Hi,
I ran KLEE on revision #530407 and it found a segfault in cron. It can be reproduced via: $ printf '1*' > A $ sbase-530407/bin/cron "-nfA" Seems free() points into rubbish: AddressSanitizer:DEADLYSIGNAL ================================================================= ==2103==ERROR: AddressSanitizer: SEGV on unknown address #4 in __interceptor_free (ptr=0xbebebebebebebebe) #5 in parsefield (field=0x60c000000040 "1*", low=0, high=59, f=0x60d000000040) at cron.c:335 #6 in loadentries () at cron.c:419 #7 in main (argc=0, argv=0x7fffffffe3d8) at cron.c:528 Best, Frank