dsinclair@, could you please take a look and help to find an owner for this?

eae@ to triage for layout-dev.

ClusterFuzz has detected this issue as fixed in range 384988:385072.

Detailed report: https://cluster-fuzz.appspot.com/testcase?key=5363490788737024

Fuzzer: ochang_domfuzzer
Job Type: linux_tsan_chrome_mp
Platform Id: linux

Crash Type: Heap-use-after-free
Crash Address: 
Crash State:
  NULL
Recommended Security Severity: High

Fixed: https://cluster-fuzz.appspot.com/revisions?job=linux_tsan_chrome_mp&range=384988:385072

Unminimized Testcase: https://cluster-fuzz.appspot.com/download/AMIfv958vS4d73OA6yZByrwZtC-0qZZ8eJPyGmVh_pjsYoUYg7flsIbLawFMplaQYXhETRVbDGF5Bdu3DqEFN9o_8godq8IsA9lwNdkNn1sKAETlPfQbHOgxzk0wiL5YHS_2IuA92zQ8hTXqb8Pk5R6Tqz6qQGXd_Q


See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.

If you suspect that the result above is incorrect, try re-doing that job on the test case report page.

ClusterFuzz has detected this issue as fixed in range 384988:385072.

Detailed report: https://cluster-fuzz.appspot.com/testcase?key=5363490788737024

Fuzzer: ochang_domfuzzer
Job Type: linux_tsan_chrome_mp
Platform Id: linux

Crash Type: Heap-use-after-free
Crash Address: 
Crash State:
  NULL
Recommended Security Severity: High

Fixed: https://cluster-fuzz.appspot.com/revisions?job=linux_tsan_chrome_mp&range=384988:385072

Unminimized Testcase: https://cluster-fuzz.appspot.com/download/AMIfv958vS4d73OA6yZByrwZtC-0qZZ8eJPyGmVh_pjsYoUYg7flsIbLawFMplaQYXhETRVbDGF5Bdu3DqEFN9o_8godq8IsA9lwNdkNn1sKAETlPfQbHOgxzk0wiL5YHS_2IuA92zQ8hTXqb8Pk5R6Tqz6qQGXd_Q


See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.

If you suspect that the result above is incorrect, try re-doing that job on the test case report page.

Adding Merge-Triage label for tracking purposes.

Once your fix had sufficient bake time (on canary, dev as appropriate), please nominate your fix for merge by adding the Merge-Requested label.

When your merge is approved by the release manager, please start merging with higher milestone label first. Make sure to re-request merge for every milestone in the label list. You can get branch information on omahaproxy.appspot.com.

Your fix is very close to the branch point. After the branch happens, please make sure to check if your fix is in.

- Your friendly ClusterFuzz

Did a fix land here off bug or is this a case of a flaky CF find / unrelated fix? I assume it's the latter, but want to double check.

Unrelated fix. 

This bug has been closed for more than 14 weeks. Removing security view restrictions.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot

This bug has been closed for more than 14 weeks. Removing security view restrictions.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot

This bug has been closed for more than 14 weeks. Removing security view restrictions.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot