bug-bash
[Top][All Lists]
Advanced

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: AddressSanitizer: heap-buffer-overflow _rl_find_prev_mbchar_internal


From: Eduardo Bustamante
Subject: Re: AddressSanitizer: heap-buffer-overflow _rl_find_prev_mbchar_internal / expand_prompt
Date: Wed, 14 Jun 2017 10:19:24 -0500
User-agent: NeoMutt/20170113 (1.7.2)

On Tue, Jun 13, 2017 at 04:30:23PM -0400, Chet Ramey wrote:
[...]
> I can't reproduce it with asan or without on Mac OS X. I'll look around
> for a Linux system with asan to run it on.

All these inputs seem to trigger the same problem. You'll find the
stacktrace as reported by ASAN first, and then the corresponding input
base64 encoded.


==12445==ERROR: AddressSanitizer: heap-buffer-overflow on address 
0x60d00000c159 at pc 0x7f0b81373063 bp 0x7ffc11229040 sp 0x7ffc112287f0
READ of size 138 at 0x60d00000c159 thread T0
    #0 0x7f0b81373062  (/usr/lib/x86_64-linux-gnu/libasan.so.3+0x3c062)
    #1 0x55787f2df88b in _rl_find_prev_mbchar_internal 
(/home/dualbus/src/gnu/bash-build/bash+0x25d88b)
    #2 0x55787f2e035c in _rl_find_prev_mbchar 
(/home/dualbus/src/gnu/bash-build/bash+0x25e35c)
    #3 0x55787f2aeca1 in expand_prompt 
(/home/dualbus/src/gnu/bash-build/bash+0x22cca1)
    #4 0x55787f2ba190 in rl_message 
(/home/dualbus/src/gnu/bash-build/bash+0x238190)
    #5 0x55787f2a8986 in rl_display_search 
(/home/dualbus/src/gnu/bash-build/bash+0x226986)
    #6 0x55787f2adab7 in _rl_isearch_dispatch 
(/home/dualbus/src/gnu/bash-build/bash+0x22bab7)
    #7 0x55787f2adcae in rl_search_history 
(/home/dualbus/src/gnu/bash-build/bash+0x22bcae)
    #8 0x55787f2a87ac in rl_reverse_search_history 
(/home/dualbus/src/gnu/bash-build/bash+0x2267ac)
    #9 0x55787f27e30d in _rl_dispatch_subseq 
(/home/dualbus/src/gnu/bash-build/bash+0x1fc30d)
    #10 0x55787f27dee8 in _rl_dispatch 
(/home/dualbus/src/gnu/bash-build/bash+0x1fbee8)
    #11 0x55787f27d727 in readline_internal_char 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb727)
    #12 0x55787f27d7b9 in readline_internal_charloop 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb7b9)
    #13 0x55787f27d7dd in readline_internal 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb7dd)
    #14 0x55787f27ce93 in readline 
(/home/dualbus/src/gnu/bash-build/bash+0x1fae93)
    #15 0x55787f238136 in edit_line 
(/home/dualbus/src/gnu/bash-build/bash+0x1b6136)
    #16 0x55787f235aa4 in read_builtin 
(/home/dualbus/src/gnu/bash-build/bash+0x1b3aa4)
    #17 0x55787f14bc89 in execute_builtin 
(/home/dualbus/src/gnu/bash-build/bash+0xc9c89)
    #18 0x55787f14d89f in execute_builtin_or_function 
(/home/dualbus/src/gnu/bash-build/bash+0xcb89f)
    #19 0x55787f14b11f in execute_simple_command 
(/home/dualbus/src/gnu/bash-build/bash+0xc911f)
    #20 0x55787f138f42 in execute_command_internal 
(/home/dualbus/src/gnu/bash-build/bash+0xb6f42)
    #21 0x55787f2230f4 in parse_and_execute 
(/home/dualbus/src/gnu/bash-build/bash+0x1a10f4)
    #22 0x55787f104401 in run_one_command 
(/home/dualbus/src/gnu/bash-build/bash+0x82401)
    #23 0x55787f1028da in main (/home/dualbus/src/gnu/bash-build/bash+0x808da)
    #24 0x7f0b80b8b2b0 in __libc_start_main 
(/lib/x86_64-linux-gnu/libc.so.6+0x202b0)
    #25 0x55787f101749 in _start (/home/dualbus/src/gnu/bash-build/bash+0x7f749)
0x60d00000c159 is located 0 bytes to the right of 137-byte region 
[0x60d00000c0d0,0x60d00000c159)
allocated by thread T0 here:
    #0 0x7f0b813f8d28 in malloc (/usr/lib/x86_64-linux-gnu/libasan.so.3+0xc1d28)
    #1 0x55787f211d95 in xmalloc 
(/home/dualbus/src/gnu/bash-build/bash+0x18fd95)
    #2 0x55787f2ae574 in expand_prompt 
(/home/dualbus/src/gnu/bash-build/bash+0x22c574)
    #3 0x55787f2ba190 in rl_message 
(/home/dualbus/src/gnu/bash-build/bash+0x238190)
    #4 0x55787f2a8986 in rl_display_search 
(/home/dualbus/src/gnu/bash-build/bash+0x226986)
    #5 0x55787f2adab7 in _rl_isearch_dispatch 
(/home/dualbus/src/gnu/bash-build/bash+0x22bab7)
    #6 0x55787f2adcae in rl_search_history 
(/home/dualbus/src/gnu/bash-build/bash+0x22bcae)
    #7 0x55787f2a87ac in rl_reverse_search_history 
(/home/dualbus/src/gnu/bash-build/bash+0x2267ac)
    #8 0x55787f27e30d in _rl_dispatch_subseq 
(/home/dualbus/src/gnu/bash-build/bash+0x1fc30d)
    #9 0x55787f27dee8 in _rl_dispatch 
(/home/dualbus/src/gnu/bash-build/bash+0x1fbee8)
    #10 0x55787f27d727 in readline_internal_char 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb727)
    #11 0x55787f27d7b9 in readline_internal_charloop 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb7b9)
    #12 0x55787f27d7dd in readline_internal 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb7dd)
    #13 0x55787f27ce93 in readline 
(/home/dualbus/src/gnu/bash-build/bash+0x1fae93)
    #14 0x55787f238136 in edit_line 
(/home/dualbus/src/gnu/bash-build/bash+0x1b6136)
    #15 0x55787f235aa4 in read_builtin 
(/home/dualbus/src/gnu/bash-build/bash+0x1b3aa4)
    #16 0x55787f14bc89 in execute_builtin 
(/home/dualbus/src/gnu/bash-build/bash+0xc9c89)
    #17 0x55787f14d89f in execute_builtin_or_function 
(/home/dualbus/src/gnu/bash-build/bash+0xcb89f)
    #18 0x55787f14b11f in execute_simple_command 
(/home/dualbus/src/gnu/bash-build/bash+0xc911f)
    #19 0x55787f138f42 in execute_command_internal 
(/home/dualbus/src/gnu/bash-build/bash+0xb6f42)
    #20 0x55787f2230f4 in parse_and_execute 
(/home/dualbus/src/gnu/bash-build/bash+0x1a10f4)
    #21 0x55787f104401 in run_one_command 
(/home/dualbus/src/gnu/bash-build/bash+0x82401)
    #22 0x55787f1028da in main (/home/dualbus/src/gnu/bash-build/bash+0x808da)
    #23 0x7f0b80b8b2b0 in __libc_start_main 
(/lib/x86_64-linux-gnu/libc.so.6+0x202b0)
SUMMARY: AddressSanitizer: heap-buffer-overflow 
(/usr/lib/x86_64-linux-gnu/libasan.so.3+0x3c062) 
Shadow bytes around the buggy address:
  0x0c1a7fff97d0: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
  0x0c1a7fff97e0: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
  0x0c1a7fff97f0: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
  0x0c1a7fff9800: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
  0x0c1a7fff9810: fa fa fa fa fa fa fa fa fa fa 00 00 00 00 00 00
=>0x0c1a7fff9820: 00 00 00 00 00 00 00 00 00 00 00[01]fa fa fa fa
  0x0c1a7fff9830: fa fa fa fa fd fd fd fd fd fd fd fd fd fd fd fd
  0x0c1a7fff9840: fd fd fd fd fd fd fa fa fa fa fa fa fa fa fd fd
  0x0c1a7fff9850: fd fd fd fd fd fd fd fd fd fd fd fd fd fd fd fd
  0x0c1a7fff9860: fa fa fa fa fa fa fa fa fd fd fd fd fd fd fd fd
  0x0c1a7fff9870: fd fd fd fd fd fd fd fd fd fd fa fa fa fa fa fa
Shadow byte legend (one shadow byte represents 8 application bytes):
  Addressable:           00
  Partially addressable: 01 02 03 04 05 06 07 
  Heap left redzone:       fa
  Heap right redzone:      fb
  Freed heap region:       fd
  Stack left redzone:      f1
  Stack mid redzone:       f2
  Stack right redzone:     f3
  Stack partial redzone:   f4
  Stack after return:      f5
  Stack use after scope:   f8
  Global redzone:          f9
  Global init order:       f6
  Poisoned by user:        f7
  Container overflow:      fc
  Array cookie:            ac
  Intra object redzone:    bb
  ASan internal:           fe
  Left alloca redzone:     ca
  Right alloca redzone:    cb
==12445==ABORTING

INPUT
GwMWF/zuFQAXCxcXFwAD6FNTALwAABAAgCkZGRkZ/zpQFxkZGRkZGRcXIH/6AAD6jlxchDP8GQAB
AFhLYEpLZ0tKOEsQSz0aGgIZGSEZAID/GRkZGRkZS0tXS0tLAAAAAEtLHBMZWmBKS0tLSjhLEEtL
S0tKS0tLSj0+EEtLHBkZGRkZGbS8Ehn/OlAXGRkZGRkZFxcgLA==



==12456==ERROR: AddressSanitizer: heap-buffer-overflow on address 
0x60d00000cd8f at pc 0x7ffb5bb14063 bp 0x7fff1f7e1e40 sp 0x7fff1f7e15f0
READ of size 144 at 0x60d00000cd8f thread T0
    #0 0x7ffb5bb14062  (/usr/lib/x86_64-linux-gnu/libasan.so.3+0x3c062)
    #1 0x5629fe96888b in _rl_find_prev_mbchar_internal 
(/home/dualbus/src/gnu/bash-build/bash+0x25d88b)
    #2 0x5629fe96935c in _rl_find_prev_mbchar 
(/home/dualbus/src/gnu/bash-build/bash+0x25e35c)
    #3 0x5629fe937ca1 in expand_prompt 
(/home/dualbus/src/gnu/bash-build/bash+0x22cca1)
    #4 0x5629fe943190 in rl_message 
(/home/dualbus/src/gnu/bash-build/bash+0x238190)
    #5 0x5629fe931986 in rl_display_search 
(/home/dualbus/src/gnu/bash-build/bash+0x226986)
    #6 0x5629fe936784 in _rl_isearch_dispatch 
(/home/dualbus/src/gnu/bash-build/bash+0x22b784)
    #7 0x5629fe936cae in rl_search_history 
(/home/dualbus/src/gnu/bash-build/bash+0x22bcae)
    #8 0x5629fe9317cb in rl_forward_search_history 
(/home/dualbus/src/gnu/bash-build/bash+0x2267cb)
    #9 0x5629fe90730d in _rl_dispatch_subseq 
(/home/dualbus/src/gnu/bash-build/bash+0x1fc30d)
    #10 0x5629fe906ee8 in _rl_dispatch 
(/home/dualbus/src/gnu/bash-build/bash+0x1fbee8)
    #11 0x5629fe906727 in readline_internal_char 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb727)
    #12 0x5629fe9067b9 in readline_internal_charloop 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb7b9)
    #13 0x5629fe9067dd in readline_internal 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb7dd)
    #14 0x5629fe905e93 in readline 
(/home/dualbus/src/gnu/bash-build/bash+0x1fae93)
    #15 0x5629fe8c1136 in edit_line 
(/home/dualbus/src/gnu/bash-build/bash+0x1b6136)
    #16 0x5629fe8beaa4 in read_builtin 
(/home/dualbus/src/gnu/bash-build/bash+0x1b3aa4)
    #17 0x5629fe7d4c89 in execute_builtin 
(/home/dualbus/src/gnu/bash-build/bash+0xc9c89)
    #18 0x5629fe7d689f in execute_builtin_or_function 
(/home/dualbus/src/gnu/bash-build/bash+0xcb89f)
    #19 0x5629fe7d411f in execute_simple_command 
(/home/dualbus/src/gnu/bash-build/bash+0xc911f)
    #20 0x5629fe7c1f42 in execute_command_internal 
(/home/dualbus/src/gnu/bash-build/bash+0xb6f42)
    #21 0x5629fe8ac0f4 in parse_and_execute 
(/home/dualbus/src/gnu/bash-build/bash+0x1a10f4)
    #22 0x5629fe78d401 in run_one_command 
(/home/dualbus/src/gnu/bash-build/bash+0x82401)
    #23 0x5629fe78b8da in main (/home/dualbus/src/gnu/bash-build/bash+0x808da)
    #24 0x7ffb5b32c2b0 in __libc_start_main 
(/lib/x86_64-linux-gnu/libc.so.6+0x202b0)
    #25 0x5629fe78a749 in _start (/home/dualbus/src/gnu/bash-build/bash+0x7f749)
0x60d00000cd8f is located 0 bytes to the right of 143-byte region 
[0x60d00000cd00,0x60d00000cd8f)
allocated by thread T0 here:
    #0 0x7ffb5bb99d28 in malloc (/usr/lib/x86_64-linux-gnu/libasan.so.3+0xc1d28)
    #1 0x5629fe89ad95 in xmalloc 
(/home/dualbus/src/gnu/bash-build/bash+0x18fd95)
    #2 0x5629fe937574 in expand_prompt 
(/home/dualbus/src/gnu/bash-build/bash+0x22c574)
    #3 0x5629fe943190 in rl_message 
(/home/dualbus/src/gnu/bash-build/bash+0x238190)
    #4 0x5629fe931986 in rl_display_search 
(/home/dualbus/src/gnu/bash-build/bash+0x226986)
    #5 0x5629fe936784 in _rl_isearch_dispatch 
(/home/dualbus/src/gnu/bash-build/bash+0x22b784)
    #6 0x5629fe936cae in rl_search_history 
(/home/dualbus/src/gnu/bash-build/bash+0x22bcae)
    #7 0x5629fe9317cb in rl_forward_search_history 
(/home/dualbus/src/gnu/bash-build/bash+0x2267cb)
    #8 0x5629fe90730d in _rl_dispatch_subseq 
(/home/dualbus/src/gnu/bash-build/bash+0x1fc30d)
    #9 0x5629fe906ee8 in _rl_dispatch 
(/home/dualbus/src/gnu/bash-build/bash+0x1fbee8)
    #10 0x5629fe906727 in readline_internal_char 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb727)
    #11 0x5629fe9067b9 in readline_internal_charloop 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb7b9)
    #12 0x5629fe9067dd in readline_internal 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb7dd)
    #13 0x5629fe905e93 in readline 
(/home/dualbus/src/gnu/bash-build/bash+0x1fae93)
    #14 0x5629fe8c1136 in edit_line 
(/home/dualbus/src/gnu/bash-build/bash+0x1b6136)
    #15 0x5629fe8beaa4 in read_builtin 
(/home/dualbus/src/gnu/bash-build/bash+0x1b3aa4)
    #16 0x5629fe7d4c89 in execute_builtin 
(/home/dualbus/src/gnu/bash-build/bash+0xc9c89)
    #17 0x5629fe7d689f in execute_builtin_or_function 
(/home/dualbus/src/gnu/bash-build/bash+0xcb89f)
    #18 0x5629fe7d411f in execute_simple_command 
(/home/dualbus/src/gnu/bash-build/bash+0xc911f)
    #19 0x5629fe7c1f42 in execute_command_internal 
(/home/dualbus/src/gnu/bash-build/bash+0xb6f42)
    #20 0x5629fe8ac0f4 in parse_and_execute 
(/home/dualbus/src/gnu/bash-build/bash+0x1a10f4)
    #21 0x5629fe78d401 in run_one_command 
(/home/dualbus/src/gnu/bash-build/bash+0x82401)
    #22 0x5629fe78b8da in main (/home/dualbus/src/gnu/bash-build/bash+0x808da)
    #23 0x7ffb5b32c2b0 in __libc_start_main 
(/lib/x86_64-linux-gnu/libc.so.6+0x202b0)
SUMMARY: AddressSanitizer: heap-buffer-overflow 
(/usr/lib/x86_64-linux-gnu/libasan.so.3+0x3c062) 
Shadow bytes around the buggy address:
  0x0c1a7fff9960: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
  0x0c1a7fff9970: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
  0x0c1a7fff9980: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
  0x0c1a7fff9990: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
  0x0c1a7fff99a0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
=>0x0c1a7fff99b0: 00[07]fa fa fa fa fa fa fa fa 00 00 00 00 00 00
  0x0c1a7fff99c0: 00 00 00 00 00 00 00 00 00 00 00 00 fa fa fa fa
  0x0c1a7fff99d0: fa fa fa fa fd fd fd fd fd fd fd fd fd fd fd fd
  0x0c1a7fff99e0: fd fd fd fd fd fa fa fa fa fa fa fa fa fa fd fd
  0x0c1a7fff99f0: fd fd fd fd fd fd fd fd fd fd fd fd fd fd fd fa
  0x0c1a7fff9a00: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
Shadow byte legend (one shadow byte represents 8 application bytes):
  Addressable:           00
  Partially addressable: 01 02 03 04 05 06 07 
  Heap left redzone:       fa
  Heap right redzone:      fb
  Freed heap region:       fd
  Stack left redzone:      f1
  Stack mid redzone:       f2
  Stack right redzone:     f3
  Stack partial redzone:   f4
  Stack after return:      f5
  Stack use after scope:   f8
  Global redzone:          f9
  Global init order:       f6
  Poisoned by user:        f7
  Container overflow:      fc
  Array cookie:            ac
  Intra object redzone:    bb
  ASan internal:           fe
  Left alloca redzone:     ca
  Right alloca redzone:    cb
==12456==ABORTING

INPUT
GwMWF/zuFQAXCxcXFwAD6FNTALwAABcAgCkZGRkZ/zpQFxkZGRkZGRcXIH/6AAD6a1xchDP8GQAB
AFhLYEpLZ0tKOEsQSz0aGgIZGSEZAID/GRkZGRkZS0tXS0tLAAAAAEtLHBMZWmBKS0tLSjhLEEtL
S0tKS0tLSj1DEEtLHhkZGRkZGbS8GRn/OlAXGRkZGRkZFxcgLA==



==12475==ERROR: AddressSanitizer: heap-buffer-overflow on address 
0x60d00000cd89 at pc 0x7f0fe9f1f063 bp 0x7ffe6681f370 sp 0x7ffe6681eb20
READ of size 138 at 0x60d00000cd89 thread T0
    #0 0x7f0fe9f1f062  (/usr/lib/x86_64-linux-gnu/libasan.so.3+0x3c062)
    #1 0x5630286d088b in _rl_find_prev_mbchar_internal 
(/home/dualbus/src/gnu/bash-build/bash+0x25d88b)
    #2 0x5630286d135c in _rl_find_prev_mbchar 
(/home/dualbus/src/gnu/bash-build/bash+0x25e35c)
    #3 0x56302869fca1 in expand_prompt 
(/home/dualbus/src/gnu/bash-build/bash+0x22cca1)
    #4 0x5630286ab190 in rl_message 
(/home/dualbus/src/gnu/bash-build/bash+0x238190)
    #5 0x563028699986 in rl_display_search 
(/home/dualbus/src/gnu/bash-build/bash+0x226986)
    #6 0x56302869e784 in _rl_isearch_dispatch 
(/home/dualbus/src/gnu/bash-build/bash+0x22b784)
    #7 0x56302869ecae in rl_search_history 
(/home/dualbus/src/gnu/bash-build/bash+0x22bcae)
    #8 0x5630286997cb in rl_forward_search_history 
(/home/dualbus/src/gnu/bash-build/bash+0x2267cb)
    #9 0x56302866f30d in _rl_dispatch_subseq 
(/home/dualbus/src/gnu/bash-build/bash+0x1fc30d)
    #10 0x56302866eee8 in _rl_dispatch 
(/home/dualbus/src/gnu/bash-build/bash+0x1fbee8)
    #11 0x56302866e727 in readline_internal_char 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb727)
    #12 0x56302866e7b9 in readline_internal_charloop 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb7b9)
    #13 0x56302866e7dd in readline_internal 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb7dd)
    #14 0x56302866de93 in readline 
(/home/dualbus/src/gnu/bash-build/bash+0x1fae93)
    #15 0x563028629136 in edit_line 
(/home/dualbus/src/gnu/bash-build/bash+0x1b6136)
    #16 0x563028626aa4 in read_builtin 
(/home/dualbus/src/gnu/bash-build/bash+0x1b3aa4)
    #17 0x56302853cc89 in execute_builtin 
(/home/dualbus/src/gnu/bash-build/bash+0xc9c89)
    #18 0x56302853e89f in execute_builtin_or_function 
(/home/dualbus/src/gnu/bash-build/bash+0xcb89f)
    #19 0x56302853c11f in execute_simple_command 
(/home/dualbus/src/gnu/bash-build/bash+0xc911f)
    #20 0x563028529f42 in execute_command_internal 
(/home/dualbus/src/gnu/bash-build/bash+0xb6f42)
    #21 0x5630286140f4 in parse_and_execute 
(/home/dualbus/src/gnu/bash-build/bash+0x1a10f4)
    #22 0x5630284f5401 in run_one_command 
(/home/dualbus/src/gnu/bash-build/bash+0x82401)
    #23 0x5630284f38da in main (/home/dualbus/src/gnu/bash-build/bash+0x808da)
    #24 0x7f0fe97372b0 in __libc_start_main 
(/lib/x86_64-linux-gnu/libc.so.6+0x202b0)
    #25 0x5630284f2749 in _start (/home/dualbus/src/gnu/bash-build/bash+0x7f749)
0x60d00000cd89 is located 0 bytes to the right of 137-byte region 
[0x60d00000cd00,0x60d00000cd89)
allocated by thread T0 here:
    #0 0x7f0fe9fa4d28 in malloc (/usr/lib/x86_64-linux-gnu/libasan.so.3+0xc1d28)
    #1 0x563028602d95 in xmalloc 
(/home/dualbus/src/gnu/bash-build/bash+0x18fd95)
    #2 0x56302869f574 in expand_prompt 
(/home/dualbus/src/gnu/bash-build/bash+0x22c574)
    #3 0x5630286ab190 in rl_message 
(/home/dualbus/src/gnu/bash-build/bash+0x238190)
    #4 0x563028699986 in rl_display_search 
(/home/dualbus/src/gnu/bash-build/bash+0x226986)
    #5 0x56302869e784 in _rl_isearch_dispatch 
(/home/dualbus/src/gnu/bash-build/bash+0x22b784)
    #6 0x56302869ecae in rl_search_history 
(/home/dualbus/src/gnu/bash-build/bash+0x22bcae)
    #7 0x5630286997cb in rl_forward_search_history 
(/home/dualbus/src/gnu/bash-build/bash+0x2267cb)
    #8 0x56302866f30d in _rl_dispatch_subseq 
(/home/dualbus/src/gnu/bash-build/bash+0x1fc30d)
    #9 0x56302866eee8 in _rl_dispatch 
(/home/dualbus/src/gnu/bash-build/bash+0x1fbee8)
    #10 0x56302866e727 in readline_internal_char 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb727)
    #11 0x56302866e7b9 in readline_internal_charloop 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb7b9)
    #12 0x56302866e7dd in readline_internal 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb7dd)
    #13 0x56302866de93 in readline 
(/home/dualbus/src/gnu/bash-build/bash+0x1fae93)
    #14 0x563028629136 in edit_line 
(/home/dualbus/src/gnu/bash-build/bash+0x1b6136)
    #15 0x563028626aa4 in read_builtin 
(/home/dualbus/src/gnu/bash-build/bash+0x1b3aa4)
    #16 0x56302853cc89 in execute_builtin 
(/home/dualbus/src/gnu/bash-build/bash+0xc9c89)
    #17 0x56302853e89f in execute_builtin_or_function 
(/home/dualbus/src/gnu/bash-build/bash+0xcb89f)
    #18 0x56302853c11f in execute_simple_command 
(/home/dualbus/src/gnu/bash-build/bash+0xc911f)
    #19 0x563028529f42 in execute_command_internal 
(/home/dualbus/src/gnu/bash-build/bash+0xb6f42)
    #20 0x5630286140f4 in parse_and_execute 
(/home/dualbus/src/gnu/bash-build/bash+0x1a10f4)
    #21 0x5630284f5401 in run_one_command 
(/home/dualbus/src/gnu/bash-build/bash+0x82401)
    #22 0x5630284f38da in main (/home/dualbus/src/gnu/bash-build/bash+0x808da)
    #23 0x7f0fe97372b0 in __libc_start_main 
(/lib/x86_64-linux-gnu/libc.so.6+0x202b0)
SUMMARY: AddressSanitizer: heap-buffer-overflow 
(/usr/lib/x86_64-linux-gnu/libasan.so.3+0x3c062) 
Shadow bytes around the buggy address:
  0x0c1a7fff9960: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
  0x0c1a7fff9970: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
  0x0c1a7fff9980: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
  0x0c1a7fff9990: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
  0x0c1a7fff99a0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
=>0x0c1a7fff99b0: 00[01]fa fa fa fa fa fa fa fa 00 00 00 00 00 00
  0x0c1a7fff99c0: 00 00 00 00 00 00 00 00 00 00 00 02 fa fa fa fa
  0x0c1a7fff99d0: fa fa fa fa fd fd fd fd fd fd fd fd fd fd fd fd
  0x0c1a7fff99e0: fd fd fd fd fd fa fa fa fa fa fa fa fa fa fd fd
  0x0c1a7fff99f0: fd fd fd fd fd fd fd fd fd fd fd fd fd fd fd fa
  0x0c1a7fff9a00: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
Shadow byte legend (one shadow byte represents 8 application bytes):
  Addressable:           00
  Partially addressable: 01 02 03 04 05 06 07 
  Heap left redzone:       fa
  Heap right redzone:      fb
  Freed heap region:       fd
  Stack left redzone:      f1
  Stack mid redzone:       f2
  Stack right redzone:     f3
  Stack partial redzone:   f4
  Stack after return:      f5
  Stack use after scope:   f8
  Global redzone:          f9
  Global init order:       f6
  Poisoned by user:        f7
  Container overflow:      fc
  Array cookie:            ac
  Intra object redzone:    bb
  ASan internal:           fe
  Left alloca redzone:     ca
  Right alloca redzone:    cb
==12475==ABORTING

INPUT
GwMWF/zuFQAXCwAAACAD6FNTALwAABAAgCkZGRkZ/zpQFxkZGRkZGRcXIH/6AAD6jlxchDP8GQAB
AFhLYEpLZ0tKOEsQSz0aGgIZGSEZAID/GRkZGRkZSwBkS0tLAAAAAEtLHBMZWmBKS0tLSjhLEEtL
S0tKS0tLSj1LEEtLHBkZGRkZGbS8GRn/OlAXGRkZGRkZFxcgLA==



==12488==ERROR: AddressSanitizer: heap-buffer-overflow on address 
0x60b00000a395 at pc 0x7f6463ad3063 bp 0x7ffce4c552f0 sp 0x7ffce4c54aa0
READ of size 102 at 0x60b00000a395 thread T0
    #0 0x7f6463ad3062  (/usr/lib/x86_64-linux-gnu/libasan.so.3+0x3c062)
    #1 0x563dd177888b in _rl_find_prev_mbchar_internal 
(/home/dualbus/src/gnu/bash-build/bash+0x25d88b)
    #2 0x563dd177935c in _rl_find_prev_mbchar 
(/home/dualbus/src/gnu/bash-build/bash+0x25e35c)
    #3 0x563dd1747ca1 in expand_prompt 
(/home/dualbus/src/gnu/bash-build/bash+0x22cca1)
    #4 0x563dd1753190 in rl_message 
(/home/dualbus/src/gnu/bash-build/bash+0x238190)
    #5 0x563dd1741986 in rl_display_search 
(/home/dualbus/src/gnu/bash-build/bash+0x226986)
    #6 0x563dd1746ab7 in _rl_isearch_dispatch 
(/home/dualbus/src/gnu/bash-build/bash+0x22bab7)
    #7 0x563dd1746cae in rl_search_history 
(/home/dualbus/src/gnu/bash-build/bash+0x22bcae)
    #8 0x563dd17417cb in rl_forward_search_history 
(/home/dualbus/src/gnu/bash-build/bash+0x2267cb)
    #9 0x563dd171730d in _rl_dispatch_subseq 
(/home/dualbus/src/gnu/bash-build/bash+0x1fc30d)
    #10 0x563dd1716ee8 in _rl_dispatch 
(/home/dualbus/src/gnu/bash-build/bash+0x1fbee8)
    #11 0x563dd1716727 in readline_internal_char 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb727)
    #12 0x563dd17167b9 in readline_internal_charloop 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb7b9)
    #13 0x563dd17167dd in readline_internal 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb7dd)
    #14 0x563dd1715e93 in readline 
(/home/dualbus/src/gnu/bash-build/bash+0x1fae93)
    #15 0x563dd16d1136 in edit_line 
(/home/dualbus/src/gnu/bash-build/bash+0x1b6136)
    #16 0x563dd16ceaa4 in read_builtin 
(/home/dualbus/src/gnu/bash-build/bash+0x1b3aa4)
    #17 0x563dd15e4c89 in execute_builtin 
(/home/dualbus/src/gnu/bash-build/bash+0xc9c89)
    #18 0x563dd15e689f in execute_builtin_or_function 
(/home/dualbus/src/gnu/bash-build/bash+0xcb89f)
    #19 0x563dd15e411f in execute_simple_command 
(/home/dualbus/src/gnu/bash-build/bash+0xc911f)
    #20 0x563dd15d1f42 in execute_command_internal 
(/home/dualbus/src/gnu/bash-build/bash+0xb6f42)
    #21 0x563dd16bc0f4 in parse_and_execute 
(/home/dualbus/src/gnu/bash-build/bash+0x1a10f4)
    #22 0x563dd159d401 in run_one_command 
(/home/dualbus/src/gnu/bash-build/bash+0x82401)
    #23 0x563dd159b8da in main (/home/dualbus/src/gnu/bash-build/bash+0x808da)
    #24 0x7f64632eb2b0 in __libc_start_main 
(/lib/x86_64-linux-gnu/libc.so.6+0x202b0)
    #25 0x563dd159a749 in _start (/home/dualbus/src/gnu/bash-build/bash+0x7f749)
0x60b00000a395 is located 0 bytes to the right of 101-byte region 
[0x60b00000a330,0x60b00000a395)
allocated by thread T0 here:
    #0 0x7f6463b58d28 in malloc (/usr/lib/x86_64-linux-gnu/libasan.so.3+0xc1d28)
    #1 0x563dd16aad95 in xmalloc 
(/home/dualbus/src/gnu/bash-build/bash+0x18fd95)
    #2 0x563dd1747574 in expand_prompt 
(/home/dualbus/src/gnu/bash-build/bash+0x22c574)
    #3 0x563dd1753190 in rl_message 
(/home/dualbus/src/gnu/bash-build/bash+0x238190)
    #4 0x563dd1741986 in rl_display_search 
(/home/dualbus/src/gnu/bash-build/bash+0x226986)
    #5 0x563dd1746ab7 in _rl_isearch_dispatch 
(/home/dualbus/src/gnu/bash-build/bash+0x22bab7)
    #6 0x563dd1746cae in rl_search_history 
(/home/dualbus/src/gnu/bash-build/bash+0x22bcae)
    #7 0x563dd17417cb in rl_forward_search_history 
(/home/dualbus/src/gnu/bash-build/bash+0x2267cb)
    #8 0x563dd171730d in _rl_dispatch_subseq 
(/home/dualbus/src/gnu/bash-build/bash+0x1fc30d)
    #9 0x563dd1716ee8 in _rl_dispatch 
(/home/dualbus/src/gnu/bash-build/bash+0x1fbee8)
    #10 0x563dd1716727 in readline_internal_char 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb727)
    #11 0x563dd17167b9 in readline_internal_charloop 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb7b9)
    #12 0x563dd17167dd in readline_internal 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb7dd)
    #13 0x563dd1715e93 in readline 
(/home/dualbus/src/gnu/bash-build/bash+0x1fae93)
    #14 0x563dd16d1136 in edit_line 
(/home/dualbus/src/gnu/bash-build/bash+0x1b6136)
    #15 0x563dd16ceaa4 in read_builtin 
(/home/dualbus/src/gnu/bash-build/bash+0x1b3aa4)
    #16 0x563dd15e4c89 in execute_builtin 
(/home/dualbus/src/gnu/bash-build/bash+0xc9c89)
    #17 0x563dd15e689f in execute_builtin_or_function 
(/home/dualbus/src/gnu/bash-build/bash+0xcb89f)
    #18 0x563dd15e411f in execute_simple_command 
(/home/dualbus/src/gnu/bash-build/bash+0xc911f)
    #19 0x563dd15d1f42 in execute_command_internal 
(/home/dualbus/src/gnu/bash-build/bash+0xb6f42)
    #20 0x563dd16bc0f4 in parse_and_execute 
(/home/dualbus/src/gnu/bash-build/bash+0x1a10f4)
    #21 0x563dd159d401 in run_one_command 
(/home/dualbus/src/gnu/bash-build/bash+0x82401)
    #22 0x563dd159b8da in main (/home/dualbus/src/gnu/bash-build/bash+0x808da)
    #23 0x7f64632eb2b0 in __libc_start_main 
(/lib/x86_64-linux-gnu/libc.so.6+0x202b0)
SUMMARY: AddressSanitizer: heap-buffer-overflow 
(/usr/lib/x86_64-linux-gnu/libasan.so.3+0x3c062) 
Shadow bytes around the buggy address:
  0x0c167fff9420: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
  0x0c167fff9430: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
  0x0c167fff9440: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
  0x0c167fff9450: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
  0x0c167fff9460: fa fa fa fa fa fa 00 00 00 00 00 00 00 00 00 00
=>0x0c167fff9470: 00 00[05]fa fa fa fa fa fa fa fa fa 00 00 00 00
  0x0c167fff9480: 00 00 00 00 00 00 00 00 00 00 fa fa fa fa fa fa
  0x0c167fff9490: fa fa fd fd fd fd fd fd fd fd fd fd fd fd fd fd
  0x0c167fff94a0: fa fa fa fa fa fa fa fa fd fd fd fd fd fd fd fd
  0x0c167fff94b0: fd fd fd fd fd fd fa fa fa fa fa fa fa fa 00 00
  0x0c167fff94c0: 00 00 00 00 00 00 00 00 00 00 00 fa fa fa fa fa
Shadow byte legend (one shadow byte represents 8 application bytes):
  Addressable:           00
  Partially addressable: 01 02 03 04 05 06 07 
  Heap left redzone:       fa
  Heap right redzone:      fb
  Freed heap region:       fd
  Stack left redzone:      f1
  Stack mid redzone:       f2
  Stack right redzone:     f3
  Stack partial redzone:   f4
  Stack after return:      f5
  Stack use after scope:   f8
  Global redzone:          f9
  Global init order:       f6
  Poisoned by user:        f7
  Container overflow:      fc
  Array cookie:            ac
  Intra object redzone:    bb
  ASan internal:           fe
  Left alloca redzone:     ca
  Right alloca redzone:    cb
==12488==ABORTING

INPUT
GwMWF/zuFQAXCxcXFwAD6FNTALwAABAAgCkZGRkZ/zpQFxkZQAAZGRcXIH/jAAD6jlxchDP8GQAB
AFhLYEpLZ0sAAUsQSz0aGgIZGSEZAID/GRkZGRkZS0tXS0tLAAAAAEtLHBMZWmBKS0tLSjhLEEtL
S0tKS0tLSj1LEEtLHBkZGRkZGbS8GRn/OlAXGRkZGRkZFxcgLw==



==13418==ERROR: AddressSanitizer: heap-buffer-overflow on address 
0x61600000ece3 at pc 0x7fb77f4a1063 bp 0x7fff34c647a0 sp 0x7fff34c63f50
READ of size 612 at 0x61600000ece3 thread T0
    #0 0x7fb77f4a1062  (/usr/lib/x86_64-linux-gnu/libasan.so.3+0x3c062)
    #1 0x56425c0ff88b in _rl_find_prev_mbchar_internal 
(/home/dualbus/src/gnu/bash-build/bash+0x25d88b)
    #2 0x56425c10035c in _rl_find_prev_mbchar 
(/home/dualbus/src/gnu/bash-build/bash+0x25e35c)
    #3 0x56425c0ceca1 in expand_prompt 
(/home/dualbus/src/gnu/bash-build/bash+0x22cca1)
    #4 0x56425c0da190 in rl_message 
(/home/dualbus/src/gnu/bash-build/bash+0x238190)
    #5 0x56425c0c8986 in rl_display_search 
(/home/dualbus/src/gnu/bash-build/bash+0x226986)
    #6 0x56425c0cd784 in _rl_isearch_dispatch 
(/home/dualbus/src/gnu/bash-build/bash+0x22b784)
    #7 0x56425c0cdcae in rl_search_history 
(/home/dualbus/src/gnu/bash-build/bash+0x22bcae)
    #8 0x56425c0c87ac in rl_reverse_search_history 
(/home/dualbus/src/gnu/bash-build/bash+0x2267ac)
    #9 0x56425c09e30d in _rl_dispatch_subseq 
(/home/dualbus/src/gnu/bash-build/bash+0x1fc30d)
    #10 0x56425c09dee8 in _rl_dispatch 
(/home/dualbus/src/gnu/bash-build/bash+0x1fbee8)
    #11 0x56425c09d727 in readline_internal_char 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb727)
    #12 0x56425c09d7b9 in readline_internal_charloop 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb7b9)
    #13 0x56425c09d7dd in readline_internal 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb7dd)
    #14 0x56425c09ce93 in readline 
(/home/dualbus/src/gnu/bash-build/bash+0x1fae93)
    #15 0x56425c058136 in edit_line 
(/home/dualbus/src/gnu/bash-build/bash+0x1b6136)
    #16 0x56425c055aa4 in read_builtin 
(/home/dualbus/src/gnu/bash-build/bash+0x1b3aa4)
    #17 0x56425bf6bc89 in execute_builtin 
(/home/dualbus/src/gnu/bash-build/bash+0xc9c89)
    #18 0x56425bf6d89f in execute_builtin_or_function 
(/home/dualbus/src/gnu/bash-build/bash+0xcb89f)
    #19 0x56425bf6b11f in execute_simple_command 
(/home/dualbus/src/gnu/bash-build/bash+0xc911f)
    #20 0x56425bf58f42 in execute_command_internal 
(/home/dualbus/src/gnu/bash-build/bash+0xb6f42)
    #21 0x56425c0430f4 in parse_and_execute 
(/home/dualbus/src/gnu/bash-build/bash+0x1a10f4)
    #22 0x56425bf24401 in run_one_command 
(/home/dualbus/src/gnu/bash-build/bash+0x82401)
    #23 0x56425bf228da in main (/home/dualbus/src/gnu/bash-build/bash+0x808da)
    #24 0x7fb77ecb92b0 in __libc_start_main 
(/lib/x86_64-linux-gnu/libc.so.6+0x202b0)
    #25 0x56425bf21749 in _start (/home/dualbus/src/gnu/bash-build/bash+0x7f749)
0x61600000ece3 is located 0 bytes to the right of 611-byte region 
[0x61600000ea80,0x61600000ece3)
allocated by thread T0 here:
    #0 0x7fb77f526d28 in malloc (/usr/lib/x86_64-linux-gnu/libasan.so.3+0xc1d28)
    #1 0x56425c031d95 in xmalloc 
(/home/dualbus/src/gnu/bash-build/bash+0x18fd95)
    #2 0x56425c0ce574 in expand_prompt 
(/home/dualbus/src/gnu/bash-build/bash+0x22c574)
    #3 0x56425c0da190 in rl_message 
(/home/dualbus/src/gnu/bash-build/bash+0x238190)
    #4 0x56425c0c8986 in rl_display_search 
(/home/dualbus/src/gnu/bash-build/bash+0x226986)
    #5 0x56425c0cd784 in _rl_isearch_dispatch 
(/home/dualbus/src/gnu/bash-build/bash+0x22b784)
    #6 0x56425c0cdcae in rl_search_history 
(/home/dualbus/src/gnu/bash-build/bash+0x22bcae)
    #7 0x56425c0c87ac in rl_reverse_search_history 
(/home/dualbus/src/gnu/bash-build/bash+0x2267ac)
    #8 0x56425c09e30d in _rl_dispatch_subseq 
(/home/dualbus/src/gnu/bash-build/bash+0x1fc30d)
    #9 0x56425c09dee8 in _rl_dispatch 
(/home/dualbus/src/gnu/bash-build/bash+0x1fbee8)
    #10 0x56425c09d727 in readline_internal_char 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb727)
    #11 0x56425c09d7b9 in readline_internal_charloop 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb7b9)
    #12 0x56425c09d7dd in readline_internal 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb7dd)
    #13 0x56425c09ce93 in readline 
(/home/dualbus/src/gnu/bash-build/bash+0x1fae93)
    #14 0x56425c058136 in edit_line 
(/home/dualbus/src/gnu/bash-build/bash+0x1b6136)
    #15 0x56425c055aa4 in read_builtin 
(/home/dualbus/src/gnu/bash-build/bash+0x1b3aa4)
    #16 0x56425bf6bc89 in execute_builtin 
(/home/dualbus/src/gnu/bash-build/bash+0xc9c89)
    #17 0x56425bf6d89f in execute_builtin_or_function 
(/home/dualbus/src/gnu/bash-build/bash+0xcb89f)
    #18 0x56425bf6b11f in execute_simple_command 
(/home/dualbus/src/gnu/bash-build/bash+0xc911f)
    #19 0x56425bf58f42 in execute_command_internal 
(/home/dualbus/src/gnu/bash-build/bash+0xb6f42)
    #20 0x56425c0430f4 in parse_and_execute 
(/home/dualbus/src/gnu/bash-build/bash+0x1a10f4)
    #21 0x56425bf24401 in run_one_command 
(/home/dualbus/src/gnu/bash-build/bash+0x82401)
    #22 0x56425bf228da in main (/home/dualbus/src/gnu/bash-build/bash+0x808da)
    #23 0x7fb77ecb92b0 in __libc_start_main 
(/lib/x86_64-linux-gnu/libc.so.6+0x202b0)
SUMMARY: AddressSanitizer: heap-buffer-overflow 
(/usr/lib/x86_64-linux-gnu/libasan.so.3+0x3c062) 
Shadow bytes around the buggy address:
  0x0c2c7fff9d40: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
  0x0c2c7fff9d50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
  0x0c2c7fff9d60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
  0x0c2c7fff9d70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
  0x0c2c7fff9d80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
=>0x0c2c7fff9d90: 00 00 00 00 00 00 00 00 00 00 00 00[03]fa fa fa
  0x0c2c7fff9da0: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
  0x0c2c7fff9db0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
  0x0c2c7fff9dc0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
  0x0c2c7fff9dd0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
  0x0c2c7fff9de0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Shadow byte legend (one shadow byte represents 8 application bytes):
  Addressable:           00
  Partially addressable: 01 02 03 04 05 06 07 
  Heap left redzone:       fa
  Heap right redzone:      fb
  Freed heap region:       fd
  Stack left redzone:      f1
  Stack mid redzone:       f2
  Stack right redzone:     f3
  Stack partial redzone:   f4
  Stack after return:      f5
  Stack use after scope:   f8
  Global redzone:          f9
  Global init order:       f6
  Poisoned by user:        f7
  Container overflow:      fc
  Array cookie:            ac
  Intra object redzone:    bb
  ASan internal:           fe
  Left alloca redzone:     ca
  Right alloca redzone:    cb
==13418==ABORTING

INPUT
p6enpwAAAAGnpxCnlKi9JycfJycgqqgIh3SoqKgwGzg45wAAp6enp6enp6enAAAAAaenp6eUqAhA
4AAICAgIQLqf2br6/xkZB6hHlKi9JyeUqL0nJx9AACeqnwAABAAA+UdHR0dHR0dHTId0qKioMBs4
OOcAAKenp6enp6enpwAAAAGnp6enlKi9JycfJ4UgqqgICPr/GRkZGRkZEi4ZhhsP5en/E/9/ff//
gAAA7QAlC2Bg9PX2RwNTA0MDAwMDEQMDup+6urqAAMwICAgIKkDgBwADAwPiAgMDAwPuAwMDAwMD
AxAZGRsAAQAHCAgIKkDgAAgICAhAup/Zurre3tsICAgIJkDgugAI3AgIAAC6AAAdpgB/kA==



==16703==ERROR: AddressSanitizer: heap-buffer-overflow on address 
0x61700000ed84 at pc 0x7f92f64a6063 bp 0x7ffe69dd1dd0 sp 0x7ffe69dd1580
READ of size 645 at 0x61700000ed84 thread T0
    #0 0x7f92f64a6062  (/usr/lib/x86_64-linux-gnu/libasan.so.3+0x3c062)
    #1 0x55f1495a088b in _rl_find_prev_mbchar_internal 
(/home/dualbus/src/gnu/bash-build/bash+0x25d88b)
    #2 0x55f1495a135c in _rl_find_prev_mbchar 
(/home/dualbus/src/gnu/bash-build/bash+0x25e35c)
    #3 0x55f14956fca1 in expand_prompt 
(/home/dualbus/src/gnu/bash-build/bash+0x22cca1)
    #4 0x55f14957b190 in rl_message 
(/home/dualbus/src/gnu/bash-build/bash+0x238190)
    #5 0x55f149569986 in rl_display_search 
(/home/dualbus/src/gnu/bash-build/bash+0x226986)
    #6 0x55f14956e784 in _rl_isearch_dispatch 
(/home/dualbus/src/gnu/bash-build/bash+0x22b784)
    #7 0x55f14956ecae in rl_search_history 
(/home/dualbus/src/gnu/bash-build/bash+0x22bcae)
    #8 0x55f1495697ac in rl_reverse_search_history 
(/home/dualbus/src/gnu/bash-build/bash+0x2267ac)
    #9 0x55f14953f30d in _rl_dispatch_subseq 
(/home/dualbus/src/gnu/bash-build/bash+0x1fc30d)
    #10 0x55f14953eee8 in _rl_dispatch 
(/home/dualbus/src/gnu/bash-build/bash+0x1fbee8)
    #11 0x55f14953e727 in readline_internal_char 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb727)
    #12 0x55f14953e7b9 in readline_internal_charloop 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb7b9)
    #13 0x55f14953e7dd in readline_internal 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb7dd)
    #14 0x55f14953de93 in readline 
(/home/dualbus/src/gnu/bash-build/bash+0x1fae93)
    #15 0x55f1494f9136 in edit_line 
(/home/dualbus/src/gnu/bash-build/bash+0x1b6136)
    #16 0x55f1494f6aa4 in read_builtin 
(/home/dualbus/src/gnu/bash-build/bash+0x1b3aa4)
    #17 0x55f14940cc89 in execute_builtin 
(/home/dualbus/src/gnu/bash-build/bash+0xc9c89)
    #18 0x55f14940e89f in execute_builtin_or_function 
(/home/dualbus/src/gnu/bash-build/bash+0xcb89f)
    #19 0x55f14940c11f in execute_simple_command 
(/home/dualbus/src/gnu/bash-build/bash+0xc911f)
    #20 0x55f1493f9f42 in execute_command_internal 
(/home/dualbus/src/gnu/bash-build/bash+0xb6f42)
    #21 0x55f1494e40f4 in parse_and_execute 
(/home/dualbus/src/gnu/bash-build/bash+0x1a10f4)
    #22 0x55f1493c5401 in run_one_command 
(/home/dualbus/src/gnu/bash-build/bash+0x82401)
    #23 0x55f1493c38da in main (/home/dualbus/src/gnu/bash-build/bash+0x808da)
    #24 0x7f92f5cbe2b0 in __libc_start_main 
(/lib/x86_64-linux-gnu/libc.so.6+0x202b0)
    #25 0x55f1493c2749 in _start (/home/dualbus/src/gnu/bash-build/bash+0x7f749)
0x61700000ed84 is located 0 bytes to the right of 644-byte region 
[0x61700000eb00,0x61700000ed84)
allocated by thread T0 here:
    #0 0x7f92f652bd28 in malloc (/usr/lib/x86_64-linux-gnu/libasan.so.3+0xc1d28)
    #1 0x55f1494d2d95 in xmalloc 
(/home/dualbus/src/gnu/bash-build/bash+0x18fd95)
    #2 0x55f14956f574 in expand_prompt 
(/home/dualbus/src/gnu/bash-build/bash+0x22c574)
    #3 0x55f14957b190 in rl_message 
(/home/dualbus/src/gnu/bash-build/bash+0x238190)
    #4 0x55f149569986 in rl_display_search 
(/home/dualbus/src/gnu/bash-build/bash+0x226986)
    #5 0x55f14956e784 in _rl_isearch_dispatch 
(/home/dualbus/src/gnu/bash-build/bash+0x22b784)
    #6 0x55f14956ecae in rl_search_history 
(/home/dualbus/src/gnu/bash-build/bash+0x22bcae)
    #7 0x55f1495697ac in rl_reverse_search_history 
(/home/dualbus/src/gnu/bash-build/bash+0x2267ac)
    #8 0x55f14953f30d in _rl_dispatch_subseq 
(/home/dualbus/src/gnu/bash-build/bash+0x1fc30d)
    #9 0x55f14953eee8 in _rl_dispatch 
(/home/dualbus/src/gnu/bash-build/bash+0x1fbee8)
    #10 0x55f14953e727 in readline_internal_char 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb727)
    #11 0x55f14953e7b9 in readline_internal_charloop 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb7b9)
    #12 0x55f14953e7dd in readline_internal 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb7dd)
    #13 0x55f14953de93 in readline 
(/home/dualbus/src/gnu/bash-build/bash+0x1fae93)
    #14 0x55f1494f9136 in edit_line 
(/home/dualbus/src/gnu/bash-build/bash+0x1b6136)
    #15 0x55f1494f6aa4 in read_builtin 
(/home/dualbus/src/gnu/bash-build/bash+0x1b3aa4)
    #16 0x55f14940cc89 in execute_builtin 
(/home/dualbus/src/gnu/bash-build/bash+0xc9c89)
    #17 0x55f14940e89f in execute_builtin_or_function 
(/home/dualbus/src/gnu/bash-build/bash+0xcb89f)
    #18 0x55f14940c11f in execute_simple_command 
(/home/dualbus/src/gnu/bash-build/bash+0xc911f)
    #19 0x55f1493f9f42 in execute_command_internal 
(/home/dualbus/src/gnu/bash-build/bash+0xb6f42)
    #20 0x55f1494e40f4 in parse_and_execute 
(/home/dualbus/src/gnu/bash-build/bash+0x1a10f4)
    #21 0x55f1493c5401 in run_one_command 
(/home/dualbus/src/gnu/bash-build/bash+0x82401)
    #22 0x55f1493c38da in main (/home/dualbus/src/gnu/bash-build/bash+0x808da)
    #23 0x7f92f5cbe2b0 in __libc_start_main 
(/lib/x86_64-linux-gnu/libc.so.6+0x202b0)
SUMMARY: AddressSanitizer: heap-buffer-overflow 
(/usr/lib/x86_64-linux-gnu/libasan.so.3+0x3c062) 
Shadow bytes around the buggy address:
  0x0c2e7fff9d60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
  0x0c2e7fff9d70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
  0x0c2e7fff9d80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
  0x0c2e7fff9d90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
  0x0c2e7fff9da0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
=>0x0c2e7fff9db0:[04]fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
  0x0c2e7fff9dc0: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
  0x0c2e7fff9dd0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
  0x0c2e7fff9de0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
  0x0c2e7fff9df0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
  0x0c2e7fff9e00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Shadow byte legend (one shadow byte represents 8 application bytes):
  Addressable:           00
  Partially addressable: 01 02 03 04 05 06 07 
  Heap left redzone:       fa
  Heap right redzone:      fb
  Freed heap region:       fd
  Stack left redzone:      f1
  Stack mid redzone:       f2
  Stack right redzone:     f3
  Stack partial redzone:   f4
  Stack after return:      f5
  Stack use after scope:   f8
  Global redzone:          f9
  Global init order:       f6
  Poisoned by user:        f7
  Container overflow:      fc
  Array cookie:            ac
  Intra object redzone:    bb
  ASan internal:           fe
  Left alloca redzone:     ca
  Right alloca redzone:    cb
==16703==ABORTING

INPUT
QBvz//wOYADtACULYGD08UAk////f/n5qEf5+fn5qCiUqAtgYPTxQEf5+fn5+QGoR/n5+fn/GRkZ
GRkZEi4ZZJ8AfgQAAPlHR0dHR0dHR0yHQACoqDAEAAD5R0dHR0dHR0dMh3SRqKgwGzg45wAAp6en
p6enpxs4OOcAAKenp6enp6enpwAAAAEZGRkZGRkSLhl5IQ/l/xol/399//wOYH/tACULYGD09fZH
A1MDQwMDAwMDAwO6n7q6x4AAzAgICAgqQOAHAAMDAwMDAwMDAwMDA0DjAgMDDBkZGwABAAAICAgq
QOQACAje3tsICAgIKkDgBwAI3AgIAAC3AAAdpgB/kA==



==16704==ERROR: AddressSanitizer: heap-buffer-overflow on address 
0x61600000e98d at pc 0x7f638fed4063 bp 0x7ffe92091ff0 sp 0x7ffe920917a0
READ of size 526 at 0x61600000e98d thread T0
    #0 0x7f638fed4062  (/usr/lib/x86_64-linux-gnu/libasan.so.3+0x3c062)
    #1 0x55b1102a388b in _rl_find_prev_mbchar_internal 
(/home/dualbus/src/gnu/bash-build/bash+0x25d88b)
    #2 0x55b1102a435c in _rl_find_prev_mbchar 
(/home/dualbus/src/gnu/bash-build/bash+0x25e35c)
    #3 0x55b110272ca1 in expand_prompt 
(/home/dualbus/src/gnu/bash-build/bash+0x22cca1)
    #4 0x55b11027e190 in rl_message 
(/home/dualbus/src/gnu/bash-build/bash+0x238190)
    #5 0x55b11026c986 in rl_display_search 
(/home/dualbus/src/gnu/bash-build/bash+0x226986)
    #6 0x55b110271784 in _rl_isearch_dispatch 
(/home/dualbus/src/gnu/bash-build/bash+0x22b784)
    #7 0x55b110271cae in rl_search_history 
(/home/dualbus/src/gnu/bash-build/bash+0x22bcae)
    #8 0x55b11026c7ac in rl_reverse_search_history 
(/home/dualbus/src/gnu/bash-build/bash+0x2267ac)
    #9 0x55b11024230d in _rl_dispatch_subseq 
(/home/dualbus/src/gnu/bash-build/bash+0x1fc30d)
    #10 0x55b110241ee8 in _rl_dispatch 
(/home/dualbus/src/gnu/bash-build/bash+0x1fbee8)
    #11 0x55b110241727 in readline_internal_char 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb727)
    #12 0x55b1102417b9 in readline_internal_charloop 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb7b9)
    #13 0x55b1102417dd in readline_internal 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb7dd)
    #14 0x55b110240e93 in readline 
(/home/dualbus/src/gnu/bash-build/bash+0x1fae93)
    #15 0x55b1101fc136 in edit_line 
(/home/dualbus/src/gnu/bash-build/bash+0x1b6136)
    #16 0x55b1101f9aa4 in read_builtin 
(/home/dualbus/src/gnu/bash-build/bash+0x1b3aa4)
    #17 0x55b11010fc89 in execute_builtin 
(/home/dualbus/src/gnu/bash-build/bash+0xc9c89)
    #18 0x55b11011189f in execute_builtin_or_function 
(/home/dualbus/src/gnu/bash-build/bash+0xcb89f)
    #19 0x55b11010f11f in execute_simple_command 
(/home/dualbus/src/gnu/bash-build/bash+0xc911f)
    #20 0x55b1100fcf42 in execute_command_internal 
(/home/dualbus/src/gnu/bash-build/bash+0xb6f42)
    #21 0x55b1101e70f4 in parse_and_execute 
(/home/dualbus/src/gnu/bash-build/bash+0x1a10f4)
    #22 0x55b1100c8401 in run_one_command 
(/home/dualbus/src/gnu/bash-build/bash+0x82401)
    #23 0x55b1100c68da in main (/home/dualbus/src/gnu/bash-build/bash+0x808da)
    #24 0x7f638f6ec2b0 in __libc_start_main 
(/lib/x86_64-linux-gnu/libc.so.6+0x202b0)
    #25 0x55b1100c5749 in _start (/home/dualbus/src/gnu/bash-build/bash+0x7f749)
0x61600000e98d is located 0 bytes to the right of 525-byte region 
[0x61600000e780,0x61600000e98d)
allocated by thread T0 here:
    #0 0x7f638ff59d28 in malloc (/usr/lib/x86_64-linux-gnu/libasan.so.3+0xc1d28)
    #1 0x55b1101d5d95 in xmalloc 
(/home/dualbus/src/gnu/bash-build/bash+0x18fd95)
    #2 0x55b110272574 in expand_prompt 
(/home/dualbus/src/gnu/bash-build/bash+0x22c574)
    #3 0x55b11027e190 in rl_message 
(/home/dualbus/src/gnu/bash-build/bash+0x238190)
    #4 0x55b11026c986 in rl_display_search 
(/home/dualbus/src/gnu/bash-build/bash+0x226986)
    #5 0x55b110271784 in _rl_isearch_dispatch 
(/home/dualbus/src/gnu/bash-build/bash+0x22b784)
    #6 0x55b110271cae in rl_search_history 
(/home/dualbus/src/gnu/bash-build/bash+0x22bcae)
    #7 0x55b11026c7ac in rl_reverse_search_history 
(/home/dualbus/src/gnu/bash-build/bash+0x2267ac)
    #8 0x55b11024230d in _rl_dispatch_subseq 
(/home/dualbus/src/gnu/bash-build/bash+0x1fc30d)
    #9 0x55b110241ee8 in _rl_dispatch 
(/home/dualbus/src/gnu/bash-build/bash+0x1fbee8)
    #10 0x55b110241727 in readline_internal_char 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb727)
    #11 0x55b1102417b9 in readline_internal_charloop 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb7b9)
    #12 0x55b1102417dd in readline_internal 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb7dd)
    #13 0x55b110240e93 in readline 
(/home/dualbus/src/gnu/bash-build/bash+0x1fae93)
    #14 0x55b1101fc136 in edit_line 
(/home/dualbus/src/gnu/bash-build/bash+0x1b6136)
    #15 0x55b1101f9aa4 in read_builtin 
(/home/dualbus/src/gnu/bash-build/bash+0x1b3aa4)
    #16 0x55b11010fc89 in execute_builtin 
(/home/dualbus/src/gnu/bash-build/bash+0xc9c89)
    #17 0x55b11011189f in execute_builtin_or_function 
(/home/dualbus/src/gnu/bash-build/bash+0xcb89f)
    #18 0x55b11010f11f in execute_simple_command 
(/home/dualbus/src/gnu/bash-build/bash+0xc911f)
    #19 0x55b1100fcf42 in execute_command_internal 
(/home/dualbus/src/gnu/bash-build/bash+0xb6f42)
    #20 0x55b1101e70f4 in parse_and_execute 
(/home/dualbus/src/gnu/bash-build/bash+0x1a10f4)
    #21 0x55b1100c8401 in run_one_command 
(/home/dualbus/src/gnu/bash-build/bash+0x82401)
    #22 0x55b1100c68da in main (/home/dualbus/src/gnu/bash-build/bash+0x808da)
    #23 0x7f638f6ec2b0 in __libc_start_main 
(/lib/x86_64-linux-gnu/libc.so.6+0x202b0)
SUMMARY: AddressSanitizer: heap-buffer-overflow 
(/usr/lib/x86_64-linux-gnu/libasan.so.3+0x3c062) 
Shadow bytes around the buggy address:
  0x0c2c7fff9ce0: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
  0x0c2c7fff9cf0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
  0x0c2c7fff9d00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
  0x0c2c7fff9d10: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
  0x0c2c7fff9d20: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
=>0x0c2c7fff9d30: 00[05]fa fa fa fa fa fa fa fa fa fa fa fa fa fa
  0x0c2c7fff9d40: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
  0x0c2c7fff9d50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
  0x0c2c7fff9d60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
  0x0c2c7fff9d70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
  0x0c2c7fff9d80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Shadow byte legend (one shadow byte represents 8 application bytes):
  Addressable:           00
  Partially addressable: 01 02 03 04 05 06 07 
  Heap left redzone:       fa
  Heap right redzone:      fb
  Freed heap region:       fd
  Stack left redzone:      f1
  Stack mid redzone:       f2
  Stack right redzone:     f3
  Stack partial redzone:   f4
  Stack after return:      f5
  Stack use after scope:   f8
  Global redzone:          f9
  Global init order:       f6
  Poisoned by user:        f7
  Container overflow:      fc
  Array cookie:            ac
  Intra object redzone:    bb
  ASan internal:           fe
  Left alloca redzone:     ca
  Right alloca redzone:    cb
==16704==ABORTING

INPUT
QFtbW1tbW1tbW1tbW1tbW1tbW1tbW1tbW1tbW1tbG3///A5gAO0AJQtgYPTxQEf5+fn5+fmoR/n5
+fmoKJSoCPr/GRkZGRkZEi4ZZJ8AAAQAAPlHR0dHR0dHR0yHdJGoqDAbODjnAACnp6enp6enp6cA
AAABGRkZGRkZEi4ZZCEP5f//Jf9/ff/8DmB/7QAlC2Bg9PX2RwNTA0MDAwMDAwMDup+6urqAAMwI
CAgI1NTU1NQqQOAHAAMDAwMDAwMDAwMDAwPjAgMDEBkZGwABAAAICAgqQOAACAje3tsICAgIKkDg
BwAI3AgIAAC3AAAdpgB/kA==



==18236==ERROR: AddressSanitizer: heap-buffer-overflow on address 
0x61300000dab3 at pc 0x7f4401c15063 bp 0x7fffb2e33540 sp 0x7fffb2e32cf0
READ of size 372 at 0x61300000dab3 thread T0
    #0 0x7f4401c15062  (/usr/lib/x86_64-linux-gnu/libasan.so.3+0x3c062)
    #1 0x56448c87988b in _rl_find_prev_mbchar_internal 
(/home/dualbus/src/gnu/bash-build/bash+0x25d88b)
    #2 0x56448c87a35c in _rl_find_prev_mbchar 
(/home/dualbus/src/gnu/bash-build/bash+0x25e35c)
    #3 0x56448c848ca1 in expand_prompt 
(/home/dualbus/src/gnu/bash-build/bash+0x22cca1)
    #4 0x56448c854190 in rl_message 
(/home/dualbus/src/gnu/bash-build/bash+0x238190)
    #5 0x56448c842986 in rl_display_search 
(/home/dualbus/src/gnu/bash-build/bash+0x226986)
    #6 0x56448c847784 in _rl_isearch_dispatch 
(/home/dualbus/src/gnu/bash-build/bash+0x22b784)
    #7 0x56448c847cae in rl_search_history 
(/home/dualbus/src/gnu/bash-build/bash+0x22bcae)
    #8 0x56448c8427cb in rl_forward_search_history 
(/home/dualbus/src/gnu/bash-build/bash+0x2267cb)
    #9 0x56448c81830d in _rl_dispatch_subseq 
(/home/dualbus/src/gnu/bash-build/bash+0x1fc30d)
    #10 0x56448c817ee8 in _rl_dispatch 
(/home/dualbus/src/gnu/bash-build/bash+0x1fbee8)
    #11 0x56448c817727 in readline_internal_char 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb727)
    #12 0x56448c8177b9 in readline_internal_charloop 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb7b9)
    #13 0x56448c8177dd in readline_internal 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb7dd)
    #14 0x56448c816e93 in readline 
(/home/dualbus/src/gnu/bash-build/bash+0x1fae93)
    #15 0x56448c7d2136 in edit_line 
(/home/dualbus/src/gnu/bash-build/bash+0x1b6136)
    #16 0x56448c7cfaa4 in read_builtin 
(/home/dualbus/src/gnu/bash-build/bash+0x1b3aa4)
    #17 0x56448c6e5c89 in execute_builtin 
(/home/dualbus/src/gnu/bash-build/bash+0xc9c89)
    #18 0x56448c6e789f in execute_builtin_or_function 
(/home/dualbus/src/gnu/bash-build/bash+0xcb89f)
    #19 0x56448c6e511f in execute_simple_command 
(/home/dualbus/src/gnu/bash-build/bash+0xc911f)
    #20 0x56448c6d2f42 in execute_command_internal 
(/home/dualbus/src/gnu/bash-build/bash+0xb6f42)
    #21 0x56448c7bd0f4 in parse_and_execute 
(/home/dualbus/src/gnu/bash-build/bash+0x1a10f4)
    #22 0x56448c69e401 in run_one_command 
(/home/dualbus/src/gnu/bash-build/bash+0x82401)
    #23 0x56448c69c8da in main (/home/dualbus/src/gnu/bash-build/bash+0x808da)
    #24 0x7f440142d2b0 in __libc_start_main 
(/lib/x86_64-linux-gnu/libc.so.6+0x202b0)
    #25 0x56448c69b749 in _start (/home/dualbus/src/gnu/bash-build/bash+0x7f749)
0x61300000dab3 is located 0 bytes to the right of 371-byte region 
[0x61300000d940,0x61300000dab3)
allocated by thread T0 here:
    #0 0x7f4401c9ad28 in malloc (/usr/lib/x86_64-linux-gnu/libasan.so.3+0xc1d28)
    #1 0x56448c7abd95 in xmalloc 
(/home/dualbus/src/gnu/bash-build/bash+0x18fd95)
    #2 0x56448c848574 in expand_prompt 
(/home/dualbus/src/gnu/bash-build/bash+0x22c574)
    #3 0x56448c854190 in rl_message 
(/home/dualbus/src/gnu/bash-build/bash+0x238190)
    #4 0x56448c842986 in rl_display_search 
(/home/dualbus/src/gnu/bash-build/bash+0x226986)
    #5 0x56448c847784 in _rl_isearch_dispatch 
(/home/dualbus/src/gnu/bash-build/bash+0x22b784)
    #6 0x56448c847cae in rl_search_history 
(/home/dualbus/src/gnu/bash-build/bash+0x22bcae)
    #7 0x56448c8427cb in rl_forward_search_history 
(/home/dualbus/src/gnu/bash-build/bash+0x2267cb)
    #8 0x56448c81830d in _rl_dispatch_subseq 
(/home/dualbus/src/gnu/bash-build/bash+0x1fc30d)
    #9 0x56448c817ee8 in _rl_dispatch 
(/home/dualbus/src/gnu/bash-build/bash+0x1fbee8)
    #10 0x56448c817727 in readline_internal_char 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb727)
    #11 0x56448c8177b9 in readline_internal_charloop 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb7b9)
    #12 0x56448c8177dd in readline_internal 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb7dd)
    #13 0x56448c816e93 in readline 
(/home/dualbus/src/gnu/bash-build/bash+0x1fae93)
    #14 0x56448c7d2136 in edit_line 
(/home/dualbus/src/gnu/bash-build/bash+0x1b6136)
    #15 0x56448c7cfaa4 in read_builtin 
(/home/dualbus/src/gnu/bash-build/bash+0x1b3aa4)
    #16 0x56448c6e5c89 in execute_builtin 
(/home/dualbus/src/gnu/bash-build/bash+0xc9c89)
    #17 0x56448c6e789f in execute_builtin_or_function 
(/home/dualbus/src/gnu/bash-build/bash+0xcb89f)
    #18 0x56448c6e511f in execute_simple_command 
(/home/dualbus/src/gnu/bash-build/bash+0xc911f)
    #19 0x56448c6d2f42 in execute_command_internal 
(/home/dualbus/src/gnu/bash-build/bash+0xb6f42)
    #20 0x56448c7bd0f4 in parse_and_execute 
(/home/dualbus/src/gnu/bash-build/bash+0x1a10f4)
    #21 0x56448c69e401 in run_one_command 
(/home/dualbus/src/gnu/bash-build/bash+0x82401)
    #22 0x56448c69c8da in main (/home/dualbus/src/gnu/bash-build/bash+0x808da)
    #23 0x7f440142d2b0 in __libc_start_main 
(/lib/x86_64-linux-gnu/libc.so.6+0x202b0)
SUMMARY: AddressSanitizer: heap-buffer-overflow 
(/usr/lib/x86_64-linux-gnu/libasan.so.3+0x3c062) 
Shadow bytes around the buggy address:
  0x0c267fff9b00: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
  0x0c267fff9b10: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
  0x0c267fff9b20: fa fa fa fa fa fa fa fa 00 00 00 00 00 00 00 00
  0x0c267fff9b30: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
  0x0c267fff9b40: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
=>0x0c267fff9b50: 00 00 00 00 00 00[03]fa fa fa fa fa fa fa fa fa
  0x0c267fff9b60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
  0x0c267fff9b70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
  0x0c267fff9b80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 04 fa
  0x0c267fff9b90: fa fa fa fa fa fa fa fa fd fd fd fd fd fd fd fd
  0x0c267fff9ba0: fd fd fd fd fd fd fd fd fd fd fd fd fd fd fd fd
Shadow byte legend (one shadow byte represents 8 application bytes):
  Addressable:           00
  Partially addressable: 01 02 03 04 05 06 07 
  Heap left redzone:       fa
  Heap right redzone:      fb
  Freed heap region:       fd
  Stack left redzone:      f1
  Stack mid redzone:       f2
  Stack right redzone:     f3
  Stack partial redzone:   f4
  Stack after return:      f5
  Stack use after scope:   f8
  Global redzone:          f9
  Global init order:       f6
  Poisoned by user:        f7
  Container overflow:      fc
  Array cookie:            ac
  Intra object redzone:    bb
  ASan internal:           fe
  Left alloca redzone:     ca
  Right alloca redzone:    cb
==18236==ABORTING

INPUT
/wMAAugDKh0AAH8AnxkZGRkZILwAABAAgCkZGTYZ/zpQFxkZGRkZGRcXIH/6AAD6zlxcnTP8GQAB
AFhLYBkZGRkZFxcgf/oAAPrOXFyEM/wZAAEAWEtgSktLSktLS0o4SxBLS0scGRkZGRkZtLwZGf86
UBdLS1dLS0sAAAAAS0scExlgSktLSktLC1pgSktLS0o4SxBLS0tLSktLS0o9SxBLSxwZGRkZGQe0
qhkZ/zpQFxkZGRkZGRcXICw=



==23036==ERROR: AddressSanitizer: heap-buffer-overflow on address 
0x61600000ecf5 at pc 0x7fca62518063 bp 0x7ffc83653670 sp 0x7ffc83652e20
READ of size 630 at 0x61600000ecf5 thread T0
    #0 0x7fca62518062  (/usr/lib/x86_64-linux-gnu/libasan.so.3+0x3c062)
    #1 0x55a4b743788b in _rl_find_prev_mbchar_internal 
(/home/dualbus/src/gnu/bash-build/bash+0x25d88b)
    #2 0x55a4b743835c in _rl_find_prev_mbchar 
(/home/dualbus/src/gnu/bash-build/bash+0x25e35c)
    #3 0x55a4b7406ca1 in expand_prompt 
(/home/dualbus/src/gnu/bash-build/bash+0x22cca1)
    #4 0x55a4b7412190 in rl_message 
(/home/dualbus/src/gnu/bash-build/bash+0x238190)
    #5 0x55a4b7400986 in rl_display_search 
(/home/dualbus/src/gnu/bash-build/bash+0x226986)
    #6 0x55a4b7405784 in _rl_isearch_dispatch 
(/home/dualbus/src/gnu/bash-build/bash+0x22b784)
    #7 0x55a4b7405cae in rl_search_history 
(/home/dualbus/src/gnu/bash-build/bash+0x22bcae)
    #8 0x55a4b74007ac in rl_reverse_search_history 
(/home/dualbus/src/gnu/bash-build/bash+0x2267ac)
    #9 0x55a4b73d630d in _rl_dispatch_subseq 
(/home/dualbus/src/gnu/bash-build/bash+0x1fc30d)
    #10 0x55a4b73d5ee8 in _rl_dispatch 
(/home/dualbus/src/gnu/bash-build/bash+0x1fbee8)
    #11 0x55a4b73d5727 in readline_internal_char 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb727)
    #12 0x55a4b73d57b9 in readline_internal_charloop 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb7b9)
    #13 0x55a4b73d57dd in readline_internal 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb7dd)
    #14 0x55a4b73d4e93 in readline 
(/home/dualbus/src/gnu/bash-build/bash+0x1fae93)
    #15 0x55a4b7390136 in edit_line 
(/home/dualbus/src/gnu/bash-build/bash+0x1b6136)
    #16 0x55a4b738daa4 in read_builtin 
(/home/dualbus/src/gnu/bash-build/bash+0x1b3aa4)
    #17 0x55a4b72a3c89 in execute_builtin 
(/home/dualbus/src/gnu/bash-build/bash+0xc9c89)
    #18 0x55a4b72a589f in execute_builtin_or_function 
(/home/dualbus/src/gnu/bash-build/bash+0xcb89f)
    #19 0x55a4b72a311f in execute_simple_command 
(/home/dualbus/src/gnu/bash-build/bash+0xc911f)
    #20 0x55a4b7290f42 in execute_command_internal 
(/home/dualbus/src/gnu/bash-build/bash+0xb6f42)
    #21 0x55a4b737b0f4 in parse_and_execute 
(/home/dualbus/src/gnu/bash-build/bash+0x1a10f4)
    #22 0x55a4b725c401 in run_one_command 
(/home/dualbus/src/gnu/bash-build/bash+0x82401)
    #23 0x55a4b725a8da in main (/home/dualbus/src/gnu/bash-build/bash+0x808da)
    #24 0x7fca61d302b0 in __libc_start_main 
(/lib/x86_64-linux-gnu/libc.so.6+0x202b0)
    #25 0x55a4b7259749 in _start (/home/dualbus/src/gnu/bash-build/bash+0x7f749)
0x61600000ecf5 is located 0 bytes to the right of 629-byte region 
[0x61600000ea80,0x61600000ecf5)
allocated by thread T0 here:
    #0 0x7fca6259dd28 in malloc (/usr/lib/x86_64-linux-gnu/libasan.so.3+0xc1d28)
    #1 0x55a4b7369d95 in xmalloc 
(/home/dualbus/src/gnu/bash-build/bash+0x18fd95)
    #2 0x55a4b7406574 in expand_prompt 
(/home/dualbus/src/gnu/bash-build/bash+0x22c574)
    #3 0x55a4b7412190 in rl_message 
(/home/dualbus/src/gnu/bash-build/bash+0x238190)
    #4 0x55a4b7400986 in rl_display_search 
(/home/dualbus/src/gnu/bash-build/bash+0x226986)
    #5 0x55a4b7405784 in _rl_isearch_dispatch 
(/home/dualbus/src/gnu/bash-build/bash+0x22b784)
    #6 0x55a4b7405cae in rl_search_history 
(/home/dualbus/src/gnu/bash-build/bash+0x22bcae)
    #7 0x55a4b74007ac in rl_reverse_search_history 
(/home/dualbus/src/gnu/bash-build/bash+0x2267ac)
    #8 0x55a4b73d630d in _rl_dispatch_subseq 
(/home/dualbus/src/gnu/bash-build/bash+0x1fc30d)
    #9 0x55a4b73d5ee8 in _rl_dispatch 
(/home/dualbus/src/gnu/bash-build/bash+0x1fbee8)
    #10 0x55a4b73d5727 in readline_internal_char 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb727)
    #11 0x55a4b73d57b9 in readline_internal_charloop 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb7b9)
    #12 0x55a4b73d57dd in readline_internal 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb7dd)
    #13 0x55a4b73d4e93 in readline 
(/home/dualbus/src/gnu/bash-build/bash+0x1fae93)
    #14 0x55a4b7390136 in edit_line 
(/home/dualbus/src/gnu/bash-build/bash+0x1b6136)
    #15 0x55a4b738daa4 in read_builtin 
(/home/dualbus/src/gnu/bash-build/bash+0x1b3aa4)
    #16 0x55a4b72a3c89 in execute_builtin 
(/home/dualbus/src/gnu/bash-build/bash+0xc9c89)
    #17 0x55a4b72a589f in execute_builtin_or_function 
(/home/dualbus/src/gnu/bash-build/bash+0xcb89f)
    #18 0x55a4b72a311f in execute_simple_command 
(/home/dualbus/src/gnu/bash-build/bash+0xc911f)
    #19 0x55a4b7290f42 in execute_command_internal 
(/home/dualbus/src/gnu/bash-build/bash+0xb6f42)
    #20 0x55a4b737b0f4 in parse_and_execute 
(/home/dualbus/src/gnu/bash-build/bash+0x1a10f4)
    #21 0x55a4b725c401 in run_one_command 
(/home/dualbus/src/gnu/bash-build/bash+0x82401)
    #22 0x55a4b725a8da in main (/home/dualbus/src/gnu/bash-build/bash+0x808da)
    #23 0x7fca61d302b0 in __libc_start_main 
(/lib/x86_64-linux-gnu/libc.so.6+0x202b0)
SUMMARY: AddressSanitizer: heap-buffer-overflow 
(/usr/lib/x86_64-linux-gnu/libasan.so.3+0x3c062) 
Shadow bytes around the buggy address:
  0x0c2c7fff9d40: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
  0x0c2c7fff9d50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
  0x0c2c7fff9d60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
  0x0c2c7fff9d70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
  0x0c2c7fff9d80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
=>0x0c2c7fff9d90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00[05]fa
  0x0c2c7fff9da0: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
  0x0c2c7fff9db0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
  0x0c2c7fff9dc0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
  0x0c2c7fff9dd0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
  0x0c2c7fff9de0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Shadow byte legend (one shadow byte represents 8 application bytes):
  Addressable:           00
  Partially addressable: 01 02 03 04 05 06 07 
  Heap left redzone:       fa
  Heap right redzone:      fb
  Freed heap region:       fd
  Stack left redzone:      f1
  Stack mid redzone:       f2
  Stack right redzone:     f3
  Stack partial redzone:   f4
  Stack after return:      f5
  Stack use after scope:   f8
  Global redzone:          f9
  Global init order:       f6
  Poisoned by user:        f7
  Container overflow:      fc
  Array cookie:            ac
  Intra object redzone:    bb
  ASan internal:           fe
  Left alloca redzone:     ca
  Right alloca redzone:    cb
==23036==ABORTING

INPUT
QBt///wOYADtACULYGD08UBH+fn5+fn5qEf5+fn5qCiUqAj6/wMZGRkZGRIuGWSfAAAEAAD5R0dH
R0dHR1JSh3SRqKgwGzg45wAAp6enp6enp6enBgAAAYAAGRkZkaioMBs4OOcAAKenp6enp6enpwAA
AAGAABkZGRkSLhkZEi4ZZCEv5f//Jf9/ff/8DmB/7QAlC2Bg9PX2RwNTA0MDAwMDAwMDup+6urqA
AMwICAgIEEDgBwADAwMDAAD/AwMDAwMD4wIDAxAZGRsAACsqjo6kPDw8Rvr/AxkZGTw8AAABKBkA
/xsZAAD/f/8qG28AGwU=



==23039==ERROR: AddressSanitizer: heap-buffer-overflow on address 
0x61600000ece7 at pc 0x7f82d5a5b063 bp 0x7ffc1a0a6db0 sp 0x7ffc1a0a6560
READ of size 616 at 0x61600000ece7 thread T0
    #0 0x7f82d5a5b062  (/usr/lib/x86_64-linux-gnu/libasan.so.3+0x3c062)
    #1 0x555ab13bf88b in _rl_find_prev_mbchar_internal 
(/home/dualbus/src/gnu/bash-build/bash+0x25d88b)
    #2 0x555ab13c035c in _rl_find_prev_mbchar 
(/home/dualbus/src/gnu/bash-build/bash+0x25e35c)
    #3 0x555ab138eca1 in expand_prompt 
(/home/dualbus/src/gnu/bash-build/bash+0x22cca1)
    #4 0x555ab139a190 in rl_message 
(/home/dualbus/src/gnu/bash-build/bash+0x238190)
    #5 0x555ab1388986 in rl_display_search 
(/home/dualbus/src/gnu/bash-build/bash+0x226986)
    #6 0x555ab138d784 in _rl_isearch_dispatch 
(/home/dualbus/src/gnu/bash-build/bash+0x22b784)
    #7 0x555ab138dcae in rl_search_history 
(/home/dualbus/src/gnu/bash-build/bash+0x22bcae)
    #8 0x555ab13887ac in rl_reverse_search_history 
(/home/dualbus/src/gnu/bash-build/bash+0x2267ac)
    #9 0x555ab135e30d in _rl_dispatch_subseq 
(/home/dualbus/src/gnu/bash-build/bash+0x1fc30d)
    #10 0x555ab135dee8 in _rl_dispatch 
(/home/dualbus/src/gnu/bash-build/bash+0x1fbee8)
    #11 0x555ab135d727 in readline_internal_char 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb727)
    #12 0x555ab135d7b9 in readline_internal_charloop 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb7b9)
    #13 0x555ab135d7dd in readline_internal 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb7dd)
    #14 0x555ab135ce93 in readline 
(/home/dualbus/src/gnu/bash-build/bash+0x1fae93)
    #15 0x555ab1318136 in edit_line 
(/home/dualbus/src/gnu/bash-build/bash+0x1b6136)
    #16 0x555ab1315aa4 in read_builtin 
(/home/dualbus/src/gnu/bash-build/bash+0x1b3aa4)
    #17 0x555ab122bc89 in execute_builtin 
(/home/dualbus/src/gnu/bash-build/bash+0xc9c89)
    #18 0x555ab122d89f in execute_builtin_or_function 
(/home/dualbus/src/gnu/bash-build/bash+0xcb89f)
    #19 0x555ab122b11f in execute_simple_command 
(/home/dualbus/src/gnu/bash-build/bash+0xc911f)
    #20 0x555ab1218f42 in execute_command_internal 
(/home/dualbus/src/gnu/bash-build/bash+0xb6f42)
    #21 0x555ab13030f4 in parse_and_execute 
(/home/dualbus/src/gnu/bash-build/bash+0x1a10f4)
    #22 0x555ab11e4401 in run_one_command 
(/home/dualbus/src/gnu/bash-build/bash+0x82401)
    #23 0x555ab11e28da in main (/home/dualbus/src/gnu/bash-build/bash+0x808da)
    #24 0x7f82d52732b0 in __libc_start_main 
(/lib/x86_64-linux-gnu/libc.so.6+0x202b0)
    #25 0x555ab11e1749 in _start (/home/dualbus/src/gnu/bash-build/bash+0x7f749)
0x61600000ece7 is located 0 bytes to the right of 615-byte region 
[0x61600000ea80,0x61600000ece7)
allocated by thread T0 here:
    #0 0x7f82d5ae0d28 in malloc (/usr/lib/x86_64-linux-gnu/libasan.so.3+0xc1d28)
    #1 0x555ab12f1d95 in xmalloc 
(/home/dualbus/src/gnu/bash-build/bash+0x18fd95)
    #2 0x555ab138e574 in expand_prompt 
(/home/dualbus/src/gnu/bash-build/bash+0x22c574)
    #3 0x555ab139a190 in rl_message 
(/home/dualbus/src/gnu/bash-build/bash+0x238190)
    #4 0x555ab1388986 in rl_display_search 
(/home/dualbus/src/gnu/bash-build/bash+0x226986)
    #5 0x555ab138d784 in _rl_isearch_dispatch 
(/home/dualbus/src/gnu/bash-build/bash+0x22b784)
    #6 0x555ab138dcae in rl_search_history 
(/home/dualbus/src/gnu/bash-build/bash+0x22bcae)
    #7 0x555ab13887ac in rl_reverse_search_history 
(/home/dualbus/src/gnu/bash-build/bash+0x2267ac)
    #8 0x555ab135e30d in _rl_dispatch_subseq 
(/home/dualbus/src/gnu/bash-build/bash+0x1fc30d)
    #9 0x555ab135dee8 in _rl_dispatch 
(/home/dualbus/src/gnu/bash-build/bash+0x1fbee8)
    #10 0x555ab135d727 in readline_internal_char 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb727)
    #11 0x555ab135d7b9 in readline_internal_charloop 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb7b9)
    #12 0x555ab135d7dd in readline_internal 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb7dd)
    #13 0x555ab135ce93 in readline 
(/home/dualbus/src/gnu/bash-build/bash+0x1fae93)
    #14 0x555ab1318136 in edit_line 
(/home/dualbus/src/gnu/bash-build/bash+0x1b6136)
    #15 0x555ab1315aa4 in read_builtin 
(/home/dualbus/src/gnu/bash-build/bash+0x1b3aa4)
    #16 0x555ab122bc89 in execute_builtin 
(/home/dualbus/src/gnu/bash-build/bash+0xc9c89)
    #17 0x555ab122d89f in execute_builtin_or_function 
(/home/dualbus/src/gnu/bash-build/bash+0xcb89f)
    #18 0x555ab122b11f in execute_simple_command 
(/home/dualbus/src/gnu/bash-build/bash+0xc911f)
    #19 0x555ab1218f42 in execute_command_internal 
(/home/dualbus/src/gnu/bash-build/bash+0xb6f42)
    #20 0x555ab13030f4 in parse_and_execute 
(/home/dualbus/src/gnu/bash-build/bash+0x1a10f4)
    #21 0x555ab11e4401 in run_one_command 
(/home/dualbus/src/gnu/bash-build/bash+0x82401)
    #22 0x555ab11e28da in main (/home/dualbus/src/gnu/bash-build/bash+0x808da)
    #23 0x7f82d52732b0 in __libc_start_main 
(/lib/x86_64-linux-gnu/libc.so.6+0x202b0)
SUMMARY: AddressSanitizer: heap-buffer-overflow 
(/usr/lib/x86_64-linux-gnu/libasan.so.3+0x3c062) 
Shadow bytes around the buggy address:
  0x0c2c7fff9d40: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
  0x0c2c7fff9d50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
  0x0c2c7fff9d60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
  0x0c2c7fff9d70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
  0x0c2c7fff9d80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
=>0x0c2c7fff9d90: 00 00 00 00 00 00 00 00 00 00 00 00[07]fa fa fa
  0x0c2c7fff9da0: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
  0x0c2c7fff9db0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
  0x0c2c7fff9dc0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
  0x0c2c7fff9dd0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
  0x0c2c7fff9de0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Shadow byte legend (one shadow byte represents 8 application bytes):
  Addressable:           00
  Partially addressable: 01 02 03 04 05 06 07 
  Heap left redzone:       fa
  Heap right redzone:      fb
  Freed heap region:       fd
  Stack left redzone:      f1
  Stack mid redzone:       f2
  Stack right redzone:     f3
  Stack partial redzone:   f4
  Stack after return:      f5
  Stack use after scope:   f8
  Global redzone:          f9
  Global init order:       f6
  Poisoned by user:        f7
  Container overflow:      fc
  Array cookie:            ac
  Intra object redzone:    bb
  ASan internal:           fe
  Left alloca redzone:     ca
  Right alloca redzone:    cb
==23039==ABORTING

INPUT
QBt///wOYADtACVLYGD08UBH+fn5+flHR0dHR0yHdKioqDAbODjnAACnp6enp6enpwAEAAD5R0dH
R0dHR0dMh3SoqKgwGzg45wAAp6enp6enp6enAAAAAaeyp6eUqL0nJx8nJyCqqAgI+v8ZGRkZGRkS
LhlkAwO6n7q6uoAAzAgICAgqQOAHAAMDAwMDAwMDAwMDAwMDAwMDEBkZGwBzAAX/fxzIzhLwEg4S
EhMAEszMf1cT4P1nZ63ADeB9HAAAEOAAAmQi



==23409==ERROR: AddressSanitizer: heap-buffer-overflow on address 
0x61600000e6dd at pc 0x7ff016534063 bp 0x7ffd6cc64a50 sp 0x7ffd6cc64200
READ of size 606 at 0x61600000e6dd thread T0
    #0 0x7ff016534062  (/usr/lib/x86_64-linux-gnu/libasan.so.3+0x3c062)
    #1 0x55a2c507288b in _rl_find_prev_mbchar_internal 
(/home/dualbus/src/gnu/bash-build/bash+0x25d88b)
    #2 0x55a2c507335c in _rl_find_prev_mbchar 
(/home/dualbus/src/gnu/bash-build/bash+0x25e35c)
    #3 0x55a2c5041ca1 in expand_prompt 
(/home/dualbus/src/gnu/bash-build/bash+0x22cca1)
    #4 0x55a2c504d190 in rl_message 
(/home/dualbus/src/gnu/bash-build/bash+0x238190)
    #5 0x55a2c503b986 in rl_display_search 
(/home/dualbus/src/gnu/bash-build/bash+0x226986)
    #6 0x55a2c5040784 in _rl_isearch_dispatch 
(/home/dualbus/src/gnu/bash-build/bash+0x22b784)
    #7 0x55a2c5040cae in rl_search_history 
(/home/dualbus/src/gnu/bash-build/bash+0x22bcae)
    #8 0x55a2c503b7ac in rl_reverse_search_history 
(/home/dualbus/src/gnu/bash-build/bash+0x2267ac)
    #9 0x55a2c501130d in _rl_dispatch_subseq 
(/home/dualbus/src/gnu/bash-build/bash+0x1fc30d)
    #10 0x55a2c5010ee8 in _rl_dispatch 
(/home/dualbus/src/gnu/bash-build/bash+0x1fbee8)
    #11 0x55a2c5010727 in readline_internal_char 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb727)
    #12 0x55a2c50107b9 in readline_internal_charloop 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb7b9)
    #13 0x55a2c50107dd in readline_internal 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb7dd)
    #14 0x55a2c500fe93 in readline 
(/home/dualbus/src/gnu/bash-build/bash+0x1fae93)
    #15 0x55a2c4fcb136 in edit_line 
(/home/dualbus/src/gnu/bash-build/bash+0x1b6136)
    #16 0x55a2c4fc8aa4 in read_builtin 
(/home/dualbus/src/gnu/bash-build/bash+0x1b3aa4)
    #17 0x55a2c4edec89 in execute_builtin 
(/home/dualbus/src/gnu/bash-build/bash+0xc9c89)
    #18 0x55a2c4ee089f in execute_builtin_or_function 
(/home/dualbus/src/gnu/bash-build/bash+0xcb89f)
    #19 0x55a2c4ede11f in execute_simple_command 
(/home/dualbus/src/gnu/bash-build/bash+0xc911f)
    #20 0x55a2c4ecbf42 in execute_command_internal 
(/home/dualbus/src/gnu/bash-build/bash+0xb6f42)
    #21 0x55a2c4fb60f4 in parse_and_execute 
(/home/dualbus/src/gnu/bash-build/bash+0x1a10f4)
    #22 0x55a2c4e97401 in run_one_command 
(/home/dualbus/src/gnu/bash-build/bash+0x82401)
    #23 0x55a2c4e958da in main (/home/dualbus/src/gnu/bash-build/bash+0x808da)
    #24 0x7ff015d4c2b0 in __libc_start_main 
(/lib/x86_64-linux-gnu/libc.so.6+0x202b0)
    #25 0x55a2c4e94749 in _start (/home/dualbus/src/gnu/bash-build/bash+0x7f749)
0x61600000e6dd is located 0 bytes to the right of 605-byte region 
[0x61600000e480,0x61600000e6dd)
allocated by thread T0 here:
    #0 0x7ff0165b9d28 in malloc (/usr/lib/x86_64-linux-gnu/libasan.so.3+0xc1d28)
    #1 0x55a2c4fa4d95 in xmalloc 
(/home/dualbus/src/gnu/bash-build/bash+0x18fd95)
    #2 0x55a2c5041574 in expand_prompt 
(/home/dualbus/src/gnu/bash-build/bash+0x22c574)
    #3 0x55a2c504d190 in rl_message 
(/home/dualbus/src/gnu/bash-build/bash+0x238190)
    #4 0x55a2c503b986 in rl_display_search 
(/home/dualbus/src/gnu/bash-build/bash+0x226986)
    #5 0x55a2c5040784 in _rl_isearch_dispatch 
(/home/dualbus/src/gnu/bash-build/bash+0x22b784)
    #6 0x55a2c5040cae in rl_search_history 
(/home/dualbus/src/gnu/bash-build/bash+0x22bcae)
    #7 0x55a2c503b7ac in rl_reverse_search_history 
(/home/dualbus/src/gnu/bash-build/bash+0x2267ac)
    #8 0x55a2c501130d in _rl_dispatch_subseq 
(/home/dualbus/src/gnu/bash-build/bash+0x1fc30d)
    #9 0x55a2c5010ee8 in _rl_dispatch 
(/home/dualbus/src/gnu/bash-build/bash+0x1fbee8)
    #10 0x55a2c5010727 in readline_internal_char 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb727)
    #11 0x55a2c50107b9 in readline_internal_charloop 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb7b9)
    #12 0x55a2c50107dd in readline_internal 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb7dd)
    #13 0x55a2c500fe93 in readline 
(/home/dualbus/src/gnu/bash-build/bash+0x1fae93)
    #14 0x55a2c4fcb136 in edit_line 
(/home/dualbus/src/gnu/bash-build/bash+0x1b6136)
    #15 0x55a2c4fc8aa4 in read_builtin 
(/home/dualbus/src/gnu/bash-build/bash+0x1b3aa4)
    #16 0x55a2c4edec89 in execute_builtin 
(/home/dualbus/src/gnu/bash-build/bash+0xc9c89)
    #17 0x55a2c4ee089f in execute_builtin_or_function 
(/home/dualbus/src/gnu/bash-build/bash+0xcb89f)
    #18 0x55a2c4ede11f in execute_simple_command 
(/home/dualbus/src/gnu/bash-build/bash+0xc911f)
    #19 0x55a2c4ecbf42 in execute_command_internal 
(/home/dualbus/src/gnu/bash-build/bash+0xb6f42)
    #20 0x55a2c4fb60f4 in parse_and_execute 
(/home/dualbus/src/gnu/bash-build/bash+0x1a10f4)
    #21 0x55a2c4e97401 in run_one_command 
(/home/dualbus/src/gnu/bash-build/bash+0x82401)
    #22 0x55a2c4e958da in main (/home/dualbus/src/gnu/bash-build/bash+0x808da)
    #23 0x7ff015d4c2b0 in __libc_start_main 
(/lib/x86_64-linux-gnu/libc.so.6+0x202b0)
SUMMARY: AddressSanitizer: heap-buffer-overflow 
(/usr/lib/x86_64-linux-gnu/libasan.so.3+0x3c062) 
Shadow bytes around the buggy address:
  0x0c2c7fff9c80: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
  0x0c2c7fff9c90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
  0x0c2c7fff9ca0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
  0x0c2c7fff9cb0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
  0x0c2c7fff9cc0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
=>0x0c2c7fff9cd0: 00 00 00 00 00 00 00 00 00 00 00[05]fa fa fa fa
  0x0c2c7fff9ce0: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
  0x0c2c7fff9cf0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
  0x0c2c7fff9d00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
  0x0c2c7fff9d10: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
  0x0c2c7fff9d20: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Shadow byte legend (one shadow byte represents 8 application bytes):
  Addressable:           00
  Partially addressable: 01 02 03 04 05 06 07 
  Heap left redzone:       fa
  Heap right redzone:      fb
  Freed heap region:       fd
  Stack left redzone:      f1
  Stack mid redzone:       f2
  Stack right redzone:     f3
  Stack partial redzone:   f4
  Stack after return:      f5
  Stack use after scope:   f8
  Global redzone:          f9
  Global init order:       f6
  Poisoned by user:        f7
  Container overflow:      fc
  Array cookie:            ac
  Intra object redzone:    bb
  ASan internal:           fe
  Left alloca redzone:     ca
  Right alloca redzone:    cb
==23409==ABORTING

INPUT
QBt///wOYADtACULYET0dKioqDkbODjnAACnpwAAp5inwqcAAAABJacnK0AAJ6qfAAAE/+n5R0dH
R0dkR0dMh3SoqKg5Gzg45wAAp6cAAKeYp8KnAAAAASWnpxOUGRkSLhlkAwO6n726uoAAzAgICBw1
HBwcHBzoAxwcHBwcHBwcHBwcGRsAcv///38cyM4S8BIOBRITABLMzH9XE+D9Z1utwP//fRwAABDg
AAJkIg==



==24074==ERROR: AddressSanitizer: heap-buffer-overflow on address 
0x61a00001c7ff at pc 0x7fbe66c82063 bp 0x7fff7e1b9b10 sp 0x7fff7e1b92c0
READ of size 1408 at 0x61a00001c7ff thread T0
    #0 0x7fbe66c82062  (/usr/lib/x86_64-linux-gnu/libasan.so.3+0x3c062)
    #1 0x558b6d5bc88b in _rl_find_prev_mbchar_internal 
(/home/dualbus/src/gnu/bash-build/bash+0x25d88b)
    #2 0x558b6d5bd35c in _rl_find_prev_mbchar 
(/home/dualbus/src/gnu/bash-build/bash+0x25e35c)
    #3 0x558b6d58bca1 in expand_prompt 
(/home/dualbus/src/gnu/bash-build/bash+0x22cca1)
    #4 0x558b6d597190 in rl_message 
(/home/dualbus/src/gnu/bash-build/bash+0x238190)
    #5 0x558b6d585986 in rl_display_search 
(/home/dualbus/src/gnu/bash-build/bash+0x226986)
    #6 0x558b6d58a784 in _rl_isearch_dispatch 
(/home/dualbus/src/gnu/bash-build/bash+0x22b784)
    #7 0x558b6d58acae in rl_search_history 
(/home/dualbus/src/gnu/bash-build/bash+0x22bcae)
    #8 0x558b6d5857cb in rl_forward_search_history 
(/home/dualbus/src/gnu/bash-build/bash+0x2267cb)
    #9 0x558b6d55b30d in _rl_dispatch_subseq 
(/home/dualbus/src/gnu/bash-build/bash+0x1fc30d)
    #10 0x558b6d55aee8 in _rl_dispatch 
(/home/dualbus/src/gnu/bash-build/bash+0x1fbee8)
    #11 0x558b6d55a727 in readline_internal_char 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb727)
    #12 0x558b6d55a7b9 in readline_internal_charloop 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb7b9)
    #13 0x558b6d55a7dd in readline_internal 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb7dd)
    #14 0x558b6d559e93 in readline 
(/home/dualbus/src/gnu/bash-build/bash+0x1fae93)
    #15 0x558b6d515136 in edit_line 
(/home/dualbus/src/gnu/bash-build/bash+0x1b6136)
    #16 0x558b6d512aa4 in read_builtin 
(/home/dualbus/src/gnu/bash-build/bash+0x1b3aa4)
    #17 0x558b6d428c89 in execute_builtin 
(/home/dualbus/src/gnu/bash-build/bash+0xc9c89)
    #18 0x558b6d42a89f in execute_builtin_or_function 
(/home/dualbus/src/gnu/bash-build/bash+0xcb89f)
    #19 0x558b6d42811f in execute_simple_command 
(/home/dualbus/src/gnu/bash-build/bash+0xc911f)
    #20 0x558b6d415f42 in execute_command_internal 
(/home/dualbus/src/gnu/bash-build/bash+0xb6f42)
    #21 0x558b6d5000f4 in parse_and_execute 
(/home/dualbus/src/gnu/bash-build/bash+0x1a10f4)
    #22 0x558b6d3e1401 in run_one_command 
(/home/dualbus/src/gnu/bash-build/bash+0x82401)
    #23 0x558b6d3df8da in main (/home/dualbus/src/gnu/bash-build/bash+0x808da)
    #24 0x7fbe6649a2b0 in __libc_start_main 
(/lib/x86_64-linux-gnu/libc.so.6+0x202b0)
    #25 0x558b6d3de749 in _start (/home/dualbus/src/gnu/bash-build/bash+0x7f749)
0x61a00001c7ff is located 0 bytes to the right of 1407-byte region 
[0x61a00001c280,0x61a00001c7ff)
allocated by thread T0 here:
    #0 0x7fbe66d07d28 in malloc (/usr/lib/x86_64-linux-gnu/libasan.so.3+0xc1d28)
    #1 0x558b6d4eed95 in xmalloc 
(/home/dualbus/src/gnu/bash-build/bash+0x18fd95)
    #2 0x558b6d58b574 in expand_prompt 
(/home/dualbus/src/gnu/bash-build/bash+0x22c574)
    #3 0x558b6d597190 in rl_message 
(/home/dualbus/src/gnu/bash-build/bash+0x238190)
    #4 0x558b6d585986 in rl_display_search 
(/home/dualbus/src/gnu/bash-build/bash+0x226986)
    #5 0x558b6d58a784 in _rl_isearch_dispatch 
(/home/dualbus/src/gnu/bash-build/bash+0x22b784)
    #6 0x558b6d58acae in rl_search_history 
(/home/dualbus/src/gnu/bash-build/bash+0x22bcae)
    #7 0x558b6d5857cb in rl_forward_search_history 
(/home/dualbus/src/gnu/bash-build/bash+0x2267cb)
    #8 0x558b6d55b30d in _rl_dispatch_subseq 
(/home/dualbus/src/gnu/bash-build/bash+0x1fc30d)
    #9 0x558b6d55aee8 in _rl_dispatch 
(/home/dualbus/src/gnu/bash-build/bash+0x1fbee8)
    #10 0x558b6d55a727 in readline_internal_char 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb727)
    #11 0x558b6d55a7b9 in readline_internal_charloop 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb7b9)
    #12 0x558b6d55a7dd in readline_internal 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb7dd)
    #13 0x558b6d559e93 in readline 
(/home/dualbus/src/gnu/bash-build/bash+0x1fae93)
    #14 0x558b6d515136 in edit_line 
(/home/dualbus/src/gnu/bash-build/bash+0x1b6136)
    #15 0x558b6d512aa4 in read_builtin 
(/home/dualbus/src/gnu/bash-build/bash+0x1b3aa4)
    #16 0x558b6d428c89 in execute_builtin 
(/home/dualbus/src/gnu/bash-build/bash+0xc9c89)
    #17 0x558b6d42a89f in execute_builtin_or_function 
(/home/dualbus/src/gnu/bash-build/bash+0xcb89f)
    #18 0x558b6d42811f in execute_simple_command 
(/home/dualbus/src/gnu/bash-build/bash+0xc911f)
    #19 0x558b6d415f42 in execute_command_internal 
(/home/dualbus/src/gnu/bash-build/bash+0xb6f42)
    #20 0x558b6d5000f4 in parse_and_execute 
(/home/dualbus/src/gnu/bash-build/bash+0x1a10f4)
    #21 0x558b6d3e1401 in run_one_command 
(/home/dualbus/src/gnu/bash-build/bash+0x82401)
    #22 0x558b6d3df8da in main (/home/dualbus/src/gnu/bash-build/bash+0x808da)
    #23 0x7fbe6649a2b0 in __libc_start_main 
(/lib/x86_64-linux-gnu/libc.so.6+0x202b0)
SUMMARY: AddressSanitizer: heap-buffer-overflow 
(/usr/lib/x86_64-linux-gnu/libasan.so.3+0x3c062) 
Shadow bytes around the buggy address:
  0x0c347fffb8a0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
  0x0c347fffb8b0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
  0x0c347fffb8c0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
  0x0c347fffb8d0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
  0x0c347fffb8e0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
=>0x0c347fffb8f0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00[07]
  0x0c347fffb900: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
  0x0c347fffb910: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
  0x0c347fffb920: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
  0x0c347fffb930: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
  0x0c347fffb940: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Shadow byte legend (one shadow byte represents 8 application bytes):
  Addressable:           00
  Partially addressable: 01 02 03 04 05 06 07 
  Heap left redzone:       fa
  Heap right redzone:      fb
  Freed heap region:       fd
  Stack left redzone:      f1
  Stack mid redzone:       f2
  Stack right redzone:     f3
  Stack partial redzone:   f4
  Stack after return:      f5
  Stack use after scope:   f8
  Global redzone:          f9
  Global init order:       f6
  Poisoned by user:        f7
  Container overflow:      fc
  Array cookie:            ac
  Intra object redzone:    bb
  ASan internal:           fe
  Left alloca redzone:     ca
  Right alloca redzone:    cb
==24074==ABORTING

INPUT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==



==24681==ERROR: AddressSanitizer: heap-buffer-overflow on address 
0x60b00000a394 at pc 0x7f0644db5063 bp 0x7ffd0d51fe70 sp 0x7ffd0d51f620
READ of size 101 at 0x60b00000a394 thread T0
    #0 0x7f0644db5062  (/usr/lib/x86_64-linux-gnu/libasan.so.3+0x3c062)
    #1 0x55aac2f3d88b in _rl_find_prev_mbchar_internal 
(/home/dualbus/src/gnu/bash-build/bash+0x25d88b)
    #2 0x55aac2f3e35c in _rl_find_prev_mbchar 
(/home/dualbus/src/gnu/bash-build/bash+0x25e35c)
    #3 0x55aac2f0cca1 in expand_prompt 
(/home/dualbus/src/gnu/bash-build/bash+0x22cca1)
    #4 0x55aac2f18190 in rl_message 
(/home/dualbus/src/gnu/bash-build/bash+0x238190)
    #5 0x55aac2f06986 in rl_display_search 
(/home/dualbus/src/gnu/bash-build/bash+0x226986)
    #6 0x55aac2f0bab7 in _rl_isearch_dispatch 
(/home/dualbus/src/gnu/bash-build/bash+0x22bab7)
    #7 0x55aac2f0bcae in rl_search_history 
(/home/dualbus/src/gnu/bash-build/bash+0x22bcae)
    #8 0x55aac2f067cb in rl_forward_search_history 
(/home/dualbus/src/gnu/bash-build/bash+0x2267cb)
    #9 0x55aac2edc30d in _rl_dispatch_subseq 
(/home/dualbus/src/gnu/bash-build/bash+0x1fc30d)
    #10 0x55aac2edbee8 in _rl_dispatch 
(/home/dualbus/src/gnu/bash-build/bash+0x1fbee8)
    #11 0x55aac2edb727 in readline_internal_char 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb727)
    #12 0x55aac2edb7b9 in readline_internal_charloop 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb7b9)
    #13 0x55aac2edb7dd in readline_internal 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb7dd)
    #14 0x55aac2edae93 in readline 
(/home/dualbus/src/gnu/bash-build/bash+0x1fae93)
    #15 0x55aac2e96136 in edit_line 
(/home/dualbus/src/gnu/bash-build/bash+0x1b6136)
    #16 0x55aac2e93aa4 in read_builtin 
(/home/dualbus/src/gnu/bash-build/bash+0x1b3aa4)
    #17 0x55aac2da9c89 in execute_builtin 
(/home/dualbus/src/gnu/bash-build/bash+0xc9c89)
    #18 0x55aac2dab89f in execute_builtin_or_function 
(/home/dualbus/src/gnu/bash-build/bash+0xcb89f)
    #19 0x55aac2da911f in execute_simple_command 
(/home/dualbus/src/gnu/bash-build/bash+0xc911f)
    #20 0x55aac2d96f42 in execute_command_internal 
(/home/dualbus/src/gnu/bash-build/bash+0xb6f42)
    #21 0x55aac2e810f4 in parse_and_execute 
(/home/dualbus/src/gnu/bash-build/bash+0x1a10f4)
    #22 0x55aac2d62401 in run_one_command 
(/home/dualbus/src/gnu/bash-build/bash+0x82401)
    #23 0x55aac2d608da in main (/home/dualbus/src/gnu/bash-build/bash+0x808da)
    #24 0x7f06445cd2b0 in __libc_start_main 
(/lib/x86_64-linux-gnu/libc.so.6+0x202b0)
    #25 0x55aac2d5f749 in _start (/home/dualbus/src/gnu/bash-build/bash+0x7f749)
0x60b00000a394 is located 0 bytes to the right of 100-byte region 
[0x60b00000a330,0x60b00000a394)
allocated by thread T0 here:
    #0 0x7f0644e3ad28 in malloc (/usr/lib/x86_64-linux-gnu/libasan.so.3+0xc1d28)
    #1 0x55aac2e6fd95 in xmalloc 
(/home/dualbus/src/gnu/bash-build/bash+0x18fd95)
    #2 0x55aac2f0c574 in expand_prompt 
(/home/dualbus/src/gnu/bash-build/bash+0x22c574)
    #3 0x55aac2f18190 in rl_message 
(/home/dualbus/src/gnu/bash-build/bash+0x238190)
    #4 0x55aac2f06986 in rl_display_search 
(/home/dualbus/src/gnu/bash-build/bash+0x226986)
    #5 0x55aac2f0bab7 in _rl_isearch_dispatch 
(/home/dualbus/src/gnu/bash-build/bash+0x22bab7)
    #6 0x55aac2f0bcae in rl_search_history 
(/home/dualbus/src/gnu/bash-build/bash+0x22bcae)
    #7 0x55aac2f067cb in rl_forward_search_history 
(/home/dualbus/src/gnu/bash-build/bash+0x2267cb)
    #8 0x55aac2edc30d in _rl_dispatch_subseq 
(/home/dualbus/src/gnu/bash-build/bash+0x1fc30d)
    #9 0x55aac2edbee8 in _rl_dispatch 
(/home/dualbus/src/gnu/bash-build/bash+0x1fbee8)
    #10 0x55aac2edb727 in readline_internal_char 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb727)
    #11 0x55aac2edb7b9 in readline_internal_charloop 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb7b9)
    #12 0x55aac2edb7dd in readline_internal 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb7dd)
    #13 0x55aac2edae93 in readline 
(/home/dualbus/src/gnu/bash-build/bash+0x1fae93)
    #14 0x55aac2e96136 in edit_line 
(/home/dualbus/src/gnu/bash-build/bash+0x1b6136)
    #15 0x55aac2e93aa4 in read_builtin 
(/home/dualbus/src/gnu/bash-build/bash+0x1b3aa4)
    #16 0x55aac2da9c89 in execute_builtin 
(/home/dualbus/src/gnu/bash-build/bash+0xc9c89)
    #17 0x55aac2dab89f in execute_builtin_or_function 
(/home/dualbus/src/gnu/bash-build/bash+0xcb89f)
    #18 0x55aac2da911f in execute_simple_command 
(/home/dualbus/src/gnu/bash-build/bash+0xc911f)
    #19 0x55aac2d96f42 in execute_command_internal 
(/home/dualbus/src/gnu/bash-build/bash+0xb6f42)
    #20 0x55aac2e810f4 in parse_and_execute 
(/home/dualbus/src/gnu/bash-build/bash+0x1a10f4)
    #21 0x55aac2d62401 in run_one_command 
(/home/dualbus/src/gnu/bash-build/bash+0x82401)
    #22 0x55aac2d608da in main (/home/dualbus/src/gnu/bash-build/bash+0x808da)
    #23 0x7f06445cd2b0 in __libc_start_main 
(/lib/x86_64-linux-gnu/libc.so.6+0x202b0)
SUMMARY: AddressSanitizer: heap-buffer-overflow 
(/usr/lib/x86_64-linux-gnu/libasan.so.3+0x3c062) 
Shadow bytes around the buggy address:
  0x0c167fff9420: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
  0x0c167fff9430: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
  0x0c167fff9440: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
  0x0c167fff9450: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
  0x0c167fff9460: fa fa fa fa fa fa 00 00 00 00 00 00 00 00 00 00
=>0x0c167fff9470: 00 00[04]fa fa fa fa fa fa fa fa fa 00 00 00 00
  0x0c167fff9480: 00 00 00 00 00 00 00 00 00 00 fa fa fa fa fa fa
  0x0c167fff9490: fa fa fd fd fd fd fd fd fd fd fd fd fd fd fd fd
  0x0c167fff94a0: fa fa fa fa fa fa fa fa fd fd fd fd fd fd fd fd
  0x0c167fff94b0: fd fd fd fd fd fd fa fa fa fa fa fa fa fa 00 00
  0x0c167fff94c0: 00 00 00 00 00 00 00 00 00 00 00 fa fa fa fa fa
Shadow byte legend (one shadow byte represents 8 application bytes):
  Addressable:           00
  Partially addressable: 01 02 03 04 05 06 07 
  Heap left redzone:       fa
  Heap right redzone:      fb
  Freed heap region:       fd
  Stack left redzone:      f1
  Stack mid redzone:       f2
  Stack right redzone:     f3
  Stack partial redzone:   f4
  Stack after return:      f5
  Stack use after scope:   f8
  Global redzone:          f9
  Global init order:       f6
  Poisoned by user:        f7
  Container overflow:      fc
  Array cookie:            ac
  Intra object redzone:    bb
  ASan internal:           fe
  Left alloca redzone:     ca
  Right alloca redzone:    cb
==24681==ABORTING

INPUT
GwPoB6d6LBohGQCA/zkZGRkZGbwAACcAgCkZGRkZ/zpQFxn5GRkZGRcXIGP6AAD6zlxqhDP8GQAB
S0sAAAAAS0scExlaYEpLS0tKOEsQS0tLS0pLL0tKPUsAAABAGRkZGRn6AAD6GRo7+s5caoQz/BkA
AUtLAAAAAEtLHBNQFxkZOxkZGRcXICw=



==24886==ERROR: AddressSanitizer: heap-buffer-overflow on address 
0x61600000dd90 at pc 0x7f2f9ad94063 bp 0x7ffc119eda20 sp 0x7ffc119ed1d0
READ of size 529 at 0x61600000dd90 thread T0
    #0 0x7f2f9ad94062  (/usr/lib/x86_64-linux-gnu/libasan.so.3+0x3c062)
    #1 0x55c45dea988b in _rl_find_prev_mbchar_internal 
(/home/dualbus/src/gnu/bash-build/bash+0x25d88b)
    #2 0x55c45deaa35c in _rl_find_prev_mbchar 
(/home/dualbus/src/gnu/bash-build/bash+0x25e35c)
    #3 0x55c45de78ca1 in expand_prompt 
(/home/dualbus/src/gnu/bash-build/bash+0x22cca1)
    #4 0x55c45de84190 in rl_message 
(/home/dualbus/src/gnu/bash-build/bash+0x238190)
    #5 0x55c45de72986 in rl_display_search 
(/home/dualbus/src/gnu/bash-build/bash+0x226986)
    #6 0x55c45de77ab7 in _rl_isearch_dispatch 
(/home/dualbus/src/gnu/bash-build/bash+0x22bab7)
    #7 0x55c45de77cae in rl_search_history 
(/home/dualbus/src/gnu/bash-build/bash+0x22bcae)
    #8 0x55c45de727ac in rl_reverse_search_history 
(/home/dualbus/src/gnu/bash-build/bash+0x2267ac)
    #9 0x55c45de4830d in _rl_dispatch_subseq 
(/home/dualbus/src/gnu/bash-build/bash+0x1fc30d)
    #10 0x55c45de47ee8 in _rl_dispatch 
(/home/dualbus/src/gnu/bash-build/bash+0x1fbee8)
    #11 0x55c45de47727 in readline_internal_char 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb727)
    #12 0x55c45de477b9 in readline_internal_charloop 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb7b9)
    #13 0x55c45de477dd in readline_internal 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb7dd)
    #14 0x55c45de46e93 in readline 
(/home/dualbus/src/gnu/bash-build/bash+0x1fae93)
    #15 0x55c45de02136 in edit_line 
(/home/dualbus/src/gnu/bash-build/bash+0x1b6136)
    #16 0x55c45ddffaa4 in read_builtin 
(/home/dualbus/src/gnu/bash-build/bash+0x1b3aa4)
    #17 0x55c45dd15c89 in execute_builtin 
(/home/dualbus/src/gnu/bash-build/bash+0xc9c89)
    #18 0x55c45dd1789f in execute_builtin_or_function 
(/home/dualbus/src/gnu/bash-build/bash+0xcb89f)
    #19 0x55c45dd1511f in execute_simple_command 
(/home/dualbus/src/gnu/bash-build/bash+0xc911f)
    #20 0x55c45dd02f42 in execute_command_internal 
(/home/dualbus/src/gnu/bash-build/bash+0xb6f42)
    #21 0x55c45dded0f4 in parse_and_execute 
(/home/dualbus/src/gnu/bash-build/bash+0x1a10f4)
    #22 0x55c45dcce401 in run_one_command 
(/home/dualbus/src/gnu/bash-build/bash+0x82401)
    #23 0x55c45dccc8da in main (/home/dualbus/src/gnu/bash-build/bash+0x808da)
    #24 0x7f2f9a5ac2b0 in __libc_start_main 
(/lib/x86_64-linux-gnu/libc.so.6+0x202b0)
    #25 0x55c45dccb749 in _start (/home/dualbus/src/gnu/bash-build/bash+0x7f749)
0x61600000dd90 is located 0 bytes to the right of 528-byte region 
[0x61600000db80,0x61600000dd90)
allocated by thread T0 here:
    #0 0x7f2f9ae19d28 in malloc (/usr/lib/x86_64-linux-gnu/libasan.so.3+0xc1d28)
    #1 0x55c45dddbd95 in xmalloc 
(/home/dualbus/src/gnu/bash-build/bash+0x18fd95)
    #2 0x55c45de78574 in expand_prompt 
(/home/dualbus/src/gnu/bash-build/bash+0x22c574)
    #3 0x55c45de84190 in rl_message 
(/home/dualbus/src/gnu/bash-build/bash+0x238190)
    #4 0x55c45de72986 in rl_display_search 
(/home/dualbus/src/gnu/bash-build/bash+0x226986)
    #5 0x55c45de77ab7 in _rl_isearch_dispatch 
(/home/dualbus/src/gnu/bash-build/bash+0x22bab7)
    #6 0x55c45de77cae in rl_search_history 
(/home/dualbus/src/gnu/bash-build/bash+0x22bcae)
    #7 0x55c45de727ac in rl_reverse_search_history 
(/home/dualbus/src/gnu/bash-build/bash+0x2267ac)
    #8 0x55c45de4830d in _rl_dispatch_subseq 
(/home/dualbus/src/gnu/bash-build/bash+0x1fc30d)
    #9 0x55c45de47ee8 in _rl_dispatch 
(/home/dualbus/src/gnu/bash-build/bash+0x1fbee8)
    #10 0x55c45de47727 in readline_internal_char 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb727)
    #11 0x55c45de477b9 in readline_internal_charloop 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb7b9)
    #12 0x55c45de477dd in readline_internal 
(/home/dualbus/src/gnu/bash-build/bash+0x1fb7dd)
    #13 0x55c45de46e93 in readline 
(/home/dualbus/src/gnu/bash-build/bash+0x1fae93)
    #14 0x55c45de02136 in edit_line 
(/home/dualbus/src/gnu/bash-build/bash+0x1b6136)
    #15 0x55c45ddffaa4 in read_builtin 
(/home/dualbus/src/gnu/bash-build/bash+0x1b3aa4)
    #16 0x55c45dd15c89 in execute_builtin 
(/home/dualbus/src/gnu/bash-build/bash+0xc9c89)
    #17 0x55c45dd1789f in execute_builtin_or_function 
(/home/dualbus/src/gnu/bash-build/bash+0xcb89f)
    #18 0x55c45dd1511f in execute_simple_command 
(/home/dualbus/src/gnu/bash-build/bash+0xc911f)
    #19 0x55c45dd02f42 in execute_command_internal 
(/home/dualbus/src/gnu/bash-build/bash+0xb6f42)
    #20 0x55c45dded0f4 in parse_and_execute 
(/home/dualbus/src/gnu/bash-build/bash+0x1a10f4)
    #21 0x55c45dcce401 in run_one_command 
(/home/dualbus/src/gnu/bash-build/bash+0x82401)
    #22 0x55c45dccc8da in main (/home/dualbus/src/gnu/bash-build/bash+0x808da)
    #23 0x7f2f9a5ac2b0 in __libc_start_main 
(/lib/x86_64-linux-gnu/libc.so.6+0x202b0)
SUMMARY: AddressSanitizer: heap-buffer-overflow 
(/usr/lib/x86_64-linux-gnu/libasan.so.3+0x3c062) 
Shadow bytes around the buggy address:
  0x0c2c7fff9b60: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
  0x0c2c7fff9b70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
  0x0c2c7fff9b80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
  0x0c2c7fff9b90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
  0x0c2c7fff9ba0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
=>0x0c2c7fff9bb0: 00 00[fa]fa fa fa fa fa fa fa fa fa fa fa fa fa
  0x0c2c7fff9bc0: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
  0x0c2c7fff9bd0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
  0x0c2c7fff9be0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
  0x0c2c7fff9bf0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
  0x0c2c7fff9c00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Shadow byte legend (one shadow byte represents 8 application bytes):
  Addressable:           00
  Partially addressable: 01 02 03 04 05 06 07 
  Heap left redzone:       fa
  Heap right redzone:      fb
  Freed heap region:       fd
  Stack left redzone:      f1
  Stack mid redzone:       f2
  Stack right redzone:     f3
  Stack partial redzone:   f4
  Stack after return:      f5
  Stack use after scope:   f8
  Global redzone:          f9
  Global init order:       f6
  Poisoned by user:        f7
  Container overflow:      fc
  Array cookie:            ac
  Intra object redzone:    bb
  ASan internal:           fe
  Left alloca redzone:     ca
  Right alloca redzone:    cb
==24886==ABORTING

INPUT
E9AYAAA1BSAAAABcGyEKGGQALx01BRsAGBpcGyGAGIAfHx8fbFHnaoxWIjajIQcYJCQkASQkpCQk
JCQkJCQkJCQkJIAAL/+AG/8YGJP7fwCAAPxWIjajIQQYgAAvbBshkBiAHx8A/2CAWx4EWx4AAAAh
fQRAf/wZAPyOABzIBEAA+h9aPQh/ODw9IBAABEALAAIAGCQkJAEkJKQkJCQkJCQkJCQkJCSAAC//
gBv/GBiTgDx//BkQADwAQwD8jjwZEAA8/yokUo6kPBlW0QAcyARAAAMVGVY8KCooKCgoKCgoKPyN
6AYAAAEAAAAeHhgZnGA8Iz0LQCYZEABkHjkA/B4eHhkBAAAAAEDr6+vr6+va6/wA/I3oBgAAAQAA
AAQDPP8qJFKOpDwZVtE1////AP9gBFseBFseACAAAX0EQH8SGRDaGwU=

-- 
Eduardo Bustamante
https://dualbus.me/



reply via email to

[Prev in Thread] Current Thread [Next in Thread]