mtklein: the stack trace is a bit messed up, but this looks like a Skia issue (JPG image reproduce, blaming down to third_party/skia/src/opts/SkNx_sse.h). The histogram/PersistentMemoryAllocator stuff looks like a red herring. Can you please take a look?

Not sure what's up, but nothing too much has changed in SkNx lately.  I suspect it's the code that's using it, mipmap generation?

ClusterFuzz has detected this issue as fixed in range 444508:444579.

Detailed report: https://cluster-fuzz.appspot.com/testcase?key=5422930805915648

Fuzzer: cdiehl_peach
Job Type: linux_asan_chrome_chromeos
Platform Id: linux

Crash Type: UNKNOWN
Crash Address: 0x7f40e76b40e8
Crash State:
  base::PersistentMemoryAllocator::AllocateImpl
  void downsample_3_3<ColorTypeFilter_NUMBER>
  base::PersistentMemoryAllocator::AllocateImpl
  
Sanitizer: address (ASAN)

Recommended Security Severity: Medium

Fixed: https://cluster-fuzz.appspot.com/revisions?job=linux_asan_chrome_chromeos&range=444508:444579

Minimized Testcase (0.30 Kb): https://cluster-fuzz.appspot.com/download/AMIfv962ZJU9JmyY2LAv4z3A29AUpdA78eBH17MR48TuG5m8Aresx-an_HCD_PIKpzhQ__1zAsHE1Atfb93rI5Dr_gGUev7ghkvrexTr617M1-YSkojx3mLlax48AYsJpUQZXJxSJHX1jjkf2cmWVHSh-SmdByXz7ZsyL40R6mzP0L1wUbfABjGjrAhTDY1ltoZN601dRR2y4Pwne_SonW2PR5aqeQ2YVnvYfqqsFvNNefVJfL6ZZ4I_SzssD5ffhZI3x4t2DI2Y91fvlJuvGWlMpS7Z-CzFRyKkUA1z7waEGaRYNNwB6VFKpYvgg8awGMlt2NQrrAwIA84Z6iy6Z0CwfroL46r-UzwTZ44FWkFzHzFg4S6dhBc?testcase_id=5422930805915648

See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.

If you suspect that the result above is incorrect, try re-doing that job on the test case report page.

ClusterFuzz testcase 5422930805915648 is verified as fixed, so closing issue.

If this is incorrect, please add ClusterFuzz-Wrong label and re-open the issue.

Your change meets the bar and is auto-approved for M57. Please go ahead and merge the CL to branch 2987 manually. Please contact milestone owner if you have questions.
Owners: amineer@(clank), cmasso@(bling), ketakid@(cros), govind@(desktop)

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot

Please merge your change to M57 branch 2987 before 5:00 PM PT, Monday (02/06/) so we can pick it up for next Beta release. Thank you.

This issue has been approved for a merge. Please merge the fix to any appropriate branches as soon as possible!

If all merges have been completed, please remove any remaining Merge-Approved labels from this issue.

Thanks for your time! To disable nags, add the Disable-Nags label.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot

If possible, please merge your change to M57 branch 2987 before 5:00 PM PT today, Tuesday (02/07/17) so we can pick it up for tomorrow's Beta release. Thank you.

I don't think anyone made a change to anything here.

Please merge your change to M57 branch 2987 before 5:00 PM PT, Friday 02/10 (sooner the better please) so we can take it in for next week beta release. Thank you.

Per comment #15, this is no change is made here. If M57 merge is not needed, then please remove "Merge-Approved-57" label. Thank you.

This issue has been approved for a merge. Please merge the fix to any appropriate branches as soon as possible!

If all merges have been completed, please remove any remaining Merge-Approved labels from this issue.

Thanks for your time! To disable nags, add the Disable-Nags label.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot

This bug has been closed for more than 14 weeks. Removing security view restrictions.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot