Issue metadata
Sign in to add a comment
|
Bad-cast to blink::ScriptWrappable from invalid vptr in blink::V8Element::ToImpl |
||||||||||||||||||||||
Issue descriptionDetailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 Issue filed automatically. See https://github.com/google/clusterfuzz-tools for more information.
Showing comments 24 - 123
of 123
Older ›
,
Jul 4
ClusterFuzz testcase 4596872245936128 is verified as fixed, so closing issue as verified. If this is incorrect, please add ClusterFuzz-Wrong label and re-open the issue.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
Is ClusterFuzz broken? Comments after #13 look same.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
Filed Issue 860124 for the ClusterFuzz spam.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
ClusterFuzz has detected this issue as fixed in range 572166:572167. Detailed report: https://clusterfuzz.com/testcase?key=4596872245936128 Fuzzer: inferno_twister_c Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: Bad-cast Crash Address: 0x23d3baf026f1 Crash State: Bad-cast to blink::ScriptWrappable from invalid vptr blink::V8Element::ToImpl blink::ScriptCustomElementDefinition::RunConstructor Sanitizer: undefined (UBSAN) Recommended Security Severity: High Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=479114:479272 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=572166:572167 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4596872245936128 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jul 4
This bug requires manual review: M68 has already been promoted to the beta branch, so this requires manual review Please contact the milestone owner if you have questions. Owners: cmasso@(Android), kariahda@(iOS), bhthompson@(ChromeOS), abdulsyed@(Desktop) For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot
,
Jul 4
,
Jul 6
Can you please comment on what needs to be merged here?
,
Jul 9
abdulsyed@, It's crrev.com/572167 in https://bugs.chromium.org/p/chromium/issues/detail?id=854887#c12
,
Jul 9
Approved - branch:3440
,
Jul 10
The following revision refers to this bug: https://chromium.googlesource.com/chromium/src.git/+/6ae11c1e45d4e8e6cde52f44f0b3f302eeae739b commit 6ae11c1e45d4e8e6cde52f44f0b3f302eeae739b Author: Kent Tamura <tkent@chromium.org> Date: Tue Jul 10 03:37:31 2018 Merge "custom-element: Do not crash by Get(NewTarget, "prototype") failure." to M68 branch https://html.spec.whatwg.org/multipage/dom.html#html-element-constructors > 7. Let prototype be Get(NewTarget, "prototype"). Rethrow any exceptions. As the specification says, we should rethrow. Removing a v8::TryCatch instance in V8HTMLConstructor::HtmlConstructor() works as "rethrow". Bug: 854887 Change-Id: I6b2d6ae829453270fe4437a87e65528525c64990 Reviewed-on: https://chromium-review.googlesource.com/1124129 Reviewed-by: Yuki Shiino <yukishiino@chromium.org> Reviewed-by: Kentaro Hara <haraken@chromium.org> Reviewed-by: Hitoshi Yoshida <peria@chromium.org> Commit-Queue: Kent Tamura <tkent@chromium.org> Cr-Original-Commit-Position: refs/heads/master@{#572167}(cherry picked from commit 8381e35ca626c9853c6207de30828b7c3039430c) Reviewed-on: https://chromium-review.googlesource.com/1130576 Reviewed-by: Kent Tamura <tkent@chromium.org> Cr-Commit-Position: refs/branch-heads/3440@{#629} Cr-Branched-From: 010ddcfda246975d194964ccf20038ebbdec6084-refs/heads/master@{#561733} [add] https://crrev.com/6ae11c1e45d4e8e6cde52f44f0b3f302eeae739b/third_party/WebKit/LayoutTests/custom-elements/cereactions-with-exception-expected.txt [add] https://crrev.com/6ae11c1e45d4e8e6cde52f44f0b3f302eeae739b/third_party/WebKit/LayoutTests/custom-elements/cereactions-with-exception.html [modify] https://crrev.com/6ae11c1e45d4e8e6cde52f44f0b3f302eeae739b/third_party/blink/renderer/bindings/core/v8/v8_html_constructor.cc
,
Jul 23
,
Oct 11
This bug has been closed for more than 14 weeks. Removing security view restrictions. For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot
Showing comments 24 - 123
of 123
Older ›
|
|||||||||||||||||||||||
►
Sign in to add a comment |
|||||||||||||||||||||||
