New issue
Advanced search Search tips
Note: Color blocks (like or ) mean that a user may not be available. Tooltip shows the reason.

Issue 728019 link

Starred by 1 user
Status: Duplicate
Merged: issue 729853
Owner:
littledan@chromium.org
Last visit > 30 days ago
Closed: Jun 2017
Components:
EstimatedDays: ----
NextAction: ----
OS: Mac
Pri: 1
Type: Bug

Blocked on:
issue 729853


Sign in to add a comment

Indirect-leak in icu_59::DecimalFormat::operator=

Project Member Reported by ClusterFuzz, May 31 2017 
Detailed report: https://clusterfuzz.com/testcase?key=5564539784658944

Fuzzer: inferno_js_fuzzer
Job Type: mac_asan_d8
Platform Id: mac

Crash Type: Indirect-leak
Crash Address: 
Crash State:
  icu_59::DecimalFormat::operator=
  DecimalFormat
  DecimalFormat
  
Sanitizer: address (ASAN)

Regressed: https://clusterfuzz.com/revisions?job=mac_asan_d8&range=473072:473103

Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=5564539784658944


Issue filed automatically.

See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.

Comment 1 by danno@chromium.org, Jun 7 2017

Cc: clemensh@chromium.org titzer@chromium.org
Owner: ahaas@chromium.org
Status: Assigned (was: Untriaged)
Test case looks WASM-related

Comment 2 by clemensh@chromium.org, Jun 7 2017

Blockedon: 729853
Cc: -titzer@chromium.org -clemensh@chromium.org
Owner: littledan@chromium.org
No, it's not. Dunno why the minimizer is so bad in this case, but it also reproduces with just these two lines:

var __v_3 = [2];
 __v_3.toLocaleString();


Probably related to 729853.

Comment 3 by littledan@chromium.org, Jun 15 2017

Mergedinto: 729853
Status: Duplicate (was: Assigned)
This is the same issue where the test setup is not calling the finalizers which free the memory.

Sign in to add a comment