This crash occurs very frequently on mac and windows platforms and is likely preventing the fuzzer marty_html_twiddler from making much progress. Fixing this will allow more bugs to be found.

Marking this bug as a blocker for next Beta release.

If this is incorrect, please add ClusterFuzz-Wrong label and remove the ReleaseBlock-Beta label.

M69 branch is coming soon on July 19th, Your bug is marked as ReleaseBlock-Beta for M69. Please try to land the fix ASAP to trunk in order to prevent many merges going after M69 branch. This will also help us to branch M69 from high quality trunk. Thank you.

ClusterFuzz has detected this issue as fixed in range 568005:568006.

Detailed report: https://clusterfuzz.com/testcase?key=6197341024157696

Fuzzer: marty_html_twiddler
Job Type: linux_asan_content_shell_drt
Platform Id: linux

Crash Type: Null-dereference READ
Crash Address: 0x000000000038
Crash State:
  blink::FirstLetterPseudoElement::DidRecalcStyle
  blink::Element::RecalcStyle
  blink::Element::UpdatePseudoElement
  
Sanitizer: address (ASAN)

Fixed: https://clusterfuzz.com/revisions?job=linux_asan_content_shell_drt&range=568005:568006

Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=6197341024157696

See https://github.com/google/clusterfuzz-tools for more information.

If you suspect that the result above is incorrect, try re-doing that job on the test case report page.

ClusterFuzz testcase 6197341024157696 is verified as fixed, so closing issue as verified.

If this is incorrect, please add ClusterFuzz-Wrong label and re-open the issue.