Assigning to the concern owner from Predator results --
The result is a list of CLs that change the crashed files. 

Author: Kent Tamura
Project: chromium
Changelist: https://chromium.googlesource.com/chromium/src/+/5f5c0dba3c72ae92899db2b355ca36c9da7b49fb
Time: Tue Jun 06 06:40:20 2017
File ContainerNode.cpp is changed in this cl (and is part of stack frame #3, "blink::ContainerNode::AdoptAndInsertBefore::operator"; frame #4, "void blink::ContainerNode::InsertNodeVector"; frame #5, "blink::ContainerNode::ReplaceChild")
Minimum distance from crash line to modified line: 5. (file: ContainerNode.cpp, crashed on: 513, modified: 508).

@ tkent: Assigning to you, kindly take a look into it. Please help us to find an owner if not with respect to your change.

Thanks.!

ClusterFuzz has detected this issue as fixed in range 477533:477555.

Detailed report: https://clusterfuzz.com/testcase?key=6488103547305984

Fuzzer: bj_broddelwerk
Job Type: linux_asan_chrome_mp
Platform Id: linux

Crash Type: Null-dereference READ
Crash Address: 0x000000000020
Crash State:
  blink::Range::insertNode
  blink::V8Range::insertNodeMethodCallback
  v8::internal::FunctionCallbackArguments::Call
  
Sanitizer: address (ASAN)

Regressed: https://clusterfuzz.com/revisions?job=linux_asan_chrome_mp&range=477224:477239
Fixed: https://clusterfuzz.com/revisions?job=linux_asan_chrome_mp&range=477533:477555

Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=6488103547305984


See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.

If you suspect that the result above is incorrect, try re-doing that job on the test case report page.

ClusterFuzz testcase 6488103547305984 is verified as fixed, so closing issue.

If this is incorrect, please add ClusterFuzz-Wrong label and re-open the issue.