Issue metadata
Sign in to add a comment
|
Heap-use-after-free in CFX_UnownedPtr<CCodec_BmpModule::Delegate>::ProbeForLowSeverityLifetimeIssue |
||||||||||||||||||||
Issue descriptionDetailed report: https://clusterfuzz.com/testcase?key=5274999463346176 Fuzzer: libfuzzer_pdf_codec_bmp_fuzzer Job Type: libfuzzer_chrome_asan_debug Platform Id: linux Crash Type: Heap-use-after-free READ 1 Crash Address: 0x6130000003c0 Crash State: CFX_UnownedPtr<CCodec_BmpModule::Delegate>::ProbeForLowSeverityLifetimeIssue CFX_UnownedPtr<CCodec_BmpModule::Delegate>::~CFX_UnownedPtr CCodec_BmpModule::~CCodec_BmpModule Sanitizer: address (ASAN) Recommended Security Severity: High Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=5274999463346176 Issue manually filed by: tsepez See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reproducing.md for more information.
,
May 31 2017
,
May 31 2017
Detailed report: https://clusterfuzz.com/testcase?key=6530240565477376 Fuzzer: libfuzzer_pdf_codec_bmp_fuzzer Job Type: libfuzzer_chrome_asan Platform Id: linux Crash Type: Heap-use-after-free READ 1 Crash Address: 0x6130000003c0 Crash State: CFX_UnownedPtr<CCodec_BmpModule::Delegate>::ProbeForLowSeverityLifetimeIssue CCodec_ModuleMgr::~CCodec_ModuleMgr XFACodecFuzzer::Fuzz Sanitizer: address (ASAN) Recommended Security Severity: High Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=6530240565477376 See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reproducing.md for more information.
,
May 31 2017
,
May 31 2017
,
Jun 1 2017
,
Sep 7 2017
This bug has been closed for more than 14 weeks. Removing security view restrictions. For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot
,
Jul 28
|
|||||||||||||||||||||
►
Sign in to add a comment |
|||||||||||||||||||||
Comment 1 by tsepez@chromium.org
, May 31 2017Owner: tsepez@chromium.org
Status: Assigned (was: Untriaged)