Null-dereference READ in blink::Node::GetLayoutBox |
|||||
Issue descriptionDetailed report: https://clusterfuzz.com/testcase?key=5885915028520960 Fuzzer: inferno_twister Job Type: linux_asan_content_shell_drt Platform Id: linux Crash Type: Null-dereference READ Crash Address: 0x000000000010 Crash State: blink::Node::GetLayoutBox blink::LayoutSlider::UpdateLayout blink::LayoutBlockFlow::LayoutInlineChildren Sanitizer: address (ASAN) Regressed: https://clusterfuzz.com/revisions?job=linux_asan_content_shell_drt&range=283013:284047 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=5885915028520960 Issue filed automatically. See https://github.com/google/clusterfuzz-tools for more information.
,
Nov 4 2017
,
Nov 6 2017
As per the Issue 727042 , Issue 727335 owner, assigning this issue to @nainar. @nainar-- Could you please look into this issue, kindly reassign if it has nothing to do with your changes. Thanks.
,
Nov 7 2017
Running bisect again since the fuzzer issue doesn't have one.
,
Jan 16 2018
Unable to reproduce and clusterfuzz is unable to determine the regression range. Closing as WontFix.
,
Jan 23 2018
ClusterFuzz testcase 5885915028520960 is still reproducing on tip-of-tree build (trunk). If this testcase was not reproducible locally or unworkable, ignore this notification and we will file another bug soon with hopefully a better and workable testcase. Otherwise, if this is not intended to be fixed (e.g. this is an intentional crash), please add ClusterFuzz-Ignore label to prevent future bug filing with similar crash stacktrace. |
|||||
►
Sign in to add a comment |
|||||
Comment 1 by ClusterFuzz
, Nov 4 2017