Issue metadata
Sign in to add a comment
|
Null-dereference READ in blink::VideoFrameSubmitter::OnContextLost |
||||||||||||||||||||||||
Issue descriptionDetailed report: https://clusterfuzz.com/testcase?key=5724767269945344 Fuzzer: ifratric-browserfuzzer-v3 Job Type: linux_ubsan_chrome Platform Id: linux Crash Type: Null-dereference READ Crash Address: 0x000000000008 Crash State: blink::VideoFrameSubmitter::OnContextLost ui::ContextProviderCommandBuffer::OnLostContext void base::internal::Invoker<base::internal::BindState<void Sanitizer: undefined (UBSAN) Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_chrome&range=557993:557997 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=5724767269945344 Issue filed automatically. See https://github.com/google/clusterfuzz-tools for more information.
,
May 12 2018
Automatically assigning owner based on suspected regression changelist https://chromium.googlesource.com/chromium/src/+/df92bfed734a92c8f839af121218917ae599157d (cc::Surfaces for Video path handles null context_provider). If this is incorrect, please let us know why and apply the Test-Predator-Wrong-CLs label. If you aren't the correct owner for this issue, please unassign yourself as soon as possible so it can be re-triaged.
,
May 12 2018
This crash occurs very frequently on mac platform and is likely preventing the fuzzer ifratric-browserfuzzer-v3 from making much progress. Fixing this will allow more bugs to be found. Marking this bug as a blocker for next Beta release. If this is incorrect, please add ClusterFuzz-Wrong label and remove the ReleaseBlock-Beta label.
,
May 14 2018
,
May 16 2018
,
May 17 2018
ClusterFuzz has detected this issue as fixed in range 559377:559378. Detailed report: https://clusterfuzz.com/testcase?key=5724767269945344 Fuzzer: ifratric-browserfuzzer-v3 Job Type: linux_ubsan_chrome Platform Id: linux Crash Type: Null-dereference READ Crash Address: 0x000000000008 Crash State: blink::VideoFrameSubmitter::OnContextLost ui::ContextProviderCommandBuffer::OnLostContext void base::internal::Invoker<base::internal::BindState<void Sanitizer: undefined (UBSAN) Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_chrome&range=557993:557997 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_chrome&range=559377:559378 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=5724767269945344 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page. |
|||||||||||||||||||||||||
►
Sign in to add a comment |
|||||||||||||||||||||||||
Comment 1 by ClusterFuzz
, May 12 2018Labels: Test-Predator-Auto-Components