Issue 771946 link

Starred by 1 user

Issue metadata

Status:	WontFix
Owner:	----
Closed:	Oct 2017
Cc:	pnangunoori@chromium.org
Components:	Blink>Layout
EstimatedDays:	----
NextAction:	----
OS:	Linux
Pri:	1
Type:	Bug
Stability-Crash Reproducible Stability-Memory-AddressSanitizer Clusterfuzz Test-Predator-Wrong CF-NeedsTriage

Null-dereference READ in blink::LayoutBlockFlow::LayoutRunsAndFloatsInRange

Project Member Reported by ClusterFuzz, Oct 5 2017

Issue description

Detailed report: https://clusterfuzz.com/testcase?key=4890188399771648

Fuzzer: inferno_layout_test_unmodified
Job Type: linux_asan_chrome_mp
Platform Id: linux

Crash Type: Null-dereference READ
Crash Address: 0x000000000034
Crash State:
  blink::LayoutBlockFlow::LayoutRunsAndFloatsInRange
  blink::LayoutBlockFlow::LayoutRunsAndFloats
  blink::LayoutBlockFlow::LayoutInlineChildren
  
Sanitizer: address (ASAN)

Regressed: https://clusterfuzz.com/revisions?job=linux_asan_chrome_mp&range=144946:145047

Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4890188399771648

Additional requirements: Requires Gestures

Issue filed automatically.

See https://github.com/google/clusterfuzz-tools for more information.

Comment 1 by pnangunoori@chromium.org, Oct 5 2017

Cc: pnangunoori@chromium.org
Labels: Test-Predator-Wrong CF-NeedsTriage

Redo Task has been performed for regression range.
Thank You.

Comment 2 by pnangunoori@chromium.org, Oct 5 2017

Components: Blink>Layout

Comment 3 by e...@chromium.org, Oct 5 2017

Status: WontFix (was: Untriaged)

Not a security issue, not seen in the wild and this code is going away soon. WontFix.

►

Issue 771946 link

Issue metadata

Null-dereference READ in blink::LayoutBlockFlow::LayoutRunsAndFloatsInRange

Issue description

Comment 1 by pnangunoori@chromium.org, Oct 5 2017

Comment 1 Deleted

Comment 2 by pnangunoori@chromium.org, Oct 5 2017

Comment 2 Deleted

Comment 3 by e...@chromium.org, Oct 5 2017

Comment 3 Deleted

Sign in to add a comment