuzzer_chrome_asan_debug&range=496288:496324 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=5865013129773056 See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reproducing.md for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Aug 23 2017
ClusterFuzz testcase 5865013129773056 is verified as fixed, so closing issue as verified. If this is incorrect, please add ClusterFuzz-Wrong label and re-open the issue. |
|||||
►
Sign in to add a comment |
|||||
Comment 1 by msrchandra@chromium.org
, May 5 2017Labels: M-60 Test-Predator-Correct-CLs
Owner: dsinclair@chromium.org
Status: Assigned (was: Untriaged)