Closed Bug 1209367 Opened 7 years ago Closed 7 years ago

MSan: use-of-uninitialized-value in BrotliDecompress (decode.c:963)

Categories

(Core :: Layout: Text and Fonts, defect)

41 Branch
defect
Not set
critical

Tracking

()

RESOLVED DUPLICATE of bug 1209358
Tracking Status
firefox41 --- affected
firefox42 --- affected
firefox43 --- affected
firefox44 --- fixed
firefox-esr38 --- unaffected

People

(Reporter: tsmith, Unassigned)

References

(Blocks 1 open bug)

Details

(Keywords: csectype-uninitialized, sec-low, Whiteboard: [adv-main44-])

Attachments

(2 files)

Attached file call_stack.txt
Not sure which component this should go under so I copied bug 366559 for now.

I am fuzzing commit https://github.com/google/brotli/commit/ca29aa22c295daac15baf5d85427ecc7808b515c

This is the version of brotli currently shipping in Firefox (https://hg.mozilla.org/mozilla-central/log/tip/modules/brotli/dec/decode.c).

It is currently used in WOFF2.
Attached file test_case.compressed
Component: Networking: HTTP → Layout: Text
Oops I logged this one twice.
Status: NEW → RESOLVED
Closed: 7 years ago
Resolution: --- → DUPLICATE
Duplicate of bug: 1209358
Group: network-core-security → core-security-release
Whiteboard: [adv-main44-]
Group: core-security-release
Keywords: sec-low
You need to log in before you can comment on or make changes to this bug.