New issue
Advanced search Search tips

Issue 799860 link

Starred by 2 users
Status: Untriaged
Owner: ----
Cc:
hcm@google.com
kjlubick@chromium.org
kjlubick@google.com
Components:
EstimatedDays: ----
NextAction: ----
OS: Linux , Android , Windows , Chrome , Mac , Fuchsia
Pri: 3
Type: Bug



Sign in to add a comment

assertion in SkPackBits.cpp(105)

Reported by zhunkib...@gmail.com, Jan 8 2018 
UserAgent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:57.0) Gecko/20100101 Firefox/57.0

Steps to reproduce the problem:
1. build latest code of filter_fuzz_stub with following gn flags:
is_debug = true
(ninja -C buildir skia:filter_fuzz_stub)
2. Run filter_fuzz_stub with attached file:
./filter_fuzz_stub  assert.fil
[0108/172412.500226:INFO:SkPackBits.cpp(105)] ../../third_party/skia/src/effects/SkPackBits.cpp:105: fatal error: "assert(src <= stop)"

Aborted

What is the expected behavior?

What went wrong?
src > stop

Did this work before? N/A 

Chrome version: 65.0.3307.0  Channel: n/a
OS Version: 16.04
Flash Version:
assert.fil
1.0 KB Download

Comment 1 by elawrence@chromium.org, Jan 8 2018

Components: Internals>Skia

Comment 2 by metzman@chromium.org, Jan 8 2018

Cc: hcm@google.com
Labels: Security_Impact-Stable OS-Android OS-Chrome OS-Fuchsia OS-Mac OS-Windows
Status: Untriaged (was: Unconfirmed)
Thank you for the report (and your other ones as well).

However, I believe assertion failures in skia are not considered security bugs, (and frequently not even bugs).

hcm@ can you confirm this please?

If your testcases can produce crashes in non-debug builds, then they are probably legitimate security or non-security bugs.

Comment 3 by hcm@chromium.org, Jan 8 2018

Labels: -Type-Bug-Security -Pri-2 -Restrict-View-SecurityTeam -Security_Impact-Stable Pri-3 Type-Bug
Not considered security bugs, but let's file them as low priority bugs that we should look at.

Comment 4 by metzman@chromium.org, Jan 22 2018

Cc: kjlubick@chromium.org kjlubick@google.com

Sign in to add a comment