Null-dereference READ in v8::Function::GetScriptOrigin |
|||||||
Issue descriptionDetailed report: https://clusterfuzz.com/testcase?key=5586388792377344 Fuzzer: inferno_twister Job Type: mac_asan_content_shell Platform Id: mac Crash Type: Null-dereference READ Crash Address: 0x000000000000 Crash State: v8::Function::GetScriptOrigin blink::AdTracker::Will blink::probe::CallFunction::CallFunction Sanitizer: address (ASAN) Regressed: https://clusterfuzz.com/revisions?job=mac_asan_content_shell&range=546091:546111 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=5586388792377344 Additional requirements: Requires HTTP Issue filed automatically. See https://github.com/google/clusterfuzz-tools for more information.
,
May 18 2018
Automatically assigning owner based on suspected regression changelist https://chromium.googlesource.com/chromium/src/+/0be95494cc29325fac019fbddd316e315ab13b38 (Oilpan: Replace GCStates with GCPhase). If this is incorrect, please let us know why and apply the Test-Predator-Wrong-CLs label. If you aren't the correct owner for this issue, please unassign yourself as soon as possible so it can be re-triaged.
,
May 19 2018
,
Jun 17 2018
,
Jul 12
ClusterFuzz testcase 5586388792377344 appears to be flaky, updating reproducibility label.
,
Aug 14
Friendly Ping: Did this get fixed? We're seeing this appearing in the wild on mac with the very same bug stack trace: https://crbug.com/873623
,
Aug 14
,
Aug 15
Doesn't seem to reproduce any more: Progression task errored out: Known crash revision 574091 did not crash. |
|||||||
►
Sign in to add a comment |
|||||||
Comment 1 by ClusterFuzz
, May 18 2018Labels: Test-Predator-Auto-Components