Integer-overflow in imdct12 |
|||
Issue descriptionDetailed report: https://clusterfuzz.com/testcase?key=5286694856425472 Fuzzer: libFuzzer_mediasource_MP3_pipeline_integration_fuzzer Job Type: libfuzzer_chrome_ubsan Platform Id: linux Crash Type: Integer-overflow Crash Address: Crash State: imdct12 compute_imdct mp_decode_layer3 Sanitizer: undefined (UBSAN) Regressed: https://clusterfuzz.com/revisions?job=libfuzzer_chrome_ubsan&range=513674:513694 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=5286694856425472 Issue filed automatically. See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reference.md for more information.
,
Nov 10 2017
ClusterFuzz has detected this issue as fixed in range 515364:515426. Detailed report: https://clusterfuzz.com/testcase?key=5286694856425472 Fuzzer: libFuzzer_mediasource_MP3_pipeline_integration_fuzzer Job Type: libfuzzer_chrome_ubsan Platform Id: linux Crash Type: Integer-overflow Crash Address: Crash State: imdct12 compute_imdct mp_decode_layer3 Sanitizer: undefined (UBSAN) Regressed: https://clusterfuzz.com/revisions?job=libfuzzer_chrome_ubsan&range=513674:513694 Fixed: https://clusterfuzz.com/revisions?job=libfuzzer_chrome_ubsan&range=515364:515426 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=5286694856425472 See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reference.md for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Nov 10 2017
ClusterFuzz testcase 5286694856425472 is verified as fixed, so closing issue as verified. If this is incorrect, please add ClusterFuzz-Wrong label and re-open the issue.
,
Nov 10 2017
Fixed by https://chromium-review.googlesource.com/c/chromium/third_party/ffmpeg/+/759698 |
|||
►
Sign in to add a comment |
|||
Comment 1 by kkaluri@chromium.org
, Nov 9 2017Components: Internals>Media>FFmpeg
Labels: M-64 Test-Predator-Wrong CF-NeedsTriage