Issue 853426 link

Starred by 2 users

Issue metadata

Status:	Untriaged
Owner:	----
Cc:	█ brajkumar@chromium.org
Components:	Internals>Plugins>PDF
EstimatedDays:	----
NextAction:	----
OS:	Linux
Pri:	2
Type:	Bug
Reproducible Clusterfuzz Stability-UndefinedBehaviorSanitizer Test-Predator-Wrong M-70 M-71

Integer-overflow in pp::Rect::bottom

Project Member Reported by ClusterFuzz, Jun 16 2018

Issue description

Detailed report: https://clusterfuzz.com/testcase?key=5531591968030720

Fuzzer: attekett_surku_fuzzer
Job Type: linux_ubsan_chrome
Platform Id: linux

Crash Type: Integer-overflow
Crash Address: 
Crash State:
  pp::Rect::bottom
  pp::Rect::Intersect
  PaintManager::InvalidateRect
  
Sanitizer: undefined (UBSAN)

Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=5531591968030720

Issue filed automatically.

See https://github.com/google/clusterfuzz-tools for more information.

Comment 1 by brajkumar@chromium.org, Jun 20 2018

Cc: brajkumar@chromium.org
Components: Internals>Plugins
Labels: M-68 Test-Predator-Wrong CF-NeedsTriage

Unable to find actual suspect through code search and also observing no suspected CL's under regression range, hence adding appropriate label and requesting someone from plugin team to look in to this issue.

Thanks!

Comment 2 by manoranjanr@google.com, Nov 20

Components: -Internals>Plugins Internals>Plugins>PDF
Labels: -M-68 -CF-NeedsTriage M-71 M-70

►

Issue 853426 link

Issue metadata

Integer-overflow in pp::Rect::bottom

Issue description

Comment 1 by brajkumar@chromium.org, Jun 20 2018

Comment 1 Deleted

Comment 2 by manoranjanr@google.com, Nov 20

Comment 2 Deleted

Sign in to add a comment