Closed Bug 927443 Opened 12 years ago Closed 12 years ago

crash in `anonymous namespace''::downmix_to_stereo<float>(float*, long, float*, int)

Categories

(Core :: Audio/Video, defect)

Product:
Core
Component:
Audio/Video
Version:
27 Branch
Platform:
x86
Windows NT
Type:
defect
Priority:
Not set
Severity:
critical

Tracking

()

Status:
VERIFIED DUPLICATE of bug 929009
Tracking Flags:
Tracking Status
firefox25 --- disabled
firefox26 --- disabled
firefox27 --- affected
firefox28 --- affected
firefox-esr17 --- unaffected
firefox-esr24 --- unaffected
b2g18 --- unaffected

People

(Reporter: tracy, Assigned: padenot)

References

Details

(Keywords: crash, regression, sec-critical, Whiteboard: [sg:dupe 929009])

Crash Data

This bug was filed from the Socorro interface and is report bp-614b5e47-cfb9-4970-aea1-5b90d2131016. ============================================================= Socorro is reporting this as medium to high vulnerability with Crash Reason : EXCEPTION_ACCESS_VIOLATION_WRITE It first appeared on Nightly (27) builds 20131014030204 http://hg.mozilla.org/mozilla-central/pushloghtml?fromchange=a50141faaab9&tochange=211337f7fb83 It then appeared the next day on Aurora (26) nightly 20131015004002 though in less volume than on trunk. As such, I believe this is caused by bug 899050. But can't say why there aren't any crashes on 25 with build from 20131015.
Assignee: nobody → paul
This looks bad, probably sec-crit.
Crash Signature: [@ `anonymous namespace''::downmix_to_stereo<float>(float*, long, float*, int)] → [@ `anonymous namespace"::downmix_to_stereo<float>(float*, long, float*, int)]
Keywords: sec-critical
This is also filed as bug 929009
Looks like the offending patch was backed out of beta.
status-b2g18: --- → unaffected
status-firefox25: ?unaffected
status-firefox-esr17: --- → unaffected
status-firefox-esr24: --- → unaffected
Do we know what was backed out of beta? If we can narrow that down we can backout again for FF26 if that's the best option risk-wise.
(In reply to lsblakk@mozilla.com [:lsblakk] from comment #4) > Do we know what was backed out of beta? If we can narrow that down we can > backout again for FF26 if that's the best option risk-wise. Bug 929009 has the disabling of code that was done for 25. I'm marking this disabled for 25 as that's what actually has happened.
status-firefox25: unaffecteddisabled
This is going to be really fixed (not by disabling the code, but by actually fixing it) in bug 929009.
Status: NEW → RESOLVED
Closed: 12 years ago
Resolution: --- → DUPLICATE
Status: RESOLVED → VERIFIED
Blocks: 899050
Group: core-security
Keywords: regression
Whiteboard: [sg:dupe 929009]
You need to log in before you can comment on or make changes to this bug.