Null-dereference READ in event_del |
|||||||
Issue descriptionDetailed report: https://clusterfuzz.com/testcase?key=5594696634859520 Fuzzer: afl_mediasource_WEBM_VP8_pipeline_integration_fuzzer Job Type: afl_chrome_asan Platform Id: linux Crash Type: Null-dereference READ Crash Address: 0x000000000000 Crash State: event_del base::MessagePumpLibevent::~MessagePumpLibevent base::MessagePumpLibevent::~MessagePumpLibevent Sanitizer: address (ASAN) Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=5594696634859520 Issue filed automatically. See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reference.md for more information. Note: This crash might not be reproducible with the provided testcase. That said, for the past 14 days we've been seeing this crash frequently. If you are unable to reproduce this, please try a speculative fix based on the crash stacktrace in the report. The fix can be verified by looking at the crash statistics in the report, a day after the fix is deployed. We will auto-close the bug if the crash is not seen for 14 days.
,
Apr 30 2018
Unable to provide possible suspect using Predator, CL and Code Search. Could someone please look into the issue. Thank You...
,
May 29 2018
Issue 844251 has been merged into this issue.
,
May 29 2018
This also manifested as issue 844251 . Perhaps related to failing MessagePumpLibevent::Init()..? @Linux base experts, any idea?
,
May 29 2018
Automatically adding ccs based on OWNERS file / target commit history. If this is incorrect, please add ClusterFuzz-Wrong label.
,
May 29 2018
,
May 29 2018
CF keeps reproducing unreproducible bugs. What's going wrong? See also bug 841502 , bug 840188 , and bug 838038 .
,
May 30 2018
thestig@, there is a note in bold text in the issue description. CF keeps reporting unreproducible bugs, because CF keeps seeing them happening multiple times every day in the past 14 days. We understand that many of such bugs can be hard to fix, but we've also seen many cases when it was possible to write a fix based on the stack trace of the crash. There is "Crash Stats" button on the testcase details page, that shows how often the crash occurs and can be used for verifying the fix. If you don't see any potential solution, please WontFix it and sorry for the noise.
,
Jul 24
ClusterFuzz testcase 5310025376202752 is flaky and no longer crashes, so closing issue. If this is incorrect, please add ClusterFuzz-Wrong label and re-open the issue. |
|||||||
►
Sign in to add a comment |
|||||||
Comment 1 by ClusterFuzz
, Apr 30 2018Labels: Test-Predator-Auto-Components