On Sat, Feb 20, 2021 at 05:43:55PM -0500, Nathaniel Beaver wrote: > Steps to reproduce: > Compile with -fsanitize=address, then run: > > info -f reproduce_bug.info > > Expected behavior: > > info does not trigger AddressSanitizer errors. > > Actual behavior: > > AddressSanitizer reports a heap-buffer-overflow from scan_node_contents() in > info/info-utils.c:1676 > > Comments: > This file was generated by afl-fuzz; I don't understand how it creates a > heap buffer overflow. > > Valgrind also reports invalid reads in various functions (see attached).
Thank you for the report. It is likely that we will fix it at some point although I couldn't tell you when this would be.
