Closed Bug 1606440 Opened 6 years ago Closed 6 years ago

AddressSanitizer: heap-buffer-overflow [@ CharAt] with READ of size 2 through [@ IsCSSWordSpacingSpace]

Categories

(Core :: Layout: Text and Fonts, defect)

Product:
Core
Component:
Layout: Text and Fonts
Platform:
x86_64
Linux
Type:
defect
Priority:
Not set
Severity:
critical

Tracking

()

Status:
RESOLVED DUPLICATE of bug 1599173
Tracking Flags:
Tracking Status
firefox72 --- fixed

People

(Reporter: decoder, Unassigned)

Details

(Keywords: crash, regression)

Crash Data

Attachments

(1 file)

Detailed Crash Information
25.66 KB, text/plain
Details

The attached crash information was submitted via the ASan Nightly Reporter on mozilla-central-asan-nightly revision 72.0a1-20191127215655-https://hg.mozilla.org/mozilla-central/rev/62ae0fda7cb68083be9105243de87e58b90a5dc1.

For detailed crash information, see attachment.

Is this still reproducible with current trunk code? It looks like it might be the same as bug 1599173, which was fixed on 2019-11-28.

Flags: needinfo?(choller)

There's no test case, just an ASan crash report. Given that it is on a build where bug 1599173 wasn't fixed, let's just dupe it over.

Status: NEW → RESOLVED
Closed: 6 years ago
Flags: needinfo?(choller)
Resolution: --- → DUPLICATE
Group: core-security → layout-core-security
Group: layout-core-security
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: