Is this a vulnerability to move VM

Stack BackTrace of Crash
hread ‘main’ panicked at ‘index out of bounds: the len is 1 but the index is 12’, /home/user/diem-fuzz/diem-main/language/vm/src/access.rs:48:23

stack backtrace:

0: 0x5596c186cda0 - std::backtrace_rs::backtrace::libunwind::trace::h4dee703919bfd40a at /rustc/07e0e2ec268c140e607e1ac7f49f145612d0f597/library/std/src/…/…/backtrace/src/backtrace/libunwind.rs:90:5

16: 0x5596c178fbae - <usize as core::slice::index::SliceIndex<[T]>>::index::h7e97fe462d76092f at /rustc/07e0e2ec268c140e607e1ac7f49f145612d0f597/library/core/src/slice/index.rs:182:10

17: 0x5596c173bf57 - core::slice::index::<impl core::ops::index::Index for [T]>::index::ha663f84695c41ec6 at /rustc/07e0e2ec268c140e607e1ac7f49f145612d0f597/library/core/src/slice/index.rs:15:9

18: 0x5596c1748f1f - <alloc::vec::Vec<T,A> as core::ops::index::Index>::index::h30813ef6a4220be8 at /rustc/07e0e2ec268c140e607e1ac7f49f145612d0f597/library/alloc/src/vec/mod.rs:2381:9

19: 0x5596c173c522 - vm::access::ModuleAccess::module_handle_at::h272a854c3248fe44 at /home/user/diem-fuzz/diem-main/language/vm/src/access.rs:48:23

20: 0x5596c173c30c - vm::access::ModuleAccess::self_handle::he917602138e64332 at /home/user/diem-fuzz/diem-main/language/vm/src/access.rs:27:22

21: 0x5596c173c484 - vm::access::ModuleAccess::address::hb18808db0913bcd1 at /home/user/diem-fuzz/diem-main/language/vm/src/access.rs:44:36

22: 0x5596c07c2599 - move_vm_runtime::runtime::VMRuntime::publish_module::h359b39c6b79c8134 at /home/user/diem-fuzz/diem-main/language/move-vm/runtime/src/runtime.rs:80:12

23: 0x5596c07c20e8 - move_vm_runtime::session::Session::publish_module::hcb0cdbc77157e56d at /home/user/diem-fuzz/diem-main/language/move-vm/runtime/src/session.rs:161:9

24: 0x5596c07c0cd6 - module_publish_temp::publish_2::h6de73e6f1eb31be6 at /home/user/diem-fuzz/in_test/src/module_publish_temp.rs:365:16

25: 0x5596c07c1eb4 - module_publish_temp::main::h28147b2117ba0fce at /home/user/diem-fuzz/in_test/src/module_publish_temp.rs:403:16

The reason for this collapse is the value of self_ module_ handle_idx exceeds the length of the ModuleHandle array, so the program crashes.Would it be better to have further checks here?The input sample is in the github repository https://github.com/suirui17/input_samples.git.

Hi suirui, thank you for reporting this crash and the example input. This has been fixed in [bytecode-verifier] bound check for self_module_handle_idx by mengxu-fb · Pull Request #8389 · diem/diem · GitHub.