Predator could not provide any possible suspects.

Using the CL for the file, “ListItemOrdinal.cpp” assigning to concern owner for his recent work on this file.

Suspect CL : https://chromium.googlesource.com/chromium/src/+/6541835c4e9db26be7685581b1f263cf9a3f17c0

kojii@ -- Could you please look into this issue, kindly reassign if it has nothing to do with your changes.


Thank You.

ClusterFuzz has detected this issue as fixed in range 510436:510509.

Detailed report: https://clusterfuzz.com/testcase?key=5649836379734016

Fuzzer: ifratric-browserfuzzer-v3
Job Type: linux_ubsan_vptr_chrome
Platform Id: linux

Crash Type: CHECK failure
Crash Address: 
Crash State:
  list_node in ListItemOrdinal.cpp
  blink::ListItemOrdinal::ItemInsertedOrRemoved
  blink::LayoutObjectChildList::RemoveChildNode
  
Sanitizer: undefined (UBSAN)

Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=467234:467250
Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=510436:510509

Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=5649836379734016

See https://github.com/google/clusterfuzz-tools for more information.

If you suspect that the result above is incorrect, try re-doing that job on the test case report page.