New issue
Advanced search Search tips

Issue 908751 link

Starred by 1 user
Status: Assigned
Owner:
chcunningham@chromium.org
Cc:
kkaluri@chromium.org
Components:
EstimatedDays: ----
NextAction: ----
OS: Linux
Pri: 2
Type: Bug

Blocked on:
issue 916298


Sign in to add a comment

Integer-overflow in compute_pkt_fields

Project Member Reported by ClusterFuzz, Nov 27 
Detailed report: https://clusterfuzz.com/testcase?key=4891161564807168

Fuzzer: libFuzzer_audio_decoder_fuzzer
Job Type: libfuzzer_chrome_ubsan
Platform Id: linux

Crash Type: Integer-overflow
Crash Address: 
Crash State:
  compute_pkt_fields
  parse_packet
  read_frame_internal
  
Sanitizer: undefined (UBSAN)

Regressed: https://clusterfuzz.com/revisions?job=libfuzzer_chrome_ubsan&range=546308:546319

Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4891161564807168

Issue filed automatically.

See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reference.md for more information.

Comment 1 by kkaluri@chromium.org, Nov 30

Cc: kkaluri@chromium.org
Components: Internals>Media>FFmpeg
Labels: M-72 Test-Predator-Wrong-CLs
Owner: tguilbert@chromium.org
Status: Assigned (was: Untriaged)
With reference to the  Issue 863245 , assigning it to tguilbert@

Comment 2 by tguilbert@chromium.org, Nov 30

Owner: chcunningham@chromium.org
=> chcunningham as current ffmpeg roll owner.

Comment 3 by chcunningham@chromium.org, Dec 18

Blocking: 916298

Comment 4 by chcunningham@chromium.org, Jan 2

Blocking: -916298

Comment 5 by chcunningham@chromium.org, Jan 2

Blockedon: 916298

Sign in to add a comment