Float-cast-overflow in blink::ColorMediaFeatureEval |
||||||
Issue descriptionDetailed report: https://clusterfuzz.com/testcase?key=6531137871282176 Fuzzer: inferno_twister Job Type: linux_ubsan_chrome Platform Id: linux Crash Type: Float-cast-overflow Crash Address: Crash State: blink::ColorMediaFeatureEval blink::MediaQueryEvaluator::Eval blink::MediaQueryList::UpdateMatches Sanitizer: undefined (UBSAN) Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_chrome&range=551565:556760 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=6531137871282176 Issue filed automatically. See https://github.com/google/clusterfuzz-tools for more information.
,
Jul 19
The Predator has provided 6 possible suspects 1. Reland "Move manifest.mojom and content::Manifest to blink" by dgozman@chromium.org 2. Revert "Reland "Move manifest.mojom and content::Manifest to blink"" by dgozman@chromium.org 3. Revert "Move manifest.mojom and content::Manifest to blink" by alancutter@chromium.org 4. Reland #2 "Move manifest.mojom and content::Manifest to blink" by dgozman@chromium.org 5. Move manifest.mojom and content::Manifest to blink by dgozman@chromium.org 6. Revert "Reland #2 "Move manifest.mojom and content::Manifest to blink"" by findit-for-me@appspot.gserviceaccount.com Assigning to dgozman@ for his maximum changes and cc'ing alancutter@ for further triage.
,
Jul 19
Not sure how manifest changes can be related to media queries. Yoav, mind triaging this?
,
Sep 5
Reassigning as I haven't dealt with MQs in a looong while, and won't have time to tackle this in the immediate future. Rune - can you maybe take a look?
,
Dec 14
Non-security numeric overflow bugs are considered won't fix.
,
Dec 21
ClusterFuzz testcase 6531137871282176 is still reproducing on tip-of-tree build (trunk). If this testcase was not reproducible locally or unworkable, ignore this notification and we will file another bug soon with hopefully a better and workable testcase. Otherwise, if this is not intended to be fixed (e.g. this is an intentional crash), please add ClusterFuzz-Ignore label to prevent future bug filing with similar crash stacktrace.
,
Jan 1
Issue 918147 has been merged into this issue. |
||||||
►
Sign in to add a comment |
||||||
Comment 1 by ClusterFuzz
, Jul 13Labels: Test-Predator-Auto-Components