No CL in the regression range changes the crashed files. The result is the blame information.

Author: wangxianzhu
Project: chromium
Changelist: https://chromium.googlesource.com/chromium/src//+/1a879804714354bfc3ea468a9489e6871913deb8
Time: Sun Dec 06 20:45:25 2015
The CL last changed line 1912 of file LayoutBlockFlow.cpp, which is stack frame 4.

Suspected Project: chromium
Suspected Component: Blink>Layout
=================================
wangxianzhu@: Could you please look into this issue if it is related to your change, else please help us in assigning it to the right owner.

Thanks!

This is not a real crash and not important at all.

The following revision refers to this bug:
  https://chromium.googlesource.com/chromium/src.git/+/063e851233a382696bf37ed989e322d3eced1efc

commit 063e851233a382696bf37ed989e322d3eced1efc
Author: bugsnash <bugsnash@chromium.org>
Date: Wed Aug 10 05:41:05 2016

Prevent integer overflow in ComputedStyle::outlineOutsetExtent.

Uses SaturatedArithmetic::saturatedAddition to prevent overflow.

BUG= 630524 

Review-Url: https://codereview.chromium.org/2231623002
Cr-Commit-Position: refs/heads/master@{#410968}

[add] https://crrev.com/063e851233a382696bf37ed989e322d3eced1efc/third_party/WebKit/LayoutTests/fast/css/outline-offset-large-expected.html
[add] https://crrev.com/063e851233a382696bf37ed989e322d3eced1efc/third_party/WebKit/LayoutTests/fast/css/outline-offset-large.html
[modify] https://crrev.com/063e851233a382696bf37ed989e322d3eced1efc/third_party/WebKit/Source/core/style/ComputedStyle.cpp

ClusterFuzz has detected this issue as fixed in range 410916:411073.

Detailed report: https://cluster-fuzz.appspot.com/testcase?key=6534040505286656

Fuzzer: inferno_twister
Job Type: linux_ubsan_chrome
Platform Id: linux

Crash Type: Integer-overflow
Crash Address: 
Crash State:
  blink::ComputedStyle::outlineOutsetExtent
  blink::LayoutBox::computeVisualEffectOverflowOutsets
  blink::LayoutBox::addVisualEffectOverflow
  
Regressed: https://cluster-fuzz.appspot.com/revisions?job=linux_ubsan_chrome&range=370022:370027
Fixed: https://cluster-fuzz.appspot.com/revisions?job=linux_ubsan_chrome&range=410916:411073

Minimized Testcase (0.10 Kb):
Download: https://cluster-fuzz.appspot.com/download/AMIfv96W1AoWZ9CdgVgiBQav61d7BPIJFVS2Ad5k0xPxLUF59IfWdiQDqX5-QQjR3QgKBkAFayVePWOthLTSQkJhhqBLVmZewv1GN4o0-40X88qt5LJHmfRhcy8sL7k_T-_YlaFnxL9hlKJ8SgqldTCV3-ERQtFYbA?testcase_id=6534040505286656
<style>
* { animation-name: cfpulse91;0.431400); outline-offset: 2147483646px; outline-style: outset;


Additional requirements: Requires HTTP

See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.

If you suspect that the result above is incorrect, try re-doing that job on the test case report page.

Removing EditIssue view restrictions from ClusterFuzz filed bugs. If you believe that this issue should still be restricted, please reapply the label.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot