Issue 921727 link

Starred by 1 user

Issue metadata

Status:	Untriaged
Owner:	----
Cc:	metzman@chromium.org
Components:	Internals>Skia
EstimatedDays:	----
NextAction:	----
OS:	Linux
Pri:	2
Type:	Bug
Reproducible Stability-Libfuzzer Clusterfuzz Stability-UndefinedBehaviorSanitizer Test-Predator-Auto-Components ClusterFuzz-Auto-CC

Integer-overflow in overflows_short_shift

Project Member Reported by ClusterFuzz, Jan 14

Issue description

Detailed report: https://clusterfuzz.com/testcase?key=5121062546964480

Fuzzer: libFuzzer_skia_image_filter_proto_fuzzer
Fuzz target binary: skia_image_filter_proto_fuzzer
Job Type: libfuzzer_chrome_ubsan
Platform Id: linux

Crash Type: Integer-overflow
Crash Address: 
Crash State:
  overflows_short_shift
  rect_overflows_short_shift
  SkScan::AntiFillPath
  
Sanitizer: undefined (UBSAN)

Regressed: https://clusterfuzz.com/revisions?job=libfuzzer_chrome_ubsan&range=533303:533313

Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=5121062546964480

Issue filed automatically.

See https://github.com/google/clusterfuzz-tools for instructions to reproduce this bug locally.

Project Member

Comment 1 by ClusterFuzz, Jan 14

Components: Internals>Skia
Labels: Test-Predator-Auto-Components

Automatically applying components based on crash stacktrace and information from OWNERS files.

If this is incorrect, please apply the Test-Predator-Wrong-Components label.

Project Member

Comment 2 by ClusterFuzz, Jan 14

Cc: metzman@chromium.org
Labels: ClusterFuzz-Auto-CC

Automatically adding ccs based on OWNERS file / target commit history.

If this is incorrect, please add ClusterFuzz-Wrong label.

►

Issue 921727 link

Issue metadata

Integer-overflow in overflows_short_shift

Issue description

Comment 1 by ClusterFuzz, Jan 14

Comment 1 Deleted

Comment 2 by ClusterFuzz, Jan 14

Comment 2 Deleted

Sign in to add a comment