This issue is a security regression. If you are not able to fix this quickly, please revert the change that introduced it.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot

Slightly different stack.

I will take a look

ClusterFuzz has detected this issue as fixed in range 418866:418931.

Detailed report: https://cluster-fuzz.appspot.com/testcase?key=4697948464349184

Fuzzer: v8_wasm_code_fuzzer
Job Type: libfuzzer_chrome_asan
Platform Id: linux

Crash Type: Heap-double-free
Crash Address: 0x7f1d92787800
Crash State:
  v8::internal::wasm::testing::InterpretWasmModule
  ExecuteGrowMemory
  v8::internal::wasm::ThreadImpl::Execute
  
Recommended Security Severity: High

Regressed: https://cluster-fuzz.appspot.com/revisions?job=libfuzzer_chrome_asan&range=418535:418598
Fixed: https://cluster-fuzz.appspot.com/revisions?job=libfuzzer_chrome_asan&range=418866:418931

Minimized Testcase (0.07 Kb): https://cluster-fuzz.appspot.com/download/AMIfv94014Zh4dHNbt1S22XaBQ8BtK1KGQPsfFV4NrlQtgVTb0NPELtlq0RZTXf6KSgUPfle_Y6QNOE-F7sHIPAAZeQDAZ8U2i4_OaUIL_IliuGiYmNnmhiupq5z_wTjYTp3F7BqRfF7tBmHK3gQXoSQyZpT0m762g?testcase_id=4697948464349184

See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reproducing.md for more information.

If you suspect that the result above is incorrect, try re-doing that job on the test case report page.

ClusterFuzz testcase is verified as fixed, closing issue.

If this is incorrect, please add ClusterFuzz-Wrong label and re-open the issue.

This bug has been closed for more than 14 weeks. Removing security view restrictions.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot