Predator could not provide any possible suspects.

From the below CL observing some changes related to 'ComputedAccessibleNode' , hence suspecting the same
https://chromium.googlesource.com/chromium/src/+log/9c68aa74f18dd1536db656e20f71be0781387106..e35fb3af9c9e2ce800e8f5c9bca93cb650c6f738?pretty=fuller&n=10000

Suspect CL: https://chromium.googlesource.com/chromium/src/+/e35fb3af9c9e2ce800e8f5c9bca93cb650c6f738

meredithl@ -- Could you please check whether this is caused with respect to your change, if not please help us in assigning it to the right owner.

Thanks!

ClusterFuzz has detected this issue as fixed in range 558997:558998.

Detailed report: https://clusterfuzz.com/testcase?key=5153252740694016

Fuzzer: inferno_twister
Job Type: windows_asan_content_shell
Platform Id: windows

Crash Type: Null-dereference READ
Crash Address: 0x000000000070
Crash State:
  blink::ComputedAccessibleNodePromiseResolver::UpdateTreeAndResolve
  blink::FrameRequestCallbackCollection::ExecuteCallbacks
  blink::ScriptedAnimationController::ExecuteCallbacks
  
Sanitizer: address (ASAN)

Regressed: https://clusterfuzz.com/revisions?job=windows_asan_content_shell&range=538675:538682
Fixed: https://clusterfuzz.com/revisions?job=windows_asan_content_shell&range=558997:558998

Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=5153252740694016

See https://github.com/google/clusterfuzz-tools for more information.

If you suspect that the result above is incorrect, try re-doing that job on the test case report page.

ClusterFuzz testcase 5153252740694016 is verified as fixed, so closing issue as verified.

If this is incorrect, please add ClusterFuzz-Wrong label and re-open the issue.