Integer-overflow in hit_test_manager_fuzzer.cc |
|||||
Issue descriptionDetailed report: https://clusterfuzz.com/testcase?key=5655726422491136 Fuzzer: libFuzzer_hit_test_manager_fuzzer Job Type: libfuzzer_chrome_ubsan Platform Id: linux Crash Type: Integer-overflow Crash Address: Crash State: hit_test_manager_fuzzer.cc Sanitizer: undefined (UBSAN) Regressed: https://clusterfuzz.com/revisions?job=libfuzzer_chrome_ubsan&range=611798:611813 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=5655726422491136 Issue filed automatically. See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reference.md for more information.
,
Nov 29
Automatically adding ccs based on OWNERS file / target commit history. If this is incorrect, please add ClusterFuzz-Wrong label.
,
Nov 29
Automatically assigning owner based on suspected regression changelist https://chromium.googlesource.com/chromium/src/+/3ca20a18a7f7bc29ad5b798dc818b71e42feefa8 (Create template helper for ConsumeIntegral in fuzzing.). If this is incorrect, please let us know why and apply the Test-Predator-Wrong-CLs label. If you aren't the correct owner for this issue, please unassign yourself as soon as possible so it can be re-triaged.
,
Nov 29
,
Nov 29
The following revision refers to this bug: https://chromium.googlesource.com/chromium/src.git/+/2fedc7152c541a2766c2365e7f470cda35242896 commit 2fedc7152c541a2766c2365e7f470cda35242896 Author: Abhishek Arya <inferno@chromium.org> Date: Thu Nov 29 19:03:03 2018 Fix integer overflows in FuzzedDataProvider. R=mmoroz@chromium.org,ochang@chromium.org Bug: 909950 Change-Id: I00c7a8dcab631a8e4f7334847733c4a10a1376f0 Reviewed-on: https://chromium-review.googlesource.com/c/1354684 Reviewed-by: Max Moroz <mmoroz@chromium.org> Reviewed-by: Daniel Cheng <dcheng@chromium.org> Reviewed-by: Oliver Chang <ochang@chromium.org> Commit-Queue: Abhishek Arya <inferno@chromium.org> Cr-Commit-Position: refs/heads/master@{#612296} [modify] https://crrev.com/2fedc7152c541a2766c2365e7f470cda35242896/base/test/fuzzed_data_provider.h
,
Nov 30
ClusterFuzz has detected this issue as fixed in range 612295:612313. Detailed report: https://clusterfuzz.com/testcase?key=5655726422491136 Fuzzer: libFuzzer_hit_test_manager_fuzzer Job Type: libfuzzer_chrome_ubsan Platform Id: linux Crash Type: Integer-overflow Crash Address: Crash State: hit_test_manager_fuzzer.cc Sanitizer: undefined (UBSAN) Regressed: https://clusterfuzz.com/revisions?job=libfuzzer_chrome_ubsan&range=611798:611813 Fixed: https://clusterfuzz.com/revisions?job=libfuzzer_chrome_ubsan&range=612295:612313 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=5655726422491136 See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reference.md for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Nov 30
ClusterFuzz testcase 5655726422491136 is verified as fixed, so closing issue as verified. If this is incorrect, please add ClusterFuzz-Wrong label and re-open the issue. |
|||||
►
Sign in to add a comment |
|||||
Comment 1 by ClusterFuzz
, Nov 29Labels: Test-Predator-Auto-Components