Crash during instantiation of a validated asm.js module.

 Issue 694435  has been merged into this issue.

ClusterFuzz has detected this issue as fixed in range 43398:43399.

Detailed report: https://cluster-fuzz.appspot.com/testcase?key=4781095876034560

Fuzzer: mbarbella_js_mutation
Job Type: linux_asan_d8
Platform Id: linux

Crash Type: UNKNOWN WRITE
Crash Address: 0x000000000000
Crash State:
  v8::internal::Invoke
  v8::internal::CallInternal
  v8::internal::Execution::Call
  
Sanitizer: address (ASAN)

Fixed: V8: 43398:43399

Reproducer Testcase: https://cluster-fuzz.appspot.com/download/AMIfv9576t8tQe3ZoNjuyPq_OeJIRyfqjqeMawDnkzj8XsXJFPnsFgUhbwKs77bjapX54Gw1bGDCxt3uIQbEkiDu6eUbpJf_uDampOGbbq-0mIECflSnrSaDwQUv_4HkaIEMbn1Z84ElDb8CBw8ZSNSbiHaRKH75zyx3-ngHOmcDwHwNPaIA6Y-A7DM7FNOBGv747m5VkMnlbLE3IszqYBb8LaHyLh7OHlgbuTNfFW_U8D-KKxsoZ7JtHyF0fRKnQFsN5OlqT6pL5VyicUCmuZcW7XK2wz1lp0hD2a5sYo0i_GPlCTEHsX4L2T3OOp5EDtN2P8HSNV5JItU0WYZWbCrofgkqVz4IKgCDbb7SX0NiwdiHz3CQVr9IT7GfKwGK5JZJZQHC0B08g7LSxrZNg58mILYDvH8Jcg?testcase_id=4781095876034560


See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.

If you suspect that the result above is incorrect, try re-doing that job on the test case report page.

ClusterFuzz testcase 4781095876034560 is verified as fixed, so closing issue.

If this is incorrect, please add ClusterFuzz-Wrong label and re-open the issue.