Abrt in sk_abort_no_print |
|||
Issue descriptionDetailed report: https://clusterfuzz.com/testcase?key=4765133841891328 Fuzzer: libFuzzer_paint_op_buffer_fuzzer Job Type: libfuzzer_chrome_asan_debug Platform Id: linux Crash Type: Abrt Crash Address: 0x03e9000074a7 Crash State: sk_abort_no_print SkPerlinNoiseShaderImpl::SkPerlinNoiseShaderImpl SkPerlinNoiseShaderImpl::SkPerlinNoiseShaderImpl Sanitizer: address (ASAN) Regressed: https://clusterfuzz.com/revisions?job=libfuzzer_chrome_asan_debug&range=527439:527468 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4765133841891328 Issue filed automatically. See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reference.md for more information.
,
Jan 10 2018
Automatically assigning owner based on suspected regression changelist https://chromium.googlesource.com/chromium/src/+/184aac3a818a10c142ad8bcccd1ac0bd7372b4c3 (oop: Serialize a few more PaintFilter.). If this is incorrect, please remove the owner and apply the Test-Predator-Wrong-CLs label.
,
Jan 10 2018
Skia asserts that num_octaves is in the range [0, 255]. However, there doesn't seem to be any security implications here. Skia also clamps the member variable to be <= 255, so the only real concern is negative values. It's only used to iterate from 0 to that value, so the loops will just be skipped.
,
Jan 13 2018
ClusterFuzz has detected this issue as fixed in range 529162:529166. Detailed report: https://clusterfuzz.com/testcase?key=4765133841891328 Fuzzer: libFuzzer_paint_op_buffer_fuzzer Job Type: libfuzzer_chrome_asan_debug Platform Id: linux Crash Type: Abrt Crash Address: 0x03e9000074a7 Crash State: sk_abort_no_print SkPerlinNoiseShaderImpl::SkPerlinNoiseShaderImpl SkPerlinNoiseShaderImpl::SkPerlinNoiseShaderImpl Sanitizer: address (ASAN) Regressed: https://clusterfuzz.com/revisions?job=libfuzzer_chrome_asan_debug&range=527439:527468 Fixed: https://clusterfuzz.com/revisions?job=libfuzzer_chrome_asan_debug&range=529162:529166 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4765133841891328 See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reference.md for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page. |
|||
►
Sign in to add a comment |
|||
Comment 1 by ClusterFuzz
, Jan 10 2018Labels: Test-Predator-Auto-Components