Closed
Bug 1207312
Opened 9 years ago
Closed 9 years ago
ASan: SEGV at NULL in MozPromise
Categories
(Core :: Audio/Video: Playback, defect, P1)
Core
Audio/Video: Playback
Tracking
()
RESOLVED
FIXED
mozilla44
| Tracking | Status | |
|---|---|---|
| firefox44 | --- | fixed |
People
(Reporter: tsmith, Assigned: jya)
References
Details
(4 keywords, Whiteboard: [post-critsmash-triage][adv-main44-])
Attachments
(4 files)
|
10.32 KB,
text/plain
|
Details | |
|
13.33 KB,
video/mp4
|
Details | |
|
807 bytes,
patch
|
bholley
:
review+
|
Details | Diff | Splinter Review |
|
1.02 KB,
patch
|
bholley
:
review+
|
Details | Diff | Splinter Review |
I came across this fuzzing a couple weeks ago but have been swamped and didn't log it. It appears to be preventing me from reproducing bug 1206211
|
Reporter | |
Comment 1•9 years ago
|
||
|
||
Updated•9 years ago
|
Priority: -- → P1
|
Assignee | |
Updated•9 years ago
|
Assignee: nobody → jyavenard
|
|
Assignee | |
Comment 2•9 years ago
|
||
I encountered that same crash when playing with ffmpeg on mac ; likely the same.
|
|
Assignee | |
Comment 3•9 years ago
|
||
Attachment #8667695 -
Flags: review?(bobbyholley)
|
|
Assignee | |
Comment 4•9 years ago
|
||
Attachment #8667696 -
Flags: review?(bobbyholley)
|
||
Comment 5•9 years ago
|
||
Comment on attachment 8667695 [details] [diff] [review]
P1. Prevent crash when more than one promise is rejected.
Review of attachment 8667695 [details] [diff] [review]:
-----------------------------------------------------------------
Nice, thanks.
Attachment #8667695 -
Flags: review?(bobbyholley) → review+
|
|
||
Comment 6•9 years ago
|
||
Comment on attachment 8667696 [details] [diff] [review]
P2. Amend gtest.
Review of attachment 8667696 [details] [diff] [review]:
-----------------------------------------------------------------
Please add a comment describing what this test misses without a second rejection. :-)
Attachment #8667696 -
Flags: review?(bobbyholley) → review+
|
|
||
Comment 7•9 years ago
|
||
Nice find, Tyson.
|
|
Reporter | |
Comment 8•9 years ago
|
||
(In reply to Bobby Holley (:bholley) from comment #7)
> Nice find, Tyson.
Thanks! Once this is in m-c I'll fire up that fuzzer again.
|
||
Comment 9•9 years ago
|
||
https://hg.mozilla.org/mozilla-central/rev/47db8328de21
https://hg.mozilla.org/mozilla-central/rev/c3a9d50943f4
Status: NEW → RESOLVED
Closed: 9 years ago
status-firefox44:
--- → fixed
Resolution: --- → FIXED
Target Milestone: --- → mozilla44
|
||
Updated•9 years ago
|
Group: media-core-security → core-security-release
|
||
Updated•9 years ago
|
Whiteboard: [post-critsmash-triage]
|
||
Updated•9 years ago
|
Whiteboard: [post-critsmash-triage] → [post-critsmash-triage][adv-main44-]
|
|
||
Updated•9 years ago
|
Group: core-security-release
You need to log in
before you can comment on or make changes to this bug.
Description
•