Hello, Httpd developers! We recently ran some fuzz testing on htdbm 2.4.54 and encountered a SEGV bug. ## Command To Reproduce the bug: ./htdbm -llniiidvt ## Environment - OS: Ubuntu 20.04 - gcc 9.4.0 - htdbm 2.4.54 ## ASAN Report ================================================================= ==958289==ERROR: AddressSanitizer: SEGV on unknown address 0x000000000000 (pc 0x7f974616d6e5 bp 0x7ffd235521b0 sp 0x7ffd23551968 T0) ==958289==The signal is caused by a READ memory access. ==958289==Hint: address points to the zero page. #0 0x7f974616d6e5 /build/glibc-SzIz7B/glibc-2.31/string/../sysdeps/x86_64/multiarch/strlen-avx2.S:65 #1 0x4314f8 in strlen (/home/root/sp/Dataset/Httpd/httpd_aflpp/install/bin/htdbm+0x4314f8) #2 0x4cea93 in htdbm_verify /home/root/sp/Dataset/Httpd/httpd_aflpp/support/htdbm.c:197:17 #3 0x4cd385 in main /home/root/sp/Dataset/Httpd/httpd_aflpp/support/htdbm.c:422:23 #4 0x7f9746009082 in __libc_start_main /build/glibc-SzIz7B/glibc-2.31/csu/../csu/libc-start.c:308:16 #5 0x41d58d in _start (/home/root/sp/Dataset/Httpd/httpd_aflpp/install/bin/htdbm+0x41d58d) AddressSanitizer can not provide additional info. SUMMARY: AddressSanitizer: SEGV /build/glibc-SzIz7B/glibc-2.31/string/../sysdeps/x86_64/multiarch/strlen-avx2.S:65 ==958289==ABORTING Many Thanks.
Sending htdbm.c Transmitting file data .done Committing transaction... Committed revision 1910334.