Abrt in mov_read_trun |
|||
Issue descriptionDetailed report: https://clusterfuzz.com/testcase?key=5714355848740864 Fuzzer: inferno_flicker Job Type: linux_msan_chrome Platform Id: linux Crash Type: Abrt Crash Address: 0x053900000001 Crash State: mov_read_trun mov_read_default mov_read_default Sanitizer: memory (MSAN) Regressed: https://clusterfuzz.com/revisions?job=linux_msan_chrome&range=616399:616401 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=5714355848740864 Issue filed automatically. See https://www.chromium.org/developers/testing/memorysanitizer#TOC-Reproducing-ClusterFuzz-Bugs for instructions to reproduce this bug locally.
,
Jan 7
Automatically assigning owner based on suspected regression changelist https://chromium.googlesource.com/chromium/third_party/ffmpeg/+/80df42b82ef8422de896e51b4e82c05c96db95bb (lavf/mov: ensure only one tkhd per trak). If this is incorrect, please let us know why and apply the Test-Predator-Wrong-CLs label. If you aren't the correct owner for this issue, please unassign yourself as soon as possible so it can be re-triaged.
,
Jan 8
+inferno@ - this testcase is hitting an assert. This assert verifies that an index into an array is valid, preventing OOB io. This assert fires in debug and release, so its effectively preventing the OOB. To me this is WAI - any concerns? |
|||
►
Sign in to add a comment |
|||
Comment 1 by ClusterFuzz
, Jan 7Labels: Test-Predator-Auto-Components