Assigning the concern owner from CL --
https://chromium.googlesource.com/chromium/src/+log/b444c43df71f607a72e47e234d23801c5bdff42e..9c9a2b8dde4e141db7fb814f9ff338927741e7c1?pretty=fuller

Suspecting Commit#
https://chromium.googlesource.com/chromium/src/+/4fb42e48b7175ccfabd887dc3ebb80a1697139e7

@yosin -- Could you please look into the issue, kindly re-assign if this is not related to your changes.
Thank You.

@yosin -- Gentle Remainder. Could you please look into the issue and provide us your update.
Thank You.

ClusterFuzz has detected this issue as fixed in range 450347:450395.

Detailed report: https://cluster-fuzz.appspot.com/testcase?key=5083940131176448

Fuzzer: inferno_layout_test_unmodified
Job Type: linux_debug_content_shell_drt
Platform Id: linux

Crash Type: CHECK failure
Crash Address: 
Crash State:
  m_startPosition <= m_endPosition (#text "\n"@offsetInAnchor[0] vs. #text "Line 1
  blink::EphemeralRangeTemplate<>::EphemeralRangeTemplate
  blink::VisibleSelectionTemplate<>::toNormalizedEphemeralRange
  
Sanitizer: address (ASAN)

Regressed: https://cluster-fuzz.appspot.com/revisions?job=linux_debug_content_shell_drt&range=404238:404340
Fixed: https://cluster-fuzz.appspot.com/revisions?job=linux_debug_content_shell_drt&range=450347:450395

Reproducer Testcase: https://cluster-fuzz.appspot.com/download/AMIfv94tEjD9Cp2gjJ7RAAQ0DE28y7hEhYwyMnAQqrGe1FfUxHI7I4YYlpB5MmjSie8X8aKImpQ-MWjeg4p12IQoSwLP01PsL1PX_gSqFnc3wefbuetS4qzHvD1jEMKVNryhCymIoEN3QKUlxELfh4zzN1cUXsh5EQ?testcase_id=5083940131176448


Additional requirements: Requires Gestures

See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.

If you suspect that the result above is incorrect, try re-doing that job on the test case report page.

ClusterFuzz testcase 5083940131176448 is verified as fixed, so closing issue.

If this is incorrect, please add ClusterFuzz-Wrong label and re-open the issue.