New issue
Advanced search Search tips

Issue 897700 link

Starred by 1 user
Status: WontFix
Owner: ----
Closed: Oct 26
Cc:
ifratric@google.com
kkaluri@chromium.org
editing-dev@chromium.org
style-bugs@google.com
Components:
EstimatedDays: ----
NextAction: ----
OS: Linux
Pri: 2
Type: Bug



Sign in to add a comment

Integer-overflow in FindNearestLegacyFontSize<int>

Project Member Reported by ClusterFuzz, Oct 22 
Detailed report: https://clusterfuzz.com/testcase?key=5366503233552384

Fuzzer: ifratric-browserfuzzer-v3
Job Type: linux_ubsan_chrome
Platform Id: linux

Crash Type: Integer-overflow
Crash Address: 
Crash State:
  FindNearestLegacyFontSize<int>
  blink::FontSizeFunctions::LegacyFontSize
  blink::LegacyFontSizeFromCSSValue
  
Sanitizer: undefined (UBSAN)

Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_chrome&range=488635:489609

Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=5366503233552384

Issue filed automatically.

See https://github.com/google/clusterfuzz-tools for more information.
Project Member

Comment 1 by ClusterFuzz, Oct 22

Components: Blink>CSS Blink>Editing
Labels: Test-Predator-Auto-Components
Automatically applying components based on crash stacktrace and information from OWNERS files.

If this is incorrect, please apply the Test-Predator-Wrong-Components label.

Comment 2 by kkaluri@chromium.org, Oct 23

Cc: kkaluri@chromium.org
Labels: M-70 CF-NeedsTriage Test-Predator-Wrong
Unable to find actual suspect through code search and also observing no CL's under regression range, hence adding appropriate label and requesting someone from dev team to look in to this issue.

Thanks!

Comment 3 by e...@chromium.org, Oct 26

Labels: ClusterFuzz-Ignore
Status: WontFix (was: Untriaged)

Sign in to add a comment