Closed Bug 1497991 Opened 7 years ago Closed 7 years ago

AddressSanitizer: use-after-poison [@ RefreshDriver] with READ of size 8

Categories

(Core :: Layout, defect)

Product:
Core
Component:
Layout
Platform:
x86_64
Linux
Type:
defect
Priority:
Not set
Severity:
critical

Tracking

()

Status:
RESOLVED DUPLICATE of bug 1490561
Tracking Flags:
Tracking Status
firefox63 --- fixed
firefox64 --- fixed

People

(Reporter: decoder, Unassigned)

Details

(4 keywords, Whiteboard: [adv-main63-])

Attachments

(1 file)

Detailed Crash Information
9.36 KB, text/plain
Details
The attached crash information was submitted via the ASan Nightly Reporter on mozilla-central-asan-nightly revision 63.0a1-20180831100058-https://hg.mozilla.org/mozilla-central/rev/ea869706644d3b2354b2438c77671d6e43df5e99. For detailed crash information, see attachment.
Group: core-security → layout-core-security
status-firefox63: --- → affected
This looks like classic frame poisoning and not a security bug. > 63.0a1-20180831100058 That's kind of an old build. I thought these were supposed to auto-update? Or are you dealing with a backlog of crashes? This may be similar to bug 1490561
Flags: needinfo?(choller)
Keywords: csectype-framepoisoning, sec-other
(In reply to Daniel Veditz [:dveditz] from comment #2) > This looks like classic frame poisoning and not a security bug. > > > 63.0a1-20180831100058 > > That's kind of an old build. I thought these were supposed to auto-update? Most of the reports I get are from up-to-date builds, but this one was from an older build. If someone hadn't started their ASan browser for a month and would then crash, then this would be the result, as there is no update without a browser restart.
Flags: needinfo?(choller)
Probably the same underlying issue as in bug 1490561.
Status: NEW → RESOLVED
Closed: 7 years ago
Resolution: --- → DUPLICATE
Whiteboard: [adv-main63-]
Group: layout-core-security
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: