Integer-overflow in TrilinearInterp16 |
||||||||
Issue descriptionDetailed report: https://clusterfuzz.com/testcase?key=6090395635941376 Fuzzer: libFuzzer_pdf_codec_icc_fuzzer Job Type: libfuzzer_chrome_ubsan Platform Id: linux Crash Type: Integer-overflow Crash Address: Crash State: TrilinearInterp16 EvaluateCLUTfloatIn16 _LUTevalFloat Sanitizer: undefined (UBSAN) Regressed: https://clusterfuzz.com/revisions?job=libfuzzer_chrome_ubsan&range=420371:420606 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=6090395635941376 Issue filed automatically. See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reference.md for more information.
,
Oct 18
Automatically adding ccs based on OWNERS file / target commit history. If this is incorrect, please add ClusterFuzz-Wrong label.
,
Oct 18
Automatically assigning owner based on suspected regression changelist https://pdfium.googlesource.com/pdfium/+/39ee9dfac1c6d286a4075c7e2435fe1cfe365bad (Fix memory leaks in lcms). If this is incorrect, please let us know why and apply the Test-Predator-Wrong-CLs label. If you aren't the correct owner for this issue, please unassign yourself as soon as possible so it can be re-triaged.
,
Oct 18
This is similar to bug 649832 .
,
Dec 1
ClusterFuzz testcase 6090395635941376 appears to be flaky, updating reproducibility label.
,
Dec 1
Please ignore the last comment about testcase being unreproducible. The testcase is still reproducible. This happened due to a code refactoring on ClusterFuzz side, and the underlying root cause is now fixed. Resetting the label back to Reproducible. Sorry about the inconvenience caused from these incorrect notifications.
,
Dec 1
Please ignore the last comment about testcase being unreproducible. The testcase is still reproducible. This happened due to a code refactoring on ClusterFuzz side, and the underlying root cause is now fixed. Resetting the label back to Reproducible. Sorry about the inconvenience caused from these incorrect notifications.
,
Jan 10
ClusterFuzz has detected this issue as fixed in range 621424:621441. Detailed report: https://clusterfuzz.com/testcase?key=6090395635941376 Fuzzer: libFuzzer_pdf_codec_icc_fuzzer Fuzz target binary: pdf_codec_icc_fuzzer Job Type: libfuzzer_chrome_ubsan Platform Id: linux Crash Type: Integer-overflow Crash Address: Crash State: TrilinearInterp16 EvaluateCLUTfloatIn16 _LUTevalFloat Sanitizer: undefined (UBSAN) Regressed: https://clusterfuzz.com/revisions?job=libfuzzer_chrome_ubsan&range=420371:420606 Fixed: https://clusterfuzz.com/revisions?job=libfuzzer_chrome_ubsan&range=621424:621441 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=6090395635941376 See https://github.com/google/clusterfuzz-tools for instructions to reproduce this bug locally. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jan 10
ClusterFuzz testcase 6090395635941376 is verified as fixed, so closing issue as verified. If this is incorrect, please add ClusterFuzz-Wrong label and re-open the issue. |
||||||||
►
Sign in to add a comment |
||||||||
Comment 1 by ClusterFuzz
, Oct 18Labels: Test-Predator-Auto-Components