Removing EditIssue view restrictions from ClusterFuzz filed bugs. If you believe that this issue should still be restricted, please reapply the label.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot

Unable to find the possible suspect from Find it.
Using the regression assigning to the concern owner, below is the regressed range -
https://chromium.googlesource.com/chromium/src/+log/c5746d7187c438798396fa2a5148de199ec7a4bb..10bcb7faee41e73e6d9396948a7b75a44a1c2038?pretty=fuller

Suspecting the Commit# 
https://chromium.googlesource.com/chromium/src/+/8fe11cb88b21b7e1c3a8830249ab30c72d556bd7

@thestig -- Could you please look into the issue, kindly re-assign if this is not related to your change.
Thank You.

https://github.com/googlei18n/sfntly/pull/75

The following revision refers to this bug:
  https://chromium.googlesource.com/chromium/src.git/+/83d38421f79045fef26de00d4c76198c06067852

commit 83d38421f79045fef26de00d4c76198c06067852
Author: thestig <thestig@chromium.org>
Date: Tue Mar 28 19:27:17 2017

Roll DEPS for sfntly de3cce5..04740d2

04740d2 Merge pull request #75 from leizleiz/morefixes
0c9b2fd Fix nits in OTFBasicEditing test.
3723ffd Fix ReadableFontData::ReadDateTimeAsLong().
126f3b3 Fix assert failures in HorizontalMetricsTable.
8fcbf51 Check offsets in FontFactory::LoadCollectionForBuilding().
b95a8f4 Avoid integer overflow in LocaTable::GlyphLength().
cccd3aa Check for integer overflow in SetupGlyfBuilders.
f1384b2 Fix more NULL pointer derefs in sfntly::Font::Builder.
7525f24 Revert commit 3e3a91a.

BUG= 659936 ,663737, 666619 , 669806 , 699510 , 705357 
TBR=behdad@chromium.org,jshin@chromium.org

Review-Url: https://codereview.chromium.org/2784563002
Cr-Commit-Position: refs/heads/master@{#460186}

[modify] https://crrev.com/83d38421f79045fef26de00d4c76198c06067852/DEPS

ClusterFuzz has detected this issue as fixed in range 460148:460187.

Detailed report: https://clusterfuzz.com/testcase?key=6066599279984640

Fuzzer: libfuzzer_sfntly_fuzzer
Job Type: libfuzzer_chrome_ubsan
Platform Id: linux

Crash Type: Integer-overflow
Crash Address: 
Crash State:
  sfntly::LocaTable::GlyphLength
  ResolveCompositeGlyphs
  sfntly::SubsetterImpl::SubsetFont
  
Sanitizer: undefined (UBSAN)

Regressed: https://clusterfuzz.com/revisions?job=libfuzzer_chrome_ubsan&range=417039:417261
Fixed: https://clusterfuzz.com/revisions?job=libfuzzer_chrome_ubsan&range=460148:460187

Reproducer Testcase: https://clusterfuzz.com/download/AMIfv9679G7D35_ai9ARoGZcUu8So0_cz3QxxQYhzTrdQFrhLZLdbGFJqzR5aZgvO5oWb_vem0w-_Jf80nppIaBTtNVhfEmUxli35yqDm6n8QfCbNeKqJ-DD_LEKa9wEhtnWnOwMAu5YcpEMbO3lXG9vVM1LWtZ_vWRzqT6fGELhus89kqYH2Q_MSiSmPQalSOl6jSm2gSC59gYvd5rc5Ig3_HHNrKuNgDbAOt_SMQFCjVPrk2Z0cW9faTBE6u_JWNA_a1lNPujZF4S7CtVaFJglTCRh5y731gvQriS__uOpyNtlnyB9mINq52WmnpHW54RFLEAEUOd1pwvKmtRoBbumLtmKivcO_G6Dy1wTaDMuH1TPz6PIeO0?testcase_id=6066599279984640


See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reproducing.md for more information.

If you suspect that the result above is incorrect, try re-doing that job on the test case report page.