Detailed report: https://clusterfuzz.com/testcase?key=5670835997900800
Fuzzer: jesse_avalanche
Job Type: linux_ubsan_chrome
Platform Id: linux
Crash Type: Float-cast-overflow
Crash Address:
Crash State:
blink::Path::StrokePath
blink::Path::StrokeContains
blink::BaseRenderingContext2D::IsPointInStrokeInternal
Sanitizer: undefined (UBSAN)
Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=5670835997900800
Issue filed automatically.
See https://github.com/google/clusterfuzz-tools for instructions to reproduce this bug locally.
Note: This crash might not be reproducible with the provided testcase. That said, for the past 14 days we've been seeing this crash frequently. If you are unable to reproduce this, please try a speculative fix based on the crash stacktrace in the report. The fix can be verified by looking at the crash statistics in the report, a day after the fix is deployed. We will auto-close the bug if the crash is not seen for 14 days.
Comment 1 by ClusterFuzz
, Dec 27Labels: Test-Predator-Auto-Components