Chromium: http://code.google.com/p/chromium/issues/detail?id=112433 Detailed report: https://cluster-fuzz.appspot.com/testcase?key=17412173 Fuzzer: Bj_doc_fuzzer Crash Type: UNKNOWN Crash Address: 0x000000000005 Crash State: - crash stack - WebCore::CSSStyleSelector::createTransformOperations WebCore::CSSStyleSelector::applyProperty void WebCore::CSSStyleSelector::applyDeclaration<false> Regressed: https://cluster-fuzz.appspot.com/revisions?range=119626:119630 Minimized Testcase (0.22 Kb): https://cluster-fuzz.appspot.com/download/AMIfv97uyKzxrsY9UggZ7Arq2q4AKI6IyCNYe5vdeEnWfKUZU0_aduEx67OaSp1549s7iYaCGA0xvoDXR8Tdx_ryzQuNSyjjAlktjowZLO0orB2TSodvNUmNSGs9SEXfFHlXgvjZgVb7dI0LGqYQpyEaFpMe-2Dl-g
These automated reports to locked-away bugs are not helpful.
Again, sorry about the bad report. I would attach the repro, but I found out that it's fixed on trunk, so I'll leave this bug as is.