Providing Findit details for internal purpose:
Suspected CLs	
---------------
The result is a list of CLs that change the crashed files.

Author: mlippautz
Project: chromium-v8
Changelist: https://chromium.googlesource.com/v8/v8.git/+/6a5e24b29b4438185ed04663794962274501c478
Time: Wed Apr 06 11:38:31 2016
The CL last changed line 4644 of file heap.cc, which is stack frame 3.


Suspected Project: chromium-v8
Suspected Component: Blink>JavaScript

mlippautz@, Could you please check whether this is caused with respect to your change, if not please help us in assigning it to the right owner.

Assigning to this weeks memory sheriff (https://g3doc.corp.google.com/company/teams/v8/sheriffing.md).

ClusterFuzz has detected this issue as fixed in range 421108:421147.

Detailed report: https://cluster-fuzz.appspot.com/testcase?key=5138662667059200

Fuzzer: attekett_dom_fuzzer
Job Type: linux_asan_chrome_media
Platform Id: linux

Crash Type: UNKNOWN READ
Crash Address: 0x000000000000
Crash State:
  v8::internal::Heap::Contains
  v8::internal::VerifyPointersVisitor::VisitPointers
  v8::internal::StandardFrame::IterateCompiledFrame
  
Regressed: https://cluster-fuzz.appspot.com/revisions?job=linux_asan_chrome_media&range=421045:421108
Fixed: https://cluster-fuzz.appspot.com/revisions?job=linux_asan_chrome_media&range=421108:421147

Minimized Testcase (0.35 Kb):
Download: https://cluster-fuzz.appspot.com/download/AMIfv96rGxMIUdTSfij3rcNodSyhFsdnBxFBtZ9vEKc92Fadru5MN3pZmZF0g5RiOYWKrPClI5Cc0hniiPF4g7oSwqZhtPxJMC1Rk76AZvpI5ENyURYhrOJ50scjjoeYzEvpfP6verU2krnawCc4SVfpeYPk6fMSmg?testcase_id=5138662667059200
<script>
					    document.write('<st' + 'yle type="text/css">\n' +
					    '#main { display: none; }\n' +
					    '</st' + 'yle>');
					</script>
				<form id="frmSwfRedirect" action="/tr/#/home">
<script>
if(DetectFlashVer()){document.forms["frmSwfRedirect"];}
</script><script>
							document.forms["frmSwfRedirect"].submit();
			        </script>


See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.

If you suspect that the result above is incorrect, try re-doing that job on the test case report page.

ClusterFuzz testcase is verified as fixed, closing issue.

If this is incorrect, please add ClusterFuzz-Wrong label and re-open the issue.

Removing EditIssue view restrictions from ClusterFuzz filed bugs. If you believe that this issue should still be restricted, please reapply the label.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot