jbroman: Can you please take a look?

The stack is similar to  bug 667260  and  bug 667253 , but I'm not sure if these are all dupes of the same bug.

Yeah, probably the same issue (well, I can't see 667253, but I assume it's similar). I have a proposed fix out for review; can just check is these are fixed once that lands.

Sorry about that, I cc'ed you on 667253.

ClusterFuzz has detected this issue as fixed in range 433834:433855.

Detailed report: https://cluster-fuzz.appspot.com/testcase?key=4657314276835328

Fuzzer: libfuzzer_v8_wasm_fuzzer
Job Type: libfuzzer_chrome_asan
Platform Id: linux

Crash Type: Heap-buffer-overflow READ 1
Crash Address: 0x60300001796e
Crash State:
  unibrow::Utf8::CalculateValue
  unibrow::Utf8::Validate
  v8::internal::wasm::ModuleDecoder::consume_string
  
Recommended Security Severity: Medium

Fixed: https://cluster-fuzz.appspot.com/revisions?job=libfuzzer_chrome_asan&range=433834:433855

Minimized Testcase (0.01 Kb): https://cluster-fuzz.appspot.com/download/AMIfv969xXB97pdIf98SdspJO9CVSNO043nXBMi64EAKUEAib2s5JUiPqVnf3O5ZcmkEILrGMPihyIp6jZu9FJ6uW-XMs6d4FE7OSmo6fkF7oejQeNx-z7-Up20SdAKXLdp3NcGzUjgM8InFsPe4faaqyA2KAKXobw?testcase_id=4657314276835328

See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reproducing.md for more information.

If you suspect that the result above is incorrect, try re-doing that job on the test case report page.

ClusterFuzz agrees that my patch fixes this, closing.

This bug has been closed for more than 14 weeks. Removing security view restrictions.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot