Null-dereference READ in SkImage::isTextureBacked |
|||
Issue descriptionDetailed report: https://clusterfuzz.com/testcase?key=5246900604502016 Fuzzer: libFuzzer_v8_serialized_script_value_fuzzer Job Type: libfuzzer_chrome_asan Platform Id: linux Crash Type: Null-dereference READ Crash Address: 0x000000000000 Crash State: SkImage::isTextureBacked blink::StaticBitmapImage::Create blink::ImageBitmap::ImageBitmap Sanitizer: address (ASAN) Regressed: https://clusterfuzz.com/revisions?job=libfuzzer_chrome_asan&range=490022:490184 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=5246900604502016 Issue filed automatically. See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reproducing.md for more information.
,
Oct 24 2017
For more information, please see https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reference.md. The link referenced in the description is no longer valid. (bulk edit)
,
Nov 28 2017
,
Dec 5 2017
ClusterFuzz testcase 5246900604502016 is still reproducing on tip-of-tree build (trunk). If this testcase was not reproducible locally or unworkable, ignore this notification and we will file another bug soon with hopefully a better and workable testcase. Otherwise, if this is not intended to be fixed (e.g. this is an intentional crash), please add ClusterFuzz-Ignore label to prevent future bug filing with similar crash stacktrace. |
|||
►
Sign in to add a comment |
|||
Comment 1 by msrchandra@chromium.org
, Jul 28 2017Labels: M-62 Test-Predator-Wrong