<html>
<body>
<script type="application/ld+json">
{
  "@context": "http://schema.org",
  "@type": "EmailMessage",
  "potentialAction": {
    "@type": "ViewAction",
    "name": "View Issue",
    "url": "https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=15749"
  },
  "description": ""
}
</script>

<div style="font-family: arial, sans-serif; white-space:pre">Status: New<br/>Owner: ----<br/>CC: <a href="mailto:kcc@google.com">kcc@google.com</a>, <a href="mailto:mascasa@google.com">mascasa@google.com</a>, <a href="mailto:jdevlieg...@apple.com">jdevlieg...@apple.com</a>, <a href="mailto:igm...@gmail.com">igm...@gmail.com</a>, <a href="mailto:mitchp@google.com">mitchp@google.com</a>, <a href="mailto:bigchees...@gmail.com">bigchees...@gmail.com</a>, <a href="mailto:eneyman@google.com">eneyman@google.com</a>, <a href="mailto:llvm-b...@lists.llvm.org">llvm-b...@lists.llvm.org</a>, <a href="mailto:jfb@chromium.org">jfb@chromium.org</a>, <a href="mailto:v...@apple.com">v...@apple.com</a>, <a href="mailto:mitchphi...@outlook.com">mitchphi...@outlook.com</a>, <a href="mailto:xpl...@gmail.com">xpl...@gmail.com</a>, <a href="mailto:akils...@apple.com">akils...@apple.com</a> <br/>Labels: ClusterFuzz Stability-Memory-MemorySanitizer Unreproducible Engine-libfuzzer OS-Linux Proj-llvm Security_Severity-Medium Reported-2019-07-11<br/>Type: Bug-Security<br/><br/>New issue 15749 by ClusterFuzz-External: llvm/llvm-opt-fuzzer--x86_64-guard_widening: Use-of-uninitialized-value in initStream<br/><a href="https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=15749">https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=15749</a><br/><br/>Detailed report: <a href="https://oss-fuzz.com/testcase?key=5731751848050688">https://oss-fuzz.com/testcase?key=5731751848050688</a><br/><br/>Project: llvm<br/>Fuzzer: libFuzzer_llvm_llvm-opt-fuzzer--x86_64-guard_widening<br/>Fuzz target binary: llvm-opt-fuzzer--x86_64-guard_widening<br/>Job Type: libfuzzer_msan_llvm<br/>Platform Id: linux<br/><br/>Crash Type: Use-of-uninitialized-value<br/>Crash Address: <br/>Crash State:<br/>  initStream<br/>  llvm::getBitcodeFileContents<br/>  llvm::getBitcodeModuleList<br/>  <br/>Sanitizer: memory (MSAN)<br/><br/>Recommended Security Severity: Medium<br/><br/>Reproducer Testcase: <a href="https://oss-fuzz.com/download?testcase_id=5731751848050688">https://oss-fuzz.com/download?testcase_id=5731751848050688</a><br/><br/>Issue filed automatically.<br/><br/>See <a href="https://github.com/google/oss-fuzz/blob/master/docs/reproducing.md">https://github.com/google/oss-fuzz/blob/master/docs/reproducing.md</a> for instructions to reproduce this bug locally.<br/><br/>Note: This crash might not be reproducible with the provided testcase. That said, for the past 14 days we've been seeing this crash frequently. If you are unable to reproduce this, please try a speculative fix based on the crash stacktrace in the report. The fix can be verified by looking at the crash statistics in the report, a day after the fix is deployed. We will auto-close the bug if the crash is not seen for 14 days.<br/><br/>-- <br/>You received this message because:<br/>  1. You were specifically CC'd on the issue<br/><br/>You may adjust your notification preferences at:<br/><a href="https://bugs.chromium.org/hosting/settings">https://bugs.chromium.org/hosting/settings</a><br/><br/>Reply to this email to add a comment.</div>
</body>
</html>