Predator and CL did not provide any possible suspects.
Using Code Search for the file, "localframeview.cpp" assigning to the concern owner.
Suspecting Commit#
https://chromium.googlesource.com/chromium/src/+/fa221b2627217d88cf5d8823b9330eae1d7df2fc

@joelhockey -- Could you please look into the issue, kindly re-assign if this is not related to your changes.
Thank You.

I've had a look at this.  It is the class LayoutObject that has the null reference, rather than LocalFrameView.

Reassigning to @wangxianzhu who appears to be familiar with this code.
Do you need to guard this line for the case where FrameView has been detached and is null?
https://cs.chromium.org/chromium/src/third_party/WebKit/Source/core/layout/LayoutObject.cpp?l=3483&rcl=b10ef0b9cfc8c2de5c363275a6af8068e58df525

Updated title

ClusterFuzz has detected this issue as fixed in range 485497:485520.

Detailed report: https://clusterfuzz.com/testcase?key=5786036272889856

Fuzzer: inferno_twister
Job Type: windows_syzyasan_chrome
Platform Id: windows

Crash Type: Null-dereference
Crash Address: 0x0000007b
Crash State:
  blink::LocalFrameView::ScheduleVisualUpdateForPaintInvalidationIfNeeded
  blink::LayoutObject::SetShouldDoFullPaintInvalidationWithoutGeometryChange
  blink::LayoutObject::SetShouldDoFullPaintInvalidation
  
Memory Tool: SYZYASAN

Regressed: https://clusterfuzz.com/revisions?job=windows_syzyasan_chrome&range=483471:483525
Fixed: https://clusterfuzz.com/revisions?job=windows_syzyasan_chrome&range=485497:485520

Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=5786036272889856


See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.

If you suspect that the result above is incorrect, try re-doing that job on the test case report page.

ClusterFuzz testcase 5786036272889856 is verified as fixed, so closing issue.

If this is incorrect, please add ClusterFuzz-Wrong label and re-open the issue.