Closed
Bug 1209596
Opened 9 years ago
Closed 9 years ago
MSan: use-of-uninitialized-value in BrotliDecompress(decode.c:820)
Categories
(Core :: Layout: Text and Fonts, defect)
Tracking
()
RESOLVED
FIXED
People
(Reporter: tsmith, Unassigned)
References
Details
(Keywords: csectype-uninitialized)
Attachments
(2 files)
I am fuzzing commit https://github.com/google/brotli/commit/ca29aa22c295daac15baf5d85427ecc7808b515c
This is the version of brotli currently shipping in Firefox (https://hg.mozilla.org/mozilla-central/log/tip/modules/brotli/dec/decode.c).
It is currently used in WOFF2.
Reporter | ||
Updated•9 years ago
|
Group: network-core-security → layout-core-security
Reporter | ||
Comment 1•9 years ago
|
||
Comment 2•9 years ago
|
||
per https://bugzilla.mozilla.org/show_bug.cgi?id=1207298#c12 we are going to let the brotli library update ride the trains from 44 onwards unless we learn of more severe problems.
bug 1207298 checked in a library update and will also resolve this issue.
Status: NEW → RESOLVED
Closed: 9 years ago
Resolution: --- → FIXED
Updated•9 years ago
|
Group: layout-core-security → core-security-release
Updated•8 years ago
|
Group: core-security-release
You need to log in
before you can comment on or make changes to this bug.
Description
•