New issue
Advanced search Search tips
Note: Color blocks (like or ) mean that a user may not be available. Tooltip shows the reason.

Issue 815102 link

Starred by 1 user

Issue metadata

Status: Verified
Owner:
Closed: Mar 2018
Cc:
Components:
EstimatedDays: ----
NextAction: ----
OS: Linux
Pri: 3
Type: Bug-Regression



Sign in to add a comment

Integer-overflow in AllPassFilter

Project Member Reported by ClusterFuzz, Feb 23 2018

Issue description

Detailed report: https://clusterfuzz.com/testcase?key=4939815045562368

Fuzzer: libFuzzer_audio_processing_fuzzer
Job Type: libfuzzer_chrome_ubsan
Platform Id: linux

Crash Type: Integer-overflow
Crash Address: 
Crash State:
  AllPassFilter
  SplitFilter
  WebRtcVad_CalculateFeatures
  
Sanitizer: undefined (UBSAN)

Regressed: https://clusterfuzz.com/revisions?job=libfuzzer_chrome_ubsan&range=537973:537987

Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4939815045562368

Issue filed automatically.

See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reference.md for more information.
 
Cc: brajkumar@chromium.org
Components: Blink>WebRTC>Audio
Labels: -Type-Bug -Pri-2 M-66 Test-Predator-Wrong Pri-3 Type-Bug-Regression
Owner: aleloi@chromium.org
Status: Assigned (was: Untriaged)
This looks similar to  bug 803809 , hence assigning to the same dev for more updates on this issue.

aleloi@ Could you please take a look in to this issue?

Thanks!
Project Member

Comment 2 by ClusterFuzz, Mar 7 2018

ClusterFuzz has detected this issue as fixed in range 540793:540794.

Detailed report: https://clusterfuzz.com/testcase?key=4939815045562368

Fuzzer: libFuzzer_audio_processing_fuzzer
Job Type: libfuzzer_chrome_ubsan
Platform Id: linux

Crash Type: Integer-overflow
Crash Address: 
Crash State:
  AllPassFilter
  SplitFilter
  WebRtcVad_CalculateFeatures
  
Sanitizer: undefined (UBSAN)

Regressed: https://clusterfuzz.com/revisions?job=libfuzzer_chrome_ubsan&range=537973:537987
Fixed: https://clusterfuzz.com/revisions?job=libfuzzer_chrome_ubsan&range=540793:540794

Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4939815045562368

See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reference.md for more information.

If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
Project Member

Comment 3 by ClusterFuzz, Mar 7 2018

Labels: ClusterFuzz-Verified
Status: Verified (was: Assigned)
ClusterFuzz testcase 4939815045562368 is verified as fixed, so closing issue as verified.

If this is incorrect, please add ClusterFuzz-Wrong label and re-open the issue.

Sign in to add a comment