Providing Findit results for internal purpose:

Suspected CLs	Git blame below is NOT necessarily who introduced the crash nor the owner for it. Please check the code before assigning to anyone.(No CL in the regression range changed the crashing files.)

Author: Blink Reformat
Project: chromium
Changelist: https://chromium.googlesource.com/chromium/src/+/1c8e1a7719e9d223cc84e838c9a31a0210f5878b
Time: Sat Oct 01 00:25:32 2016
The CL last changed line 108 of file V8Initializer.cpp, which is stack frame 0.

Author: wfh
Project: chromium-v8
Changelist: https://chromium.googlesource.com/v8/v8.git/+/bc44b1c627e92000cd37d46092f8bed8986f52f5
Time: Thu Jul 14 19:41:01 2016
The CL last changed line 388 of file api.cc, which is stack frame 1.

Author: wfh
Project: chromium-v8
Changelist: https://chromium.googlesource.com/v8/v8.git/+/bc44b1c627e92000cd37d46092f8bed8986f52f5
Time: Thu Jul 14 19:41:01 2016
The CL last changed line 351 of file api.cc, which is stack frame 2.

Author: vitalyr@chromium.org
Project: chromium-v8
Changelist: https://chromium.googlesource.com/v8/v8.git/+/7976ca2cbcf127d8daa3e2a32591e8d5e6355e89
Time: Fri Mar 18 20:35:07 2011
The CL last changed line 466 of file factory.cc, which is stack frame 3.

Author: yangguo@chromium.org
Project: chromium-v8
Changelist: https://chromium.googlesource.com/v8/v8.git/+/3ef16353ba3d1a0a15d663ab2487926350efbfe1
Time: Mon Sep 29 07:08:15 2014
The CL last changed line 477 of file runtime-strings.cc, which is stack frame 4.

Author: yangguo@chromium.org
Project: chromium-v8
Changelist: https://chromium.googlesource.com/v8/v8.git/+/3ef16353ba3d1a0a15d663ab2487926350efbfe1
Time: Mon Sep 29 07:08:15 2014
The CL last changed line 412 of file runtime-strings.cc, which is stack frame 5.

Author: jochen
Project: chromium-v8
Changelist: https://chromium.googlesource.com/v8/v8.git/+/c7aace4d43603cc03d90277e7bcf3cc538af1990
Time: Mon Nov 23 08:09:34 2015
The CL last changed line 139 of file execution.cc, which is stack frame 14.

Suspected Project: chromium-v8
Suspected Component: Blink>JavaScript

requesting v8 team to check the issue and help.

Yang, if you aren't a good person to look at this, feel free to re-assign.

Removing EditIssue view restrictions from ClusterFuzz filed bugs. If you believe that this issue should still be restricted, please reapply the label.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot

ClusterFuzz has detected this issue as fixed in range 435305:435409.

Detailed report: https://cluster-fuzz.appspot.com/testcase?key=5881590376038400

Fuzzer: libfuzzer_v8_serialized_script_value_fuzzer
Job Type: libfuzzer_chrome_asan
Platform Id: linux

Crash Type: UNKNOWN
Crash Address: 0x00000b9f83de
Crash State:
  blink::reportOOMErrorInMainThread
  v8::Utils::ReportOOMFailure
  v8::internal::V8::FatalProcessOutOfMemory
  
Regressed: https://cluster-fuzz.appspot.com/revisions?job=libfuzzer_chrome_asan&range=424424:424496
Fixed: https://cluster-fuzz.appspot.com/revisions?job=libfuzzer_chrome_asan&range=435305:435409

Minimized Testcase (0.49 Kb): https://cluster-fuzz.appspot.com/download/AMIfv97vWNqPPmafKyceDKlbFTlvObo3rdQuOgtg1ZHTmtXSLPUW8lquAbTRUlGMqyq71eT-z8b3TlwrvibNjvjxxHujY7y51R3iEWjiAWfAhO6Gt_8Jo76C8eOeMVI066qRiwoGcjYz0tDpFc9m_T3RFcU9LmosNg?testcase_id=5881590376038400

See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reproducing.md for more information.

If you suspect that the result above is incorrect, try re-doing that job on the test case report page.

ClusterFuzz testcase is verified as fixed, closing issue.

If this is incorrect, please add ClusterFuzz-Wrong label and re-open the issue.