Looks similar to  bug 623991  and  bug 624820 , but since stacktraces are different, I file it separately for now.

This issue is a security regression. If you are not able to fix this quickly, please revert the change that introduced it.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot

M53 beta launch is coming soon.Your bug is labelled as Beta ReleaseBlock, pls make sure to land the fix before 6:00 PM PST, Monday (07/18/16). Thank you.

Detailed report: https://cluster-fuzz.appspot.com/testcase?key=5473675424038912

Fuzzer: inferno_layout_test_unmodified
Job Type: windows_syzyasan_chrome
Platform Id: windows

Crash Type: Corrupt-block
Crash Address: 0x7fffd030
Crash State:
  sk_free_releaseproc
  ui::AXNode::Destroy
  SkBitmap::~SkBitmap
  
Regressed: https://cluster-fuzz.appspot.com/revisions?job=windows_syzyasan_chrome&range=405844:405858

Minimized Testcase (12.98 Kb): https://cluster-fuzz.appspot.com/download/AMIfv97cVVO6suAjtSiA55KQ-cpCOOEwrtq4KUZyg1k4GKh6s_re8-O8Z-LYmVBBUh5A1Yif1pRmRUMTmIFVhpeKt2_W5trlCSlBpuwmhs2Qb1SrEvAA7KRvgLiuVtjhTDRT6-3bBdSBE7oUC0I0JxPTP_10ovug0w?testcase_id=5473675424038912

Filer: mmoroz

See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.

M53 beta launch is next week.Your bug is labelled as Beta ReleaseBlock, pls make sure to land the fix before 6:00 PM PST, Friday (07/22/16). Thank you.

This bug has been closed for more than 14 weeks. Removing security view restrictions.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot