Adding a few ccs based on blame. Do either of you have any idea who would be a good owner for this?

Probably we need to reopen 590803.

ClusterFuzz has detected this issue as fixed in range 391820:391873.

Detailed report: https://cluster-fuzz.appspot.com/testcase?key=4686443959549952

Fuzzer: attekett_dom_fuzzer
Job Type: linux_asan_chrome_mp
Platform Id: linux

Crash Type: Use-after-poison READ 8
Crash Address: 0x7efa68f2e2d8
Crash State:
  blink::CompositorAnimationPlayer::NotifyAnimationFinished
  cc::ElementAnimations::NotifyAnimationFinished
  cc::AnimationHost::SetAnimationEvents
  
Recommended Security Severity: High

Regressed: https://cluster-fuzz.appspot.com/revisions?job=linux_asan_chrome_mp&range=377255:377290
Fixed: https://cluster-fuzz.appspot.com/revisions?job=linux_asan_chrome_mp&range=391820:391873

Unminimized Testcase: https://cluster-fuzz.appspot.com/download/AMIfv97_5T-Y6V3NJ4N_TWBeoGZriUkx-Msn0sPp6MAUeovFosXsSh1uNSpBeSEaEaKN-SCAlz_xgJpB7qJPelNyL-XhORqyaQ1Ys5HF9Ba1lwUK1dyOxDGV8UQm6Tg7yT09G5RbvJboXhL4-Hyk80SQcv1mg9jVu5IK3bD3n-X_6TgkapBlqJ4


See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.

If you suspect that the result above is incorrect, try re-doing that job on the test case report page.

This bug has been closed for more than 14 weeks. Removing security view restrictions.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot

This bug has been closed for more than 14 weeks. Removing security view restrictions.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot

This bug has been closed for more than 14 weeks. Removing security view restrictions.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot