New issue
Advanced search Search tips

Issue 917019 link

Starred by 2 users
Status: Assigned
Owner:
erikc...@chromium.org
Cc:
pnangunoori@chromium.org
erikc...@chromium.org
EstimatedDays: ----
NextAction: ----
OS: Linux
Pri: 1
Type: Bug



Sign in to add a comment

Abrt in heap_profiling::StreamParser::ParseStringMapping

Project Member Reported by ClusterFuzz, Dec 20 
Detailed report: https://clusterfuzz.com/testcase?key=4510851895394304

Fuzzer: libFuzzer_profiling_fuzzer
Fuzz target binary: profiling_fuzzer
Job Type: x86_libfuzzer_chrome_asan_debug
Platform Id: linux

Crash Type: Abrt
Crash Address: 0x00183639
Crash State:
  heap_profiling::StreamParser::ParseStringMapping
  heap_profiling::StreamParser::OnStreamData
  stream_fuzzer.cc
  
Sanitizer: address (ASAN)

Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4510851895394304

Issue filed automatically.

See https://github.com/google/clusterfuzz-tools for instructions to reproduce this bug locally.
Project Member

Comment 1 by ClusterFuzz, Dec 20

Cc: erikc...@chromium.org
Labels: ClusterFuzz-Auto-CC
Automatically adding ccs based on OWNERS file / target commit history.

If this is incorrect, please add ClusterFuzz-Wrong label.

Comment 2 by erikc...@chromium.org, Dec 20 

This occurs when the client sends a size that is too large, which std::string::resize()  can't handle.

Comment 3 by pnangunoori@chromium.org, Dec 24

Cc: pnangunoori@chromium.org
Labels: M-72 Test-Predator-Wrong
Owner: erikc...@chromium.org
Status: Assigned (was: Untriaged)
Predator and CL could not provide any possible suspects.
Using the code search for the file, “stream_parser.cc” assigning to owner concerned from GIT blame.
Suspecting Commit#
https://chromium.googlesource.com/chromium/src/+/3303fd023e6c5db58708458479ce1045982d799e

@erikchen -- Could you please look into this issue, kindly reassign if it has nothing to do with your changes.
Thank You.

Sign in to add a comment