AddressSanitizer: global-buffer-overflow [@ nsContentUtils::ShouldResistFingerprinting] with READ of size 4
Categories
(Core :: Graphics, defect)
Tracking
()
| Tracking | Status | |
|---|---|---|
| firefox69 | --- | fixed |
People
(Reporter: decoder, Unassigned)
References
Details
(4 keywords, Whiteboard: [adv-main69-])
Attachments
(1 file)
|
(deleted),
text/plain
|
Details |
The attached crash information was submitted via the ASan Nightly Reporter on mozilla-central-asan-nightly revision 69.0a1-20190607220156-https://hg.mozilla.org/mozilla-central/rev/522a2bc06f9e5d0767bb3f2e127cc21eeaeb8a78.
For detailed crash information, see attachment.
|
Reporter | |
Comment 1•5 years ago
|
||
|
|
Reporter | |
Updated•5 years ago
|
|
||
Comment 2•5 years ago
|
||
Weird. I doubt this has anything to do with Resist Fingerprinting; it seems like the principal passed in got messed up somehow.
|
||
Updated•5 years ago
|
|
||
Updated•5 years ago
|
|
|
||
Comment 4•5 years ago
|
||
I'll just mark it sec-high for now.
|
||
Comment 5•5 years ago
|
||
(In reply to Andrew McCreight [:mccr8] from comment #4)
Ehsan, is this a dupe of bug 1557409? Thanks.
Yes exactly. It's amazing a real user has hit it in the wild! Was there a crash url submitted alongside the crash report?
|
|
||
Comment 6•5 years ago
|
||
(In reply to :Ehsan Akhgari from comment #6)
Yes exactly. It's amazing a real user has hit it in the wild! Was there a crash url submitted alongside the crash report?
Maybe decoder knows. I would guess not, but I'm not sure.
|
|
Reporter | |
Comment 7•5 years ago
|
||
(In reply to :Ehsan Akhgari from comment #6)
Was there a crash url submitted alongside the crash report?
No, ASan Nightly does not collect crash URLs.
|
||
Updated•5 years ago
|
|
|
||
Updated•5 years ago
|
|
||
Comment 8•5 years ago
|
||
This is OffscreenCanvas, which is not yet a supported configuration.
|
|
||
Updated•1 years ago
|
Description
•