Removing EditIssue view restrictions from ClusterFuzz filed bugs. If you believe that this issue should still be restricted, please reapply the label.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot

ClusterFuzz has detected this issue as fixed in range 435261:438085.

Detailed report: https://cluster-fuzz.appspot.com/testcase?key=6615612165193728

Fuzzer: ifratric-browserfuzzer-v3
Job Type: linux_ubsan_chrome
Platform Id: linux

Crash Type: Integer-overflow
Crash Address: 
Crash State:
  blink::IntPoint::move
  blink::operator+=
  move
  
Regressed: https://cluster-fuzz.appspot.com/revisions?job=linux_ubsan_chrome&range=424963:424978
Fixed: https://cluster-fuzz.appspot.com/revisions?job=linux_ubsan_chrome&range=435261:438085

Minimized Testcase (2.63 Kb): https://cluster-fuzz.appspot.com/download/AMIfv95bzdYgcWaSY9OXLyvnOZYMoyPV-CgjBVZbss7dByPI6sk0CK4Pg8otFmFhzGQY-nWPebPkvyB-XMjYEWY1_X2h_MWnRBhdlscNymdpIXdPCqStxcTG22zjXuGt2MPVc7pUedWB-uWfzQK19xrrI836qWn5ew?testcase_id=6615612165193728

See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.

If you suspect that the result above is incorrect, try re-doing that job on the test case report page.

ClusterFuzz testcase 6615612165193728 is verified as fixed, so closing issue.

If this is incorrect, please add ClusterFuzz-Wrong label and re-open the issue.