New issue
Advanced search Search tips

Issue 870679 link

Starred by 1 user
Status: Verified
Owner:
vmp...@chromium.org
Closed: Aug 14
EstimatedDays: ----
NextAction: ----
OS: Linux
Pri: 2
Type: Bug



Sign in to add a comment

Use-of-uninitialized-value in test_runner::TestRunnerForSpecificView::Reset

Project Member Reported by ClusterFuzz, Aug 3 
Detailed report: https://clusterfuzz.com/testcase?key=5733633445593088

Fuzzer: inferno_layout_test_unmodified
Job Type: linux_msan_content_shell_drt
Platform Id: linux

Crash Type: Use-of-uninitialized-value
Crash Address: 
Crash State:
  test_runner::TestRunnerForSpecificView::Reset
  test_runner::WebViewTestProxyBase::Reset
  test_runner::TestInterfaces::ResetAll
  
Sanitizer: memory (MSAN)

Recommended Security Severity: Medium

Regressed: https://clusterfuzz.com/revisions?job=linux_msan_content_shell_drt&range=545879:545880

Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=5733633445593088

Issue filed automatically.

See https://github.com/google/clusterfuzz-tools for more information.
Project Member

Comment 1 by sheriffbot@chromium.org, Aug 3

Labels: M-69 Target-69
Project Member

Comment 2 by sheriffbot@chromium.org, Aug 3

Labels: Pri-1

Comment 3 by mmoroz@chromium.org, Aug 6

Owner: vmp...@chromium.org
Status: Assigned (was: Untriaged)
The regression contains a single CL: https://chromium.googlesource.com/chromium/src/+log/73cfd3fcb696344b7ecc66519c3a702f0ef6e127..279708b3c8ed5b6d9b4ed452072458cb0f9047d0?pretty=fuller&n=10000

Comment 4 by vmp...@chromium.org, Aug 6

Labels: -Type-Bug-Security -Pri-1 Pri-2 Type-Bug
This affects tests only (see  crbug.com/829894  for context)
Project Member

Comment 5 by ClusterFuzz, Aug 14 

ClusterFuzz has detected this issue as fixed in range 582647:582648.

Detailed report: https://clusterfuzz.com/testcase?key=5733633445593088

Fuzzer: inferno_layout_test_unmodified
Job Type: linux_msan_content_shell_drt
Platform Id: linux

Crash Type: Use-of-uninitialized-value
Crash Address: 
Crash State:
  test_runner::TestRunnerForSpecificView::Reset
  test_runner::WebViewTestProxyBase::Reset
  test_runner::TestInterfaces::ResetAll
  
Sanitizer: memory (MSAN)

Recommended Security Severity: Medium

Regressed: https://clusterfuzz.com/revisions?job=linux_msan_content_shell_drt&range=545879:545880
Fixed: https://clusterfuzz.com/revisions?job=linux_msan_content_shell_drt&range=582647:582648

Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=5733633445593088

See https://github.com/google/clusterfuzz-tools for more information.

If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
Project Member

Comment 6 by ClusterFuzz, Aug 14

Labels: ClusterFuzz-Verified
Status: Verified (was: Assigned)
ClusterFuzz testcase 5733633445593088 is verified as fixed, so closing issue as verified.

If this is incorrect, please add ClusterFuzz-Wrong label and re-open the issue.
Project Member

Comment 7 by sheriffbot@chromium.org, Aug 14

Labels: -Restrict-View-SecurityTeam Restrict-View-SecurityNotify
Project Member

Comment 8 by sheriffbot@chromium.org, Nov 20

Labels: -Restrict-View-SecurityNotify allpublic
This bug has been closed for more than 14 weeks. Removing security view restrictions.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot

Sign in to add a comment