I'll try to poke at this later or reassign if I can't get to it.

bsalomon: Could you take a look at this? Seems related to https://chromium.googlesource.com/skia/+/0a0f67ececbdf1a7f81296ed0d2cb9e3bc00e4dc

ClusterFuzz has detected this issue as fixed in range 403150:403234.

Detailed report: https://cluster-fuzz.appspot.com/testcase?key=6507511717036032

Fuzzer: inferno_canvas_wrecker
Job Type: linux_msan_chrome
Platform Id: linux

Crash Type: Use-of-uninitialized-value
Crash Address: 
Crash State:
  gpu::gles2::GLES2Implementation::BufferDataHelper
  GrGLBuffer::onUpdateData
  GrBufferAllocPool::unmap
  
Recommended Security Severity: Medium

Regressed: https://cluster-fuzz.appspot.com/revisions?job=linux_msan_chrome&range=402485:402737
Fixed: https://cluster-fuzz.appspot.com/revisions?job=linux_msan_chrome&range=403150:403234

Minimized Testcase (0.52 Kb): https://cluster-fuzz.appspot.com/download/AMIfv96xUQGmMIkD1jYWDM9CrX6GkuUkLCoN3ktDah5iYbS8l8k0Jac-7XG_ddyLVDplQh7ybL0kbgRZ2HwJJHnULrb1t4V2iQZMGPWevirRsCrOXShgWk4dyeniHZPAHzsWT2DW9Yv7LomdF8Z4doBJdpQZkzyfzQ?testcase_id=6507511717036032

See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.

If you suspect that the result above is incorrect, try re-doing that job on the test case report page.

ClusterFuzz testcase is verified as fixed, closing issue.

If this is incorrect, please add ClusterFuzz-Wrong label and re-open the issue.

This bug has been closed for more than 14 weeks. Removing security view restrictions.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot