Ubuntu
chromium-browser package

WebAssembly OOM crashes tab on snapcraft port of Chromium

Bug #1927202 reported by Olivier Faure
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
chromium-browser (Ubuntu)
New
Undecided
Unassigned

Bug Description

Copy-pasted from https://bugs.chromium.org/p/v8/issues/detail?id=11735

Version: Chromium 90.0.4430.93 snap
OS: Pop!_OS 20.10
Architecture: x64

# What steps will reproduce the problem?

1. Install chromium with snapcraft, eg
    snap install chromium

2. Write the following main.c:

    #include <stdlib.h>
    #include <stdio.h>

    int main()
    {
        int* p = 3000111000;
        int x = *p;
        printf("val: %d", x);

        return (0);
    }

3. Compile it and run it using emscripten
    emcc main.c -o test_oob.html
    emrun --no_browser test_oob.html

4. Open http://localhost:6931/test_oob.html in Chromium

# What is the expected output?

The page logs an exception upon loading, then does nothing.

# What do you see instead?

The page immediately segfaults (see chromium tracker link above for screenshot).

---

Note: I'm not sure if this is the right channel to report snapcraft bugs? I followed the link from the package's landing page (https://snapcraft.io/chromium). If this is the wrong bug tracker, please tell me where the right one is.

To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.