Null-dereference READ in blink::ShapeResult::CreateForTabulationCharacters |
||||
Issue descriptionDetailed report: https://clusterfuzz.com/testcase?key=5158552931663872 Fuzzer: inferno_twister_c Job Type: linux_ubsan_chrome Platform Id: linux Crash Type: Null-dereference READ Crash Address: 0x000000000128 Crash State: blink::ShapeResult::CreateForTabulationCharacters blink::CachingWordShapeIterator::NextForAllowTabs TextWidth Sanitizer: undefined (UBSAN) Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_chrome&range=523880:523906 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=5158552931663872 Additional requirements: Requires HTTP Issue filed automatically. See https://github.com/google/clusterfuzz-tools for more information.
,
Mar 6 2018
Unable to find actual suspect through code search and also from the provided CL under regression range, hence adding appropriate label and requesting some one from layout team to look in to this issue. Thanks!
,
Mar 6 2018
Unable to reproduce and no relevant changes in regression range.
,
Mar 13 2018
ClusterFuzz testcase 5158552931663872 is still reproducing on tip-of-tree build (trunk). If this testcase was not reproducible locally or unworkable, ignore this notification and we will file another bug soon with hopefully a better and workable testcase. Otherwise, if this is not intended to be fixed (e.g. this is an intentional crash), please add ClusterFuzz-Ignore label to prevent future bug filing with similar crash stacktrace. |
||||
►
Sign in to add a comment |
||||
Comment 1 by ClusterFuzz
, Mar 5 2018Labels: Test-Predator-Auto-Components