Detailed report: https://cluster-fuzz.appspot.com/testcase?key=5701644872581120

Fuzzer: inferno_layout_test_unmodified
Job Type: windows_syzyasan_chrome
Platform Id: windows

Crash Type: Corrupt-block
Crash Address: 0x7fff1030
Crash State:
  sk_free_releaseproc
  CXML_DataBufAcc::Release
  SkBitmap::~SkBitmap
  

Unminimized Testcase: https://cluster-fuzz.appspot.com/download/AMIfv950lK3dG4zKN2tSQETK-mu7K_ZuNPc_PSLuIIezLnDYIwU88bA4_jNW2cxnGbFaLg3zjwJLJXXOePGCaZ7Q22ieHFU7P7yaQ-NVV1ji7olROw7N34KBo7taeCCFhaOMFqctLVrTuHQO2MEY0ibArojMVlf5NQ?testcase_id=5701644872581120


Filer: mmoroz

See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.

reed: Uh oh! This issue still open and hasn't been updated in the last 14 days. This is a serious vulnerability, and we want to ensure that there's progress. Could you please leave an update with the current status and any potential blockers?

If you're not the right owner for this issue, could you please remove yourself as soon as possible or help us find the right one?

If the issue is fixed or you can't reproduce it, please close the bug. If you've started working on a fix, please set the status to Started.

Thanks for your time! To disable nags, add the Disable-Nags label.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot

This bug has been closed for more than 14 weeks. Removing security view restrictions.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot