Issue metadata
Sign in to add a comment
|
CHECK failure: object->IsAbstractCode() || object->IsSeqString() || object->IsExternalString() |
||||||||||||||||||||||
Issue descriptionDetailed report: https://clusterfuzz.com/testcase?key=6164912544677888 Fuzzer: ochang_js_fuzzer Job Type: linux_d8_dbg Platform Id: linux Crash Type: CHECK failure Crash Address: Crash State: object->IsAbstractCode() || object->IsSeqString() || object->IsExternalString() Sanitizer: address (ASAN) Regressed: https://clusterfuzz.com/revisions?job=linux_d8_dbg&range=53773:53774 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=6164912544677888 Issue filed automatically. See https://github.com/google/clusterfuzz-tools for more information.
,
Jun 17 2018
,
Jun 19 2018
Hi, please take a look at this new CHECK. It seems pretty strongly tied to https://chromium-review.googlesource.com/c/v8/v8/+/1100491 It seems like this just triggers a CHECK so does this have any security implications? -> jarin as I can't assign to a non-contributer.
,
Jun 26 2018
,
Jun 26 2018
,
Jun 26 2018
This is a serious security regression. If you are not able to fix this quickly, please revert the change that introduced it. If this doesn't affect a release branch, or has not been properly classified for severity, please update the Security_Impact or Security_Severity labels, and remove the ReleaseBlock label. To disable this altogether, apply ReleaseBlock-NA. For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot
,
Jun 27 2018
I am not authorized to access this page, could you please provide back trace for analysis.
,
Jul 1
jarin: Uh oh! This issue still open and hasn't been updated in the last 14 days. This is a serious vulnerability, and we want to ensure that there's progress. Could you please leave an update with the current status and any potential blockers? If you're not the right owner for this issue, could you please remove yourself as soon as possible or help us find the right one? If the issue is fixed or you can't reproduce it, please close the bug. If you've started working on a fix, please set the status to Started. Thanks for your time! To disable nags, add the Disable-Nags label. For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot
,
Jul 4
ClusterFuzz testcase 6164912544677888 appears to be flaky, updating reproducibility label.
,
Jul 4
ClusterFuzz testcase 6164912544677888 is flaky and no longer crashes, so closing issue. If this is incorrect, please add ClusterFuzz-Wrong label and re-open the issue.
,
Oct 11
This bug has been closed for more than 14 weeks. Removing security view restrictions. For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot |
|||||||||||||||||||||||
►
Sign in to add a comment |
|||||||||||||||||||||||
Comment 1 by ClusterFuzz
, Jun 16 2018Labels: Test-Predator-Auto-CC