New issue
Advanced search Search tips

Issue 794390 link

Starred by 1 user

Issue metadata

Status: Fixed
Owner:
Closed: Dec 2017
Cc:
Components:
EstimatedDays: ----
NextAction: ----
OS: Linux , Android , Windows , Chrome , Mac , Fuchsia
Pri: 2
Type: Bug-Security



Sign in to add a comment

Cherry-pick an upstream fix for UTF-8 to UTF-8 converter

Project Member Reported by js...@chromium.org, Dec 13 2017

Issue description

ICU 60.1 introduced a bug in UTF-8 to UTF-8 converter (discovered by asan but reproducible in a non-ASAN build).   Chrome does not use the API in question as far as I know. 

Nonetheless, it'd be better to cherry-pick an upstream fix. 


Upstream bug: https://ssl.icu-project.org/trac/ticket/13510

 
Project Member

Comment 2 by sheriffbot@chromium.org, Dec 13 2017

Labels: -Security_Impact-Head Security_Impact-Beta
Project Member

Comment 3 by sheriffbot@chromium.org, Dec 13 2017

Labels: -Pri-1 Pri-2

Comment 4 by js...@chromium.org, Dec 13 2017

Description: Show this description

Comment 5 by js...@chromium.org, Dec 13 2017

Cc: mark@chromium.org
Project Member

Comment 6 by bugdroid1@chromium.org, Dec 13 2017

Project Member

Comment 7 by bugdroid1@chromium.org, Dec 14 2017

The following revision refers to this bug:
  https://chromium.googlesource.com/chromium/src.git/+/27be5b2f24250e2b35d2c0746a685c2ff4ab784f

commit 27be5b2f24250e2b35d2c0746a685c2ff4ab784f
Author: Jungshik Shin <jshin@chromium.org>
Date: Thu Dec 14 21:38:31 2017

Roll ICU to  94d819f

Add a test for German time format (12hr with AM/PM marker).

It has 3 changes:

 https://chromium.googlesource.com/chromium/deps/icu.git/+log/e3b480d..94d819f

 2017-12-13 jshin@chromium.org Update German AM/PM marker to the previous value
 2017-12-13 jshin@chromium.org Cherry-pick an upstream fix for UTF8 to UTF8 conversion
 2017-12-12 jshin@chromium.org Cherry-pick an upstream fix for Calendar class

Bug:  794737 , 794390 , 792537 
Test: base_unittests --gtest_filter=TimeFormat*.*TimeOfDayDE
Test:  crbug.com/794737#c2 
Change-Id: Ifa6d31624cbd9d4edc1b776e34527d8e842f7290
Reviewed-on: https://chromium-review.googlesource.com/826363
Commit-Queue: Jungshik Shin <jshin@chromium.org>
Reviewed-by: Mark Mentovai <mark@chromium.org>
Cr-Commit-Position: refs/heads/master@{#524189}
[modify] https://crrev.com/27be5b2f24250e2b35d2c0746a685c2ff4ab784f/DEPS
[modify] https://crrev.com/27be5b2f24250e2b35d2c0746a685c2ff4ab784f/base/i18n/time_formatting_unittest.cc

Comment 8 by js...@chromium.org, Dec 15 2017

Status: Fixed (was: Started)
Fixed. I'll wait for canary to go live with this change and ask for merge to 64. 

Project Member

Comment 9 by sheriffbot@chromium.org, Dec 16 2017

Labels: Restrict-View-SecurityNotify

Comment 10 by js...@chromium.org, Dec 19 2017

related bug:  bug 790944  . It turned out that we do use the api in question for XML parsing. 

Comment 11 by js...@chromium.org, Dec 19 2017

Labels: -OS-iOS
Project Member

Comment 12 by bugdroid1@chromium.org, Jan 2 2018

The following revision refers to this bug:
  https://chrome-internal.googlesource.com/chrome/tools/buildspec/+/e3f547afefe52835be482b32421c016dc90ddc4f

commit e3f547afefe52835be482b32421c016dc90ddc4f
Author: Jungshik Shin <jungshik@google.com>
Date: Tue Jan 02 18:38:21 2018

Labels: merge-merged-3282
In  bug 794737 , I got a merge approval and ICU was rolled for M60 branch to include a change recorded in comment 6. 
Components: Blink>XML UI>Internationalization
Project Member

Comment 15 by sheriffbot@chromium.org, Mar 24 2018

Labels: -Restrict-View-SecurityNotify allpublic
This bug has been closed for more than 14 weeks. Removing security view restrictions.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot
Project Member

Comment 16 by sheriffbot@chromium.org, Mar 27 2018

Labels: -Security_Impact-Beta -M-64 M-65 Security_Impact-Stable

Sign in to add a comment