Issue metadata
Sign in to add a comment
|
SEGV on unknown address 0x000000000000
Reported by
zhunkib...@gmail.com,
Jan 18 2018
|
||||||||||||||||||||||||
Issue description
UserAgent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:57.0) Gecko/20100101 Firefox/57.0
Steps to reproduce the problem:
Steps to reproduce the problem:
1. build latest code of filter_fuzz_stub with following gn flags:
is_debug = false
is_asan=true
(ninja -C buildir skia:filter_fuzz_stub)
2. Run filter_fuzz_stub with attached file:
./filter_fuzz_stub poc.fil
[0118/164402.217371:INFO:filter_fuzz_stub.cc(61)] Test case: /home/b/flat/poc.fil
[0118/164402.217798:INFO:filter_fuzz_stub.cc(38)] Valid stream detected.
AddressSanitizer:DEADLYSIGNAL
=================================================================
==21023==ERROR: AddressSanitizer: SEGV on unknown address 0x000000000000 (pc 0x000000cf4fc8 bp 0x7ffd8efb35f0 sp 0x7ffd8efb3540 T0)
==21023==The signal is caused by a READ memory access.
==21023==Hint: address points to the zero page.
#0 0xcf4fc7 (/home/b/chromium/src/out/asan/filter_fuzz_stub+0xcf4fc7)
#1 0xcf5873 (/home/b/chromium/src/out/asan/filter_fuzz_stub+0xcf5873)
#2 0xa30b0e (/home/b/chromium/src/out/asan/filter_fuzz_stub+0xa30b0e)
#3 0x91d337 (/home/b/chromium/src/out/asan/filter_fuzz_stub+0x91d337)
#4 0x914d59 (/home/b/chromium/src/out/asan/filter_fuzz_stub+0x914d59)
#5 0xd135c1 (/home/b/chromium/src/out/asan/filter_fuzz_stub+0xd135c1)
#6 0x9c1357 (/home/b/chromium/src/out/asan/filter_fuzz_stub+0x9c1357)
#7 0x93610a (/home/b/chromium/src/out/asan/filter_fuzz_stub+0x93610a)
#8 0x90ccbd (/home/b/chromium/src/out/asan/filter_fuzz_stub+0x90ccbd)
#9 0x908800 (/home/b/chromium/src/out/asan/filter_fuzz_stub+0x908800)
#10 0x92420b (/home/b/chromium/src/out/asan/filter_fuzz_stub+0x92420b)
#11 0x918e53 (/home/b/chromium/src/out/asan/filter_fuzz_stub+0x918e53)
#12 0x6221ff (/home/b/chromium/src/out/asan/filter_fuzz_stub+0x6221ff)
#13 0x7f13dc4c182f (/lib/x86_64-linux-gnu/libc.so.6+0x2082f)
AddressSanitizer can not provide additional info.
SUMMARY: AddressSanitizer: SEGV (/home/b/chromium/src/out/asan/filter_fuzz_stub+0xcf4fc7)
==21023==ABORTING
What is the expected behavior?
What went wrong?
SEGV on unknown address 0x000000000000
Did this work before? N/A
Chrome version: 65.0.3307.0 Channel: n/a
OS Version: 16.04
Flash Version:
,
Jan 18 2018
,
Jan 22 2018
,
Apr 27 2018
This bug has been closed for more than 14 weeks. Removing security view restrictions. For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot |
|||||||||||||||||||||||||
►
Sign in to add a comment |
|||||||||||||||||||||||||
Comment 1 by metzman@chromium.org
, Jan 18 2018