---CRASH SUMMARY---
Filename: afl-out/crashes/id:000000,sig:06,src:000001,op:flip1,pos:2556
SHA1: d200fa80c39cd2ddc6c854527ffd7a23287361fb
Classification: EXPLOITABLE
Hash: 83b83baa4548c411fce054145445ea03.4d66ae41f52651f14021f8828811aede
Command: ./trdp-xmlprint-test afl-out/crashes/id:000000,sig:06,src:000001,op:flip1,pos:2556
Faulting Frame:
   vos_memAlloc @ 0x000000000041afab: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00007ffff75fbe86: xor edx,edx
   0x00007ffff75fbe88: mov rsi,r9
   0x00007ffff75fbe8b: mov edi,0x2
   0x00007ffff75fbe90: mov eax,0xe
   0x00007ffff75fbe95: syscall
=> 0x00007ffff75fbe97: mov rcx,QWORD PTR [rsp+0x108]
   0x00007ffff75fbe9f: xor rcx,QWORD PTR fs:0x28
   0x00007ffff75fbea8: mov eax,r8d
   0x00007ffff75fbeab: jne 0x7ffff75fbecc <__GI_raise+252>
   0x00007ffff75fbead: add rsp,0x118
Stack Head (10 entries):
   __GI_raise                @ 0x00007ffff75fbe97: in (BL)
   __GI_abort                @ 0x00007ffff75fd801: in (BL)
   __malloc_assert           @ 0x00007ffff7650a91: in (BL)
   sysmalloc                 @ 0x00007ffff7650a91: in (BL)
   _int_malloc               @ 0x00007ffff7651ff0: in (BL)
   __GI___libc_malloc        @ 0x00007ffff76540fc: in (BL)
   vos_memAlloc              @ 0x000000000041afab: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   readXmlDatasets           @ 0x0000000000432420: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_readXmlDatasetConfig  @ 0x0000000000432420: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x000000000040331e: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000000 rbx=0x00007ffff79a8c40 rcx=0x00007ffff75fbe97 rdx=0x0000000000000000 
rsi=0x00007fffffffd600 rdi=0x0000000000000002 rbp=0x0000000000000020 rsp=0x00007fffffffd600 
 r8=0x0000000000000000  r9=0x00007fffffffd600 r10=0x0000000000000008 r11=0x0000000000000246 
r12=0x0000000000001000 r13=0x00000000006a7b10 r14=0x0000000000000000 r15=0x00007ffff79a8ca0 
rip=0x00007ffff75fbe97 efl=0x0000000000000246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Heap error
   Short description: HeapError (10/22)
   Explanation: The target's backtrace indicates that libc has detected a heap error or that the target was executing a heap function when it stopped. This could be due to heap corruption, passing a bad pointer to a heap function such as free(), etc. Since heap errors might include buffer overflows, use-after-free situations, etc. they are generally considered exploitable.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000001,sig:11,src:000001,op:havoc,rep:32
SHA1: adbed7ee88020b02a2b45c59a724e0efcfb47d65
Classification: PROBABLY_NOT_EXPLOITABLE
Hash: ecde3310e561e4688b85e93027499e13.ecde3310e561e4688b85e93027499e13
Command: ./trdp-xmlprint-test afl-out/crashes/id:000001,sig:11,src:000001,op:havoc,rep:32
Faulting Frame:
   printIfCfg @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x0000000000402e1d: call 0x405f90 <__afl_maybe_log>
   0x0000000000402e22: mov rax,QWORD PTR [rsp+0x10]
   0x0000000000402e27: mov rcx,QWORD PTR [rsp+0x8]
   0x0000000000402e2c: mov rdx,QWORD PTR [rsp]
   0x0000000000402e30: lea rsp,[rsp+0x98]
=> 0x0000000000402e38: movzx esi,BYTE PTR [rbx+0x11]
   0x0000000000402e3c: xor eax,eax
   0x0000000000402e3e: mov rdi,r14
   0x0000000000402e41: mov rdx,rbx
   0x0000000000402e44: call 0x401ba0 <printf@plt>
Stack Head (2 entries):
   printIfCfg                @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000019 rbx=0x0000000000000000 rcx=0x0000000000000000 rdx=0x00007fffffffd820 
rsi=0x0000000000000000 rdi=0x00007fffffffd820 rbp=0x0000000000000001 rsp=0x00007fffffffdd80 
 r8=0x00007ffff7fd3740  r9=0x0000000000000000 r10=0x0000000000000000 r11=0x0000000000494d50 
r12=0x0000000000402010 r13=0x00007fffffffe060 r14=0x0000000000494da2 r15=0x0000000000494dc3 
rip=0x0000000000402e38 efl=0x0000000000010202  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Access violation near NULL on source operand
   Short description: SourceAvNearNull (16/22)
   Explanation: The target crashed on an access violation at an address matching the source operand of the current instruction. This likely indicates a read access violation, which may mean the application crashed on a simple NULL dereference to data structure that has no immediate effect on control of the processor.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000002,sig:11,src:000001,op:havoc,rep:4
SHA1: e011e0f7fbe8fe726edd83bfe0b12438a3539ba7
Classification: PROBABLY_NOT_EXPLOITABLE
Hash: ecde3310e561e4688b85e93027499e13.ecde3310e561e4688b85e93027499e13
Command: ./trdp-xmlprint-test afl-out/crashes/id:000002,sig:11,src:000001,op:havoc,rep:4
Faulting Frame:
   printIfCfg @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x0000000000402e1d: call 0x405f90 <__afl_maybe_log>
   0x0000000000402e22: mov rax,QWORD PTR [rsp+0x10]
   0x0000000000402e27: mov rcx,QWORD PTR [rsp+0x8]
   0x0000000000402e2c: mov rdx,QWORD PTR [rsp]
   0x0000000000402e30: lea rsp,[rsp+0x98]
=> 0x0000000000402e38: movzx esi,BYTE PTR [rbx+0x11]
   0x0000000000402e3c: xor eax,eax
   0x0000000000402e3e: mov rdi,r14
   0x0000000000402e41: mov rdx,rbx
   0x0000000000402e44: call 0x401ba0 <printf@plt>
Stack Head (2 entries):
   printIfCfg                @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000019 rbx=0x0000000000000000 rcx=0x0000000000000000 rdx=0x00007fffffffd820 
rsi=0x0000000000000000 rdi=0x00007fffffffd820 rbp=0x0000000000000001 rsp=0x00007fffffffdd80 
 r8=0x00007ffff7fd3740  r9=0x0000000000000000 r10=0x0000000000000000 r11=0x0000000000494d86 
r12=0x0000000000402010 r13=0x00007fffffffe060 r14=0x0000000000494da2 r15=0x0000000000494dc3 
rip=0x0000000000402e38 efl=0x0000000000010202  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Access violation near NULL on source operand
   Short description: SourceAvNearNull (16/22)
   Explanation: The target crashed on an access violation at an address matching the source operand of the current instruction. This likely indicates a read access violation, which may mean the application crashed on a simple NULL dereference to data structure that has no immediate effect on control of the processor.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000003,sig:11,src:000001,op:havoc,rep:8
SHA1: b1166895693f6b67ee8b14f6339d28764accf836
Classification: PROBABLY_NOT_EXPLOITABLE
Hash: 0370904da3afb96a8168a1f6f0bdcc8a.0370904da3afb96a8168a1f6f0bdcc8a
Command: ./trdp-xmlprint-test afl-out/crashes/id:000003,sig:11,src:000001,op:havoc,rep:8
Faulting Frame:
   printCommParams @ 0x0000000000402d08: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x0000000000402ced: call 0x405f90 <__afl_maybe_log>
   0x0000000000402cf2: mov rax,QWORD PTR [rsp+0x10]
   0x0000000000402cf7: mov rcx,QWORD PTR [rsp+0x8]
   0x0000000000402cfc: mov rdx,QWORD PTR [rsp]
   0x0000000000402d00: lea rsp,[rsp+0x98]
=> 0x0000000000402d08: mov esi,DWORD PTR [rbx-0x5]
   0x0000000000402d0b: movzx edx,BYTE PTR [rbx-0x1]
   0x0000000000402d0f: movzx ecx,BYTE PTR [rbx]
   0x0000000000402d12: xor eax,eax
   0x0000000000402d14: mov rdi,r14
Stack Head (2 entries):
   printCommParams           @ 0x0000000000402d08: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000402d08: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000019 rbx=0x0000000000000005 rcx=0x0000000000000000 rdx=0x00007fffffffd820 
rsi=0x0000000000000000 rdi=0x00007fffffffd820 rbp=0x0000000000000003 rsp=0x00007fffffffdd80 
 r8=0x00007ffff7fd3740  r9=0x0000000000000000 r10=0x0000000000000000 r11=0x0000000000494d50 
r12=0x0000000000402010 r13=0x00007fffffffe060 r14=0x0000000000494d6c r15=0x0000000000000000 
rip=0x0000000000402d08 efl=0x0000000000010206  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Access violation near NULL on source operand
   Short description: SourceAvNearNull (16/22)
   Explanation: The target crashed on an access violation at an address matching the source operand of the current instruction. This likely indicates a read access violation, which may mean the application crashed on a simple NULL dereference to data structure that has no immediate effect on control of the processor.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000004,sig:11,src:000002,op:flip1,pos:563
SHA1: a5e4c32bd99cb67204810617f6ec6c3767270e6e
Classification: PROBABLY_EXPLOITABLE
Hash: 31bcadb15f57445cd48f3071eee12c57.31bcadb15f57445cd48f3071eee12c57
Command: ./trdp-xmlprint-test afl-out/crashes/id:000004,sig:11,src:000002,op:flip1,pos:563
Faulting Frame:
   readXmlDatasetMap @ 0x0000000000431317: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00000000004312fc: mov rdx,QWORD PTR [rsp]
   0x0000000000431300: lea rsp,[rsp+0x98]
   0x0000000000431308: mov eax,DWORD PTR [rsp+0xb0]
   0x000000000043130f: mov rcx,QWORD PTR [rsp+0x10]
   0x0000000000431314: mov rcx,QWORD PTR [rcx]
=> 0x0000000000431317: mov DWORD PTR [rcx+r13*8],eax
   0x000000000043131b: nop
   0x000000000043131c: lea rsp,[rsp-0x98]
   0x0000000000431324: mov QWORD PTR [rsp],rdx
   0x0000000000431328: mov QWORD PTR [rsp+0x8],rcx
Stack Head (3 entries):
   readXmlDatasetMap         @ 0x0000000000431317: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_readXmlDatasetConfig  @ 0x0000000000431317: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x000000000040331e: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x00000000000003ec rbx=0x00007fffffffdcb0 rcx=0x0000000000000000 rdx=0x00007ffff775adc0 
rsi=0x0000000000497ac3 rdi=0x00007fffffffdcb0 rbp=0x00000000006a6270 rsp=0x00007fffffffdb00 
 r8=0x00007fffffffdb34  r9=0x0000000000000000 r10=0x00007ffff775bcc0 r11=0x0000000000000076 
r12=0x0000000000497ac3 r13=0x0000000000000000 r14=0x00007fffffffdb30 r15=0x00007fffffffdbb0 
rip=0x0000000000431317 efl=0x0000000000010246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Access violation near NULL on destination operand
   Short description: DestAvNearNull (15/22)
   Explanation: The target crashed on an access violation at an address matching the destination operand of the instruction. This likely indicates a write access violation, which means the attacker may control write address and/or value. However, it there is a chance it could be a NULL dereference.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000005,sig:06,src:000002,op:flip1,pos:3328
SHA1: b5490b2efc99c1a7bbce0a2eb805147c1c646377
Classification: EXPLOITABLE
Hash: 92b3ea7508e258a91b96a1bcaab290ce.fda47f6974e87d79b4a198b5b5d2204c
Command: ./trdp-xmlprint-test afl-out/crashes/id:000005,sig:06,src:000002,op:flip1,pos:3328
Faulting Frame:
   vos_memFree @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00007ffff75fbe86: xor edx,edx
   0x00007ffff75fbe88: mov rsi,r9
   0x00007ffff75fbe8b: mov edi,0x2
   0x00007ffff75fbe90: mov eax,0xe
   0x00007ffff75fbe95: syscall
=> 0x00007ffff75fbe97: mov rcx,QWORD PTR [rsp+0x108]
   0x00007ffff75fbe9f: xor rcx,QWORD PTR fs:0x28
   0x00007ffff75fbea8: mov eax,r8d
   0x00007ffff75fbeab: jne 0x7ffff75fbecc <__GI_raise+252>
   0x00007ffff75fbead: add rsp,0x118
Stack Head (9 entries):
   __GI_raise                @ 0x00007ffff75fbe97: in (BL)
   __GI_abort                @ 0x00007ffff75fd801: in (BL)
   __libc_message            @ 0x00007ffff7646897: in (BL)
   malloc_printerr           @ 0x00007ffff764d90a: in (BL)
   _int_free                 @ 0x00007ffff7654f60: in (BL)
   __GI___libc_free          @ 0x00007ffff7654f60: in (BL)
   vos_memFree               @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_freeTelegrams         @ 0x0000000000429924: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000405334: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000000 rbx=0x00007fffffffda80 rcx=0x00007ffff75fbe97 rdx=0x0000000000000000 
rsi=0x00007fffffffd810 rdi=0x0000000000000002 rbp=0x00007fffffffdb80 rsp=0x00007fffffffd810 
 r8=0x0000000000000000  r9=0x00007fffffffd810 r10=0x0000000000000008 r11=0x0000000000000246 
r12=0x00007fffffffda80 r13=0x0000000000001000 r14=0x0000000000000000 r15=0x0000000000000030 
rip=0x00007ffff75fbe97 efl=0x0000000000000246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Heap error
   Short description: HeapError (10/22)
   Explanation: The target's backtrace indicates that libc has detected a heap error or that the target was executing a heap function when it stopped. This could be due to heap corruption, passing a bad pointer to a heap function such as free(), etc. Since heap errors might include buffer overflows, use-after-free situations, etc. they are generally considered exploitable.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000006,sig:06,src:000002,op:flip1,pos:3635
SHA1: 99dade5ae35c3442a063eb38150e4b56ce92b685
Classification: EXPLOITABLE
Hash: 92b3ea7508e258a91b96a1bcaab290ce.fda47f6974e87d79b4a198b5b5d2204c
Command: ./trdp-xmlprint-test afl-out/crashes/id:000006,sig:06,src:000002,op:flip1,pos:3635
Faulting Frame:
   vos_memFree @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00007ffff75fbe86: xor edx,edx
   0x00007ffff75fbe88: mov rsi,r9
   0x00007ffff75fbe8b: mov edi,0x2
   0x00007ffff75fbe90: mov eax,0xe
   0x00007ffff75fbe95: syscall
=> 0x00007ffff75fbe97: mov rcx,QWORD PTR [rsp+0x108]
   0x00007ffff75fbe9f: xor rcx,QWORD PTR fs:0x28
   0x00007ffff75fbea8: mov eax,r8d
   0x00007ffff75fbeab: jne 0x7ffff75fbecc <__GI_raise+252>
   0x00007ffff75fbead: add rsp,0x118
Stack Head (9 entries):
   __GI_raise                @ 0x00007ffff75fbe97: in (BL)
   __GI_abort                @ 0x00007ffff75fd801: in (BL)
   __libc_message            @ 0x00007ffff7646897: in (BL)
   malloc_printerr           @ 0x00007ffff764d90a: in (BL)
   _int_free                 @ 0x00007ffff7654f60: in (BL)
   __GI___libc_free          @ 0x00007ffff7654f60: in (BL)
   vos_memFree               @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_freeTelegrams         @ 0x0000000000429924: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000405334: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000000 rbx=0x00007fffffffda80 rcx=0x00007ffff75fbe97 rdx=0x0000000000000000 
rsi=0x00007fffffffd810 rdi=0x0000000000000002 rbp=0x00007fffffffdb80 rsp=0x00007fffffffd810 
 r8=0x0000000000000000  r9=0x00007fffffffd810 r10=0x0000000000000008 r11=0x0000000000000246 
r12=0x00007fffffffda80 r13=0x0000000000001000 r14=0x0000000000000000 r15=0x0000000000000030 
rip=0x00007ffff75fbe97 efl=0x0000000000000246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Heap error
   Short description: HeapError (10/22)
   Explanation: The target's backtrace indicates that libc has detected a heap error or that the target was executing a heap function when it stopped. This could be due to heap corruption, passing a bad pointer to a heap function such as free(), etc. Since heap errors might include buffer overflows, use-after-free situations, etc. they are generally considered exploitable.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000007,sig:11,src:000002,op:arith8,pos:565,val:+28
SHA1: bdb2ffca9a5a6c0aebcbf646e9d373843594132b
Classification: PROBABLY_EXPLOITABLE
Hash: 31bcadb15f57445cd48f3071eee12c57.31bcadb15f57445cd48f3071eee12c57
Command: ./trdp-xmlprint-test afl-out/crashes/id:000007,sig:11,src:000002,op:arith8,pos:565,val:+28
Faulting Frame:
   readXmlDatasetMap @ 0x0000000000431317: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00000000004312fc: mov rdx,QWORD PTR [rsp]
   0x0000000000431300: lea rsp,[rsp+0x98]
   0x0000000000431308: mov eax,DWORD PTR [rsp+0xb0]
   0x000000000043130f: mov rcx,QWORD PTR [rsp+0x10]
   0x0000000000431314: mov rcx,QWORD PTR [rcx]
=> 0x0000000000431317: mov DWORD PTR [rcx+r13*8],eax
   0x000000000043131b: nop
   0x000000000043131c: lea rsp,[rsp-0x98]
   0x0000000000431324: mov QWORD PTR [rsp],rdx
   0x0000000000431328: mov QWORD PTR [rsp+0x8],rcx
Stack Head (3 entries):
   readXmlDatasetMap         @ 0x0000000000431317: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_readXmlDatasetConfig  @ 0x0000000000431317: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x000000000040331e: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x00000000000003ec rbx=0x00007fffffffdcb0 rcx=0x0000000000000000 rdx=0x00007ffff775adc0 
rsi=0x0000000000497ac3 rdi=0x00007fffffffdcb0 rbp=0x00000000006a6270 rsp=0x00007fffffffdb00 
 r8=0x00007fffffffdb34  r9=0x0000000000000000 r10=0x00007ffff775bcc0 r11=0x0000000000000076 
r12=0x0000000000497ac3 r13=0x0000000000000000 r14=0x00007fffffffdb30 r15=0x00007fffffffdbb0 
rip=0x0000000000431317 efl=0x0000000000010246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Access violation near NULL on destination operand
   Short description: DestAvNearNull (15/22)
   Explanation: The target crashed on an access violation at an address matching the destination operand of the instruction. This likely indicates a write access violation, which means the attacker may control write address and/or value. However, it there is a chance it could be a NULL dereference.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000008,sig:06,src:000002,op:havoc,rep:8
SHA1: e9dfea7d0c4bf3a09b8029b76266c58728f6a308
Classification: EXPLOITABLE
Hash: 83b83baa4548c411fce054145445ea03.4d66ae41f52651f14021f8828811aede
Command: ./trdp-xmlprint-test afl-out/crashes/id:000008,sig:06,src:000002,op:havoc,rep:8
Faulting Frame:
   vos_memAlloc @ 0x000000000041afab: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00007ffff75fbe86: xor edx,edx
   0x00007ffff75fbe88: mov rsi,r9
   0x00007ffff75fbe8b: mov edi,0x2
   0x00007ffff75fbe90: mov eax,0xe
   0x00007ffff75fbe95: syscall
=> 0x00007ffff75fbe97: mov rcx,QWORD PTR [rsp+0x108]
   0x00007ffff75fbe9f: xor rcx,QWORD PTR fs:0x28
   0x00007ffff75fbea8: mov eax,r8d
   0x00007ffff75fbeab: jne 0x7ffff75fbecc <__GI_raise+252>
   0x00007ffff75fbead: add rsp,0x118
Stack Head (10 entries):
   __GI_raise                @ 0x00007ffff75fbe97: in (BL)
   __GI_abort                @ 0x00007ffff75fd801: in (BL)
   __malloc_assert           @ 0x00007ffff7650a91: in (BL)
   sysmalloc                 @ 0x00007ffff7650a91: in (BL)
   _int_malloc               @ 0x00007ffff7651ff0: in (BL)
   __GI___libc_malloc        @ 0x00007ffff76540fc: in (BL)
   vos_memAlloc              @ 0x000000000041afab: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   readXmlDatasets           @ 0x0000000000432420: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_readXmlDatasetConfig  @ 0x0000000000432420: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x000000000040331e: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000000 rbx=0x00007ffff79a8c40 rcx=0x00007ffff75fbe97 rdx=0x0000000000000000 
rsi=0x00007fffffffd610 rdi=0x0000000000000002 rbp=0x0000000000000020 rsp=0x00007fffffffd610 
 r8=0x0000000000000000  r9=0x00007fffffffd610 r10=0x0000000000000008 r11=0x0000000000000246 
r12=0x0000000000001000 r13=0x00000000006a7a80 r14=0x0000000000000000 r15=0x00007ffff79a8ca0 
rip=0x00007ffff75fbe97 efl=0x0000000000000246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Heap error
   Short description: HeapError (10/22)
   Explanation: The target's backtrace indicates that libc has detected a heap error or that the target was executing a heap function when it stopped. This could be due to heap corruption, passing a bad pointer to a heap function such as free(), etc. Since heap errors might include buffer overflows, use-after-free situations, etc. they are generally considered exploitable.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000009,sig:11,src:000002,op:havoc,rep:64
SHA1: 8c184f51a28c302e27af4815621f628492d91829
Classification: PROBABLY_EXPLOITABLE
Hash: 31bcadb15f57445cd48f3071eee12c57.31bcadb15f57445cd48f3071eee12c57
Command: ./trdp-xmlprint-test afl-out/crashes/id:000009,sig:11,src:000002,op:havoc,rep:64
Faulting Frame:
   readXmlDatasetMap @ 0x0000000000431317: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00000000004312fc: mov rdx,QWORD PTR [rsp]
   0x0000000000431300: lea rsp,[rsp+0x98]
   0x0000000000431308: mov eax,DWORD PTR [rsp+0xb0]
   0x000000000043130f: mov rcx,QWORD PTR [rsp+0x10]
   0x0000000000431314: mov rcx,QWORD PTR [rcx]
=> 0x0000000000431317: mov DWORD PTR [rcx+r13*8],eax
   0x000000000043131b: nop
   0x000000000043131c: lea rsp,[rsp-0x98]
   0x0000000000431324: mov QWORD PTR [rsp],rdx
   0x0000000000431328: mov QWORD PTR [rsp+0x8],rcx
Stack Head (3 entries):
   readXmlDatasetMap         @ 0x0000000000431317: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_readXmlDatasetConfig  @ 0x0000000000431317: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x000000000040331e: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x00000000000003ec rbx=0x00007fffffffdcc0 rcx=0x0000000000000000 rdx=0x00007ffff775adc0 
rsi=0x0000000000497ac3 rdi=0x00007fffffffdcc0 rbp=0x00000000006a6270 rsp=0x00007fffffffdb10 
 r8=0x00007fffffffdb44  r9=0x0000000000000000 r10=0x00007ffff775bcc0 r11=0x0000000000000076 
r12=0x0000000000497ac3 r13=0x0000000000000000 r14=0x00007fffffffdb40 r15=0x00007fffffffdbc0 
rip=0x0000000000431317 efl=0x0000000000010246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Access violation near NULL on destination operand
   Short description: DestAvNearNull (15/22)
   Explanation: The target crashed on an access violation at an address matching the destination operand of the instruction. This likely indicates a write access violation, which means the attacker may control write address and/or value. However, it there is a chance it could be a NULL dereference.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000010,sig:06,src:000002,op:havoc,rep:4
SHA1: 1b72eb6c8e14aa49b4e9b93edc9c61e59e647909
Classification: EXPLOITABLE
Hash: 92b3ea7508e258a91b96a1bcaab290ce.fda47f6974e87d79b4a198b5b5d2204c
Command: ./trdp-xmlprint-test afl-out/crashes/id:000010,sig:06,src:000002,op:havoc,rep:4
Faulting Frame:
   vos_memFree @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00007ffff75fbe86: xor edx,edx
   0x00007ffff75fbe88: mov rsi,r9
   0x00007ffff75fbe8b: mov edi,0x2
   0x00007ffff75fbe90: mov eax,0xe
   0x00007ffff75fbe95: syscall
=> 0x00007ffff75fbe97: mov rcx,QWORD PTR [rsp+0x108]
   0x00007ffff75fbe9f: xor rcx,QWORD PTR fs:0x28
   0x00007ffff75fbea8: mov eax,r8d
   0x00007ffff75fbeab: jne 0x7ffff75fbecc <__GI_raise+252>
   0x00007ffff75fbead: add rsp,0x118
Stack Head (9 entries):
   __GI_raise                @ 0x00007ffff75fbe97: in (BL)
   __GI_abort                @ 0x00007ffff75fd801: in (BL)
   __libc_message            @ 0x00007ffff7646897: in (BL)
   malloc_printerr           @ 0x00007ffff764d90a: in (BL)
   _int_free                 @ 0x00007ffff7654f60: in (BL)
   __GI___libc_free          @ 0x00007ffff7654f60: in (BL)
   vos_memFree               @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_freeTelegrams         @ 0x0000000000429924: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000405334: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000000 rbx=0x00007fffffffda90 rcx=0x00007ffff75fbe97 rdx=0x0000000000000000 
rsi=0x00007fffffffd820 rdi=0x0000000000000002 rbp=0x00007fffffffdb90 rsp=0x00007fffffffd820 
 r8=0x0000000000000000  r9=0x00007fffffffd820 r10=0x0000000000000008 r11=0x0000000000000246 
r12=0x00007fffffffda90 r13=0x0000000000001000 r14=0x0000000000000000 r15=0x0000000000000030 
rip=0x00007ffff75fbe97 efl=0x0000000000000246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Heap error
   Short description: HeapError (10/22)
   Explanation: The target's backtrace indicates that libc has detected a heap error or that the target was executing a heap function when it stopped. This could be due to heap corruption, passing a bad pointer to a heap function such as free(), etc. Since heap errors might include buffer overflows, use-after-free situations, etc. they are generally considered exploitable.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000011,sig:06,src:000006,op:flip1,pos:2090
SHA1: 9e7289deea373c61cf69404ae944407dd617f8b3
Classification: EXPLOITABLE
Hash: 92b3ea7508e258a91b96a1bcaab290ce.fda47f6974e87d79b4a198b5b5d2204c
Command: ./trdp-xmlprint-test afl-out/crashes/id:000011,sig:06,src:000006,op:flip1,pos:2090
Faulting Frame:
   vos_memFree @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00007ffff75fbe86: xor edx,edx
   0x00007ffff75fbe88: mov rsi,r9
   0x00007ffff75fbe8b: mov edi,0x2
   0x00007ffff75fbe90: mov eax,0xe
   0x00007ffff75fbe95: syscall
=> 0x00007ffff75fbe97: mov rcx,QWORD PTR [rsp+0x108]
   0x00007ffff75fbe9f: xor rcx,QWORD PTR fs:0x28
   0x00007ffff75fbea8: mov eax,r8d
   0x00007ffff75fbeab: jne 0x7ffff75fbecc <__GI_raise+252>
   0x00007ffff75fbead: add rsp,0x118
Stack Head (9 entries):
   __GI_raise                @ 0x00007ffff75fbe97: in (BL)
   __GI_abort                @ 0x00007ffff75fd801: in (BL)
   __libc_message            @ 0x00007ffff7646897: in (BL)
   malloc_printerr           @ 0x00007ffff764d90a: in (BL)
   _int_free                 @ 0x00007ffff7654f60: in (BL)
   __GI___libc_free          @ 0x00007ffff7654f60: in (BL)
   vos_memFree               @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_freeTelegrams         @ 0x0000000000429924: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000405334: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000000 rbx=0x00007fffffffda80 rcx=0x00007ffff75fbe97 rdx=0x0000000000000000 
rsi=0x00007fffffffd810 rdi=0x0000000000000002 rbp=0x00007fffffffdb80 rsp=0x00007fffffffd810 
 r8=0x0000000000000000  r9=0x00007fffffffd810 r10=0x0000000000000008 r11=0x0000000000000246 
r12=0x00007fffffffda80 r13=0x0000000000001000 r14=0x0000000000000000 r15=0x0000000000000030 
rip=0x00007ffff75fbe97 efl=0x0000000000000246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Heap error
   Short description: HeapError (10/22)
   Explanation: The target's backtrace indicates that libc has detected a heap error or that the target was executing a heap function when it stopped. This could be due to heap corruption, passing a bad pointer to a heap function such as free(), etc. Since heap errors might include buffer overflows, use-after-free situations, etc. they are generally considered exploitable.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000012,sig:06,src:000006,op:flip1,pos:3710
SHA1: fec88134f16f45c9289705d4b1bf753ac0f9495c
Classification: EXPLOITABLE
Hash: 92b3ea7508e258a91b96a1bcaab290ce.fda47f6974e87d79b4a198b5b5d2204c
Command: ./trdp-xmlprint-test afl-out/crashes/id:000012,sig:06,src:000006,op:flip1,pos:3710
Faulting Frame:
   vos_memFree @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00007ffff75fbe86: xor edx,edx
   0x00007ffff75fbe88: mov rsi,r9
   0x00007ffff75fbe8b: mov edi,0x2
   0x00007ffff75fbe90: mov eax,0xe
   0x00007ffff75fbe95: syscall
=> 0x00007ffff75fbe97: mov rcx,QWORD PTR [rsp+0x108]
   0x00007ffff75fbe9f: xor rcx,QWORD PTR fs:0x28
   0x00007ffff75fbea8: mov eax,r8d
   0x00007ffff75fbeab: jne 0x7ffff75fbecc <__GI_raise+252>
   0x00007ffff75fbead: add rsp,0x118
Stack Head (9 entries):
   __GI_raise                @ 0x00007ffff75fbe97: in (BL)
   __GI_abort                @ 0x00007ffff75fd801: in (BL)
   __libc_message            @ 0x00007ffff7646897: in (BL)
   malloc_printerr           @ 0x00007ffff764d90a: in (BL)
   _int_free                 @ 0x00007ffff7654f60: in (BL)
   __GI___libc_free          @ 0x00007ffff7654f60: in (BL)
   vos_memFree               @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_freeTelegrams         @ 0x0000000000429924: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000405334: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000000 rbx=0x00007fffffffda80 rcx=0x00007ffff75fbe97 rdx=0x0000000000000000 
rsi=0x00007fffffffd810 rdi=0x0000000000000002 rbp=0x00007fffffffdb80 rsp=0x00007fffffffd810 
 r8=0x0000000000000000  r9=0x00007fffffffd810 r10=0x0000000000000008 r11=0x0000000000000246 
r12=0x00007fffffffda80 r13=0x0000000000001000 r14=0x0000000000000000 r15=0x0000000000000030 
rip=0x00007ffff75fbe97 efl=0x0000000000000246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Heap error
   Short description: HeapError (10/22)
   Explanation: The target's backtrace indicates that libc has detected a heap error or that the target was executing a heap function when it stopped. This could be due to heap corruption, passing a bad pointer to a heap function such as free(), etc. Since heap errors might include buffer overflows, use-after-free situations, etc. they are generally considered exploitable.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000013,sig:06,src:000006,op:flip1,pos:5978
SHA1: 6a781208e95d37547db176a2979f8591151ecff6
Classification: EXPLOITABLE
Hash: 92b3ea7508e258a91b96a1bcaab290ce.fda47f6974e87d79b4a198b5b5d2204c
Command: ./trdp-xmlprint-test afl-out/crashes/id:000013,sig:06,src:000006,op:flip1,pos:5978
Faulting Frame:
   vos_memFree @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00007ffff75fbe86: xor edx,edx
   0x00007ffff75fbe88: mov rsi,r9
   0x00007ffff75fbe8b: mov edi,0x2
   0x00007ffff75fbe90: mov eax,0xe
   0x00007ffff75fbe95: syscall
=> 0x00007ffff75fbe97: mov rcx,QWORD PTR [rsp+0x108]
   0x00007ffff75fbe9f: xor rcx,QWORD PTR fs:0x28
   0x00007ffff75fbea8: mov eax,r8d
   0x00007ffff75fbeab: jne 0x7ffff75fbecc <__GI_raise+252>
   0x00007ffff75fbead: add rsp,0x118
Stack Head (9 entries):
   __GI_raise                @ 0x00007ffff75fbe97: in (BL)
   __GI_abort                @ 0x00007ffff75fd801: in (BL)
   __libc_message            @ 0x00007ffff7646897: in (BL)
   malloc_printerr           @ 0x00007ffff764d90a: in (BL)
   _int_free                 @ 0x00007ffff7654f60: in (BL)
   __GI___libc_free          @ 0x00007ffff7654f60: in (BL)
   vos_memFree               @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_freeTelegrams         @ 0x0000000000429924: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000405334: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000000 rbx=0x00007fffffffda80 rcx=0x00007ffff75fbe97 rdx=0x0000000000000000 
rsi=0x00007fffffffd810 rdi=0x0000000000000002 rbp=0x00007fffffffdb80 rsp=0x00007fffffffd810 
 r8=0x0000000000000000  r9=0x00007fffffffd810 r10=0x0000000000000008 r11=0x0000000000000246 
r12=0x00007fffffffda80 r13=0x0000000000001000 r14=0x0000000000000000 r15=0x0000000000000030 
rip=0x00007ffff75fbe97 efl=0x0000000000000246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Heap error
   Short description: HeapError (10/22)
   Explanation: The target's backtrace indicates that libc has detected a heap error or that the target was executing a heap function when it stopped. This could be due to heap corruption, passing a bad pointer to a heap function such as free(), etc. Since heap errors might include buffer overflows, use-after-free situations, etc. they are generally considered exploitable.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000014,sig:06,src:000006,op:flip1,pos:6626
SHA1: 67c920a696b9b0eae6f2ff317d43fdc3a1d9f029
Classification: EXPLOITABLE
Hash: 92b3ea7508e258a91b96a1bcaab290ce.fda47f6974e87d79b4a198b5b5d2204c
Command: ./trdp-xmlprint-test afl-out/crashes/id:000014,sig:06,src:000006,op:flip1,pos:6626
Faulting Frame:
   vos_memFree @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00007ffff75fbe86: xor edx,edx
   0x00007ffff75fbe88: mov rsi,r9
   0x00007ffff75fbe8b: mov edi,0x2
   0x00007ffff75fbe90: mov eax,0xe
   0x00007ffff75fbe95: syscall
=> 0x00007ffff75fbe97: mov rcx,QWORD PTR [rsp+0x108]
   0x00007ffff75fbe9f: xor rcx,QWORD PTR fs:0x28
   0x00007ffff75fbea8: mov eax,r8d
   0x00007ffff75fbeab: jne 0x7ffff75fbecc <__GI_raise+252>
   0x00007ffff75fbead: add rsp,0x118
Stack Head (9 entries):
   __GI_raise                @ 0x00007ffff75fbe97: in (BL)
   __GI_abort                @ 0x00007ffff75fd801: in (BL)
   __libc_message            @ 0x00007ffff7646897: in (BL)
   malloc_printerr           @ 0x00007ffff764d90a: in (BL)
   _int_free                 @ 0x00007ffff7654f60: in (BL)
   __GI___libc_free          @ 0x00007ffff7654f60: in (BL)
   vos_memFree               @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_freeTelegrams         @ 0x0000000000429924: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000405334: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000000 rbx=0x00007fffffffda80 rcx=0x00007ffff75fbe97 rdx=0x0000000000000000 
rsi=0x00007fffffffd810 rdi=0x0000000000000002 rbp=0x00007fffffffdb80 rsp=0x00007fffffffd810 
 r8=0x0000000000000000  r9=0x00007fffffffd810 r10=0x0000000000000008 r11=0x0000000000000246 
r12=0x00007fffffffda80 r13=0x0000000000001000 r14=0x0000000000000000 r15=0x0000000000000030 
rip=0x00007ffff75fbe97 efl=0x0000000000000246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Heap error
   Short description: HeapError (10/22)
   Explanation: The target's backtrace indicates that libc has detected a heap error or that the target was executing a heap function when it stopped. This could be due to heap corruption, passing a bad pointer to a heap function such as free(), etc. Since heap errors might include buffer overflows, use-after-free situations, etc. they are generally considered exploitable.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000015,sig:06,src:000006,op:flip1,pos:7274
SHA1: 3926c30147355e2e68aa54caefac7fcdd9d64c53
Classification: EXPLOITABLE
Hash: 92b3ea7508e258a91b96a1bcaab290ce.fda47f6974e87d79b4a198b5b5d2204c
Command: ./trdp-xmlprint-test afl-out/crashes/id:000015,sig:06,src:000006,op:flip1,pos:7274
Faulting Frame:
   vos_memFree @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00007ffff75fbe86: xor edx,edx
   0x00007ffff75fbe88: mov rsi,r9
   0x00007ffff75fbe8b: mov edi,0x2
   0x00007ffff75fbe90: mov eax,0xe
   0x00007ffff75fbe95: syscall
=> 0x00007ffff75fbe97: mov rcx,QWORD PTR [rsp+0x108]
   0x00007ffff75fbe9f: xor rcx,QWORD PTR fs:0x28
   0x00007ffff75fbea8: mov eax,r8d
   0x00007ffff75fbeab: jne 0x7ffff75fbecc <__GI_raise+252>
   0x00007ffff75fbead: add rsp,0x118
Stack Head (9 entries):
   __GI_raise                @ 0x00007ffff75fbe97: in (BL)
   __GI_abort                @ 0x00007ffff75fd801: in (BL)
   __libc_message            @ 0x00007ffff7646897: in (BL)
   malloc_printerr           @ 0x00007ffff764d90a: in (BL)
   _int_free                 @ 0x00007ffff7654f60: in (BL)
   __GI___libc_free          @ 0x00007ffff7654f60: in (BL)
   vos_memFree               @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_freeTelegrams         @ 0x0000000000429924: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000405334: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000000 rbx=0x00007fffffffda80 rcx=0x00007ffff75fbe97 rdx=0x0000000000000000 
rsi=0x00007fffffffd810 rdi=0x0000000000000002 rbp=0x00007fffffffdb80 rsp=0x00007fffffffd810 
 r8=0x0000000000000000  r9=0x00007fffffffd810 r10=0x0000000000000008 r11=0x0000000000000246 
r12=0x00007fffffffda80 r13=0x0000000000001000 r14=0x0000000000000000 r15=0x0000000000000030 
rip=0x00007ffff75fbe97 efl=0x0000000000000246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Heap error
   Short description: HeapError (10/22)
   Explanation: The target's backtrace indicates that libc has detected a heap error or that the target was executing a heap function when it stopped. This could be due to heap corruption, passing a bad pointer to a heap function such as free(), etc. Since heap errors might include buffer overflows, use-after-free situations, etc. they are generally considered exploitable.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000016,sig:06,src:000006,op:flip1,pos:7598
SHA1: 2654baa7103594c402ece947cc4a97d7edee1257
Classification: EXPLOITABLE
Hash: 92b3ea7508e258a91b96a1bcaab290ce.fda47f6974e87d79b4a198b5b5d2204c
Command: ./trdp-xmlprint-test afl-out/crashes/id:000016,sig:06,src:000006,op:flip1,pos:7598
Faulting Frame:
   vos_memFree @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00007ffff75fbe86: xor edx,edx
   0x00007ffff75fbe88: mov rsi,r9
   0x00007ffff75fbe8b: mov edi,0x2
   0x00007ffff75fbe90: mov eax,0xe
   0x00007ffff75fbe95: syscall
=> 0x00007ffff75fbe97: mov rcx,QWORD PTR [rsp+0x108]
   0x00007ffff75fbe9f: xor rcx,QWORD PTR fs:0x28
   0x00007ffff75fbea8: mov eax,r8d
   0x00007ffff75fbeab: jne 0x7ffff75fbecc <__GI_raise+252>
   0x00007ffff75fbead: add rsp,0x118
Stack Head (9 entries):
   __GI_raise                @ 0x00007ffff75fbe97: in (BL)
   __GI_abort                @ 0x00007ffff75fd801: in (BL)
   __libc_message            @ 0x00007ffff7646897: in (BL)
   malloc_printerr           @ 0x00007ffff764d90a: in (BL)
   _int_free                 @ 0x00007ffff7654f60: in (BL)
   __GI___libc_free          @ 0x00007ffff7654f60: in (BL)
   vos_memFree               @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_freeTelegrams         @ 0x0000000000429924: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000405334: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000000 rbx=0x00007fffffffda80 rcx=0x00007ffff75fbe97 rdx=0x0000000000000000 
rsi=0x00007fffffffd810 rdi=0x0000000000000002 rbp=0x00007fffffffdb80 rsp=0x00007fffffffd810 
 r8=0x0000000000000000  r9=0x00007fffffffd810 r10=0x0000000000000008 r11=0x0000000000000246 
r12=0x00007fffffffda80 r13=0x0000000000001000 r14=0x0000000000000000 r15=0x0000000000000030 
rip=0x00007ffff75fbe97 efl=0x0000000000000246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Heap error
   Short description: HeapError (10/22)
   Explanation: The target's backtrace indicates that libc has detected a heap error or that the target was executing a heap function when it stopped. This could be due to heap corruption, passing a bad pointer to a heap function such as free(), etc. Since heap errors might include buffer overflows, use-after-free situations, etc. they are generally considered exploitable.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000017,sig:06,src:000006,op:flip1,pos:11162
SHA1: d35064ceaac2778b0de9b9084e79ab54ae2fc5f3
Classification: EXPLOITABLE
Hash: 92b3ea7508e258a91b96a1bcaab290ce.fda47f6974e87d79b4a198b5b5d2204c
Command: ./trdp-xmlprint-test afl-out/crashes/id:000017,sig:06,src:000006,op:flip1,pos:11162
Faulting Frame:
   vos_memFree @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00007ffff75fbe86: xor edx,edx
   0x00007ffff75fbe88: mov rsi,r9
   0x00007ffff75fbe8b: mov edi,0x2
   0x00007ffff75fbe90: mov eax,0xe
   0x00007ffff75fbe95: syscall
=> 0x00007ffff75fbe97: mov rcx,QWORD PTR [rsp+0x108]
   0x00007ffff75fbe9f: xor rcx,QWORD PTR fs:0x28
   0x00007ffff75fbea8: mov eax,r8d
   0x00007ffff75fbeab: jne 0x7ffff75fbecc <__GI_raise+252>
   0x00007ffff75fbead: add rsp,0x118
Stack Head (9 entries):
   __GI_raise                @ 0x00007ffff75fbe97: in (BL)
   __GI_abort                @ 0x00007ffff75fd801: in (BL)
   __libc_message            @ 0x00007ffff7646897: in (BL)
   malloc_printerr           @ 0x00007ffff764d90a: in (BL)
   _int_free                 @ 0x00007ffff7654f60: in (BL)
   __GI___libc_free          @ 0x00007ffff7654f60: in (BL)
   vos_memFree               @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_freeTelegrams         @ 0x0000000000429924: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000405334: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000000 rbx=0x00007fffffffda80 rcx=0x00007ffff75fbe97 rdx=0x0000000000000000 
rsi=0x00007fffffffd810 rdi=0x0000000000000002 rbp=0x00007fffffffdb80 rsp=0x00007fffffffd810 
 r8=0x0000000000000000  r9=0x00007fffffffd810 r10=0x0000000000000008 r11=0x0000000000000246 
r12=0x00007fffffffda80 r13=0x0000000000001000 r14=0x0000000000000000 r15=0x0000000000000030 
rip=0x00007ffff75fbe97 efl=0x0000000000000246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Heap error
   Short description: HeapError (10/22)
   Explanation: The target's backtrace indicates that libc has detected a heap error or that the target was executing a heap function when it stopped. This could be due to heap corruption, passing a bad pointer to a heap function such as free(), etc. Since heap errors might include buffer overflows, use-after-free situations, etc. they are generally considered exploitable.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000018,sig:06,src:000006,op:flip1,pos:12134
SHA1: 0d227a1966dbd07a2dfc85964e813d5d6981980c
Classification: EXPLOITABLE
Hash: 92b3ea7508e258a91b96a1bcaab290ce.fda47f6974e87d79b4a198b5b5d2204c
Command: ./trdp-xmlprint-test afl-out/crashes/id:000018,sig:06,src:000006,op:flip1,pos:12134
Faulting Frame:
   vos_memFree @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00007ffff75fbe86: xor edx,edx
   0x00007ffff75fbe88: mov rsi,r9
   0x00007ffff75fbe8b: mov edi,0x2
   0x00007ffff75fbe90: mov eax,0xe
   0x00007ffff75fbe95: syscall
=> 0x00007ffff75fbe97: mov rcx,QWORD PTR [rsp+0x108]
   0x00007ffff75fbe9f: xor rcx,QWORD PTR fs:0x28
   0x00007ffff75fbea8: mov eax,r8d
   0x00007ffff75fbeab: jne 0x7ffff75fbecc <__GI_raise+252>
   0x00007ffff75fbead: add rsp,0x118
Stack Head (9 entries):
   __GI_raise                @ 0x00007ffff75fbe97: in (BL)
   __GI_abort                @ 0x00007ffff75fd801: in (BL)
   __libc_message            @ 0x00007ffff7646897: in (BL)
   malloc_printerr           @ 0x00007ffff764d90a: in (BL)
   _int_free                 @ 0x00007ffff7654f60: in (BL)
   __GI___libc_free          @ 0x00007ffff7654f60: in (BL)
   vos_memFree               @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_freeTelegrams         @ 0x0000000000429924: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000405334: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000000 rbx=0x00007fffffffda80 rcx=0x00007ffff75fbe97 rdx=0x0000000000000000 
rsi=0x00007fffffffd810 rdi=0x0000000000000002 rbp=0x00007fffffffdb80 rsp=0x00007fffffffd810 
 r8=0x0000000000000000  r9=0x00007fffffffd810 r10=0x0000000000000008 r11=0x0000000000000246 
r12=0x00007fffffffda80 r13=0x0000000000001000 r14=0x0000000000000000 r15=0x0000000000000030 
rip=0x00007ffff75fbe97 efl=0x0000000000000246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Heap error
   Short description: HeapError (10/22)
   Explanation: The target's backtrace indicates that libc has detected a heap error or that the target was executing a heap function when it stopped. This could be due to heap corruption, passing a bad pointer to a heap function such as free(), etc. Since heap errors might include buffer overflows, use-after-free situations, etc. they are generally considered exploitable.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000019,sig:06,src:000006,op:flip1,pos:13430
SHA1: 359eef3939bac133f89a785874baeb17771fe5bb
Classification: EXPLOITABLE
Hash: 92b3ea7508e258a91b96a1bcaab290ce.fda47f6974e87d79b4a198b5b5d2204c
Command: ./trdp-xmlprint-test afl-out/crashes/id:000019,sig:06,src:000006,op:flip1,pos:13430
Faulting Frame:
   vos_memFree @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00007ffff75fbe86: xor edx,edx
   0x00007ffff75fbe88: mov rsi,r9
   0x00007ffff75fbe8b: mov edi,0x2
   0x00007ffff75fbe90: mov eax,0xe
   0x00007ffff75fbe95: syscall
=> 0x00007ffff75fbe97: mov rcx,QWORD PTR [rsp+0x108]
   0x00007ffff75fbe9f: xor rcx,QWORD PTR fs:0x28
   0x00007ffff75fbea8: mov eax,r8d
   0x00007ffff75fbeab: jne 0x7ffff75fbecc <__GI_raise+252>
   0x00007ffff75fbead: add rsp,0x118
Stack Head (9 entries):
   __GI_raise                @ 0x00007ffff75fbe97: in (BL)
   __GI_abort                @ 0x00007ffff75fd801: in (BL)
   __libc_message            @ 0x00007ffff7646897: in (BL)
   malloc_printerr           @ 0x00007ffff764d90a: in (BL)
   _int_free                 @ 0x00007ffff7654f60: in (BL)
   __GI___libc_free          @ 0x00007ffff7654f60: in (BL)
   vos_memFree               @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_freeTelegrams         @ 0x0000000000429924: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000405334: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000000 rbx=0x00007fffffffda80 rcx=0x00007ffff75fbe97 rdx=0x0000000000000000 
rsi=0x00007fffffffd810 rdi=0x0000000000000002 rbp=0x00007fffffffdb80 rsp=0x00007fffffffd810 
 r8=0x0000000000000000  r9=0x00007fffffffd810 r10=0x0000000000000008 r11=0x0000000000000246 
r12=0x00007fffffffda80 r13=0x0000000000001000 r14=0x0000000000000000 r15=0x0000000000000030 
rip=0x00007ffff75fbe97 efl=0x0000000000000246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Heap error
   Short description: HeapError (10/22)
   Explanation: The target's backtrace indicates that libc has detected a heap error or that the target was executing a heap function when it stopped. This could be due to heap corruption, passing a bad pointer to a heap function such as free(), etc. Since heap errors might include buffer overflows, use-after-free situations, etc. they are generally considered exploitable.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000020,sig:06,src:000006,op:flip1,pos:14396
SHA1: afc1dd0dc1fd5968635f74540270f811a465552f
Classification: EXPLOITABLE
Hash: 92b3ea7508e258a91b96a1bcaab290ce.fda47f6974e87d79b4a198b5b5d2204c
Command: ./trdp-xmlprint-test afl-out/crashes/id:000020,sig:06,src:000006,op:flip1,pos:14396
Faulting Frame:
   vos_memFree @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00007ffff75fbe86: xor edx,edx
   0x00007ffff75fbe88: mov rsi,r9
   0x00007ffff75fbe8b: mov edi,0x2
   0x00007ffff75fbe90: mov eax,0xe
   0x00007ffff75fbe95: syscall
=> 0x00007ffff75fbe97: mov rcx,QWORD PTR [rsp+0x108]
   0x00007ffff75fbe9f: xor rcx,QWORD PTR fs:0x28
   0x00007ffff75fbea8: mov eax,r8d
   0x00007ffff75fbeab: jne 0x7ffff75fbecc <__GI_raise+252>
   0x00007ffff75fbead: add rsp,0x118
Stack Head (9 entries):
   __GI_raise                @ 0x00007ffff75fbe97: in (BL)
   __GI_abort                @ 0x00007ffff75fd801: in (BL)
   __libc_message            @ 0x00007ffff7646897: in (BL)
   malloc_printerr           @ 0x00007ffff764d90a: in (BL)
   _int_free                 @ 0x00007ffff7654f60: in (BL)
   __GI___libc_free          @ 0x00007ffff7654f60: in (BL)
   vos_memFree               @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_freeTelegrams         @ 0x0000000000429924: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000405334: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000000 rbx=0x00007fffffffda80 rcx=0x00007ffff75fbe97 rdx=0x0000000000000000 
rsi=0x00007fffffffd810 rdi=0x0000000000000002 rbp=0x00007fffffffdb80 rsp=0x00007fffffffd810 
 r8=0x0000000000000000  r9=0x00007fffffffd810 r10=0x0000000000000008 r11=0x0000000000000246 
r12=0x00007fffffffda80 r13=0x0000000000001000 r14=0x0000000000000000 r15=0x0000000000000030 
rip=0x00007ffff75fbe97 efl=0x0000000000000246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Heap error
   Short description: HeapError (10/22)
   Explanation: The target's backtrace indicates that libc has detected a heap error or that the target was executing a heap function when it stopped. This could be due to heap corruption, passing a bad pointer to a heap function such as free(), etc. Since heap errors might include buffer overflows, use-after-free situations, etc. they are generally considered exploitable.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000021,sig:06,src:000006,op:havoc,rep:64
SHA1: 766196933e39c6f8f9d9b55e271e0835c53ac44c
Classification: EXPLOITABLE
Hash: 8384257eb6a5a6077c8eb728300d6b2d.c22c0e917af1074371593ef59435fcfe
Command: ./trdp-xmlprint-test afl-out/crashes/id:000021,sig:06,src:000006,op:havoc,rep:64
Faulting Frame:
   vos_memFree @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00007ffff75fbe86: xor edx,edx
   0x00007ffff75fbe88: mov rsi,r9
   0x00007ffff75fbe8b: mov edi,0x2
   0x00007ffff75fbe90: mov eax,0xe
   0x00007ffff75fbe95: syscall
=> 0x00007ffff75fbe97: mov rcx,QWORD PTR [rsp+0x108]
   0x00007ffff75fbe9f: xor rcx,QWORD PTR fs:0x28
   0x00007ffff75fbea8: mov eax,r8d
   0x00007ffff75fbeab: jne 0x7ffff75fbecc <__GI_raise+252>
   0x00007ffff75fbead: add rsp,0x118
Stack Head (9 entries):
   __GI_raise                @ 0x00007ffff75fbe97: in (BL)
   __GI_abort                @ 0x00007ffff75fd801: in (BL)
   __libc_message            @ 0x00007ffff7646897: in (BL)
   malloc_printerr           @ 0x00007ffff764d90a: in (BL)
   _int_free                 @ 0x00007ffff7654e1c: in (BL)
   __GI___libc_free          @ 0x00007ffff7654e1c: in (BL)
   vos_memFree               @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_freeTelegrams         @ 0x0000000000429be4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000405334: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000000 rbx=0x00007fffffffda90 rcx=0x00007ffff75fbe97 rdx=0x0000000000000000 
rsi=0x00007fffffffd820 rdi=0x0000000000000002 rbp=0x00007fffffffdb90 rsp=0x00007fffffffd820 
 r8=0x0000000000000000  r9=0x00007fffffffd820 r10=0x0000000000000008 r11=0x0000000000000246 
r12=0x00007fffffffda90 r13=0x0000000000001000 r14=0x0000000000000000 r15=0x0000000000000030 
rip=0x00007ffff75fbe97 efl=0x0000000000000246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Heap error
   Short description: HeapError (10/22)
   Explanation: The target's backtrace indicates that libc has detected a heap error or that the target was executing a heap function when it stopped. This could be due to heap corruption, passing a bad pointer to a heap function such as free(), etc. Since heap errors might include buffer overflows, use-after-free situations, etc. they are generally considered exploitable.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000022,sig:06,src:000006,op:havoc,rep:128
SHA1: 60f9ce6fb70cd9e55e8b4199ee651317e89f9fca
Classification: EXPLOITABLE
Hash: 8384257eb6a5a6077c8eb728300d6b2d.c22c0e917af1074371593ef59435fcfe
Command: ./trdp-xmlprint-test afl-out/crashes/id:000022,sig:06,src:000006,op:havoc,rep:128
Faulting Frame:
   vos_memFree @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00007ffff75fbe86: xor edx,edx
   0x00007ffff75fbe88: mov rsi,r9
   0x00007ffff75fbe8b: mov edi,0x2
   0x00007ffff75fbe90: mov eax,0xe
   0x00007ffff75fbe95: syscall
=> 0x00007ffff75fbe97: mov rcx,QWORD PTR [rsp+0x108]
   0x00007ffff75fbe9f: xor rcx,QWORD PTR fs:0x28
   0x00007ffff75fbea8: mov eax,r8d
   0x00007ffff75fbeab: jne 0x7ffff75fbecc <__GI_raise+252>
   0x00007ffff75fbead: add rsp,0x118
Stack Head (9 entries):
   __GI_raise                @ 0x00007ffff75fbe97: in (BL)
   __GI_abort                @ 0x00007ffff75fd801: in (BL)
   __libc_message            @ 0x00007ffff7646897: in (BL)
   malloc_printerr           @ 0x00007ffff764d90a: in (BL)
   _int_free                 @ 0x00007ffff7654e1c: in (BL)
   __GI___libc_free          @ 0x00007ffff7654e1c: in (BL)
   vos_memFree               @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_freeTelegrams         @ 0x0000000000429be4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000405334: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000000 rbx=0x00007fffffffda80 rcx=0x00007ffff75fbe97 rdx=0x0000000000000000 
rsi=0x00007fffffffd810 rdi=0x0000000000000002 rbp=0x00007fffffffdb80 rsp=0x00007fffffffd810 
 r8=0x0000000000000000  r9=0x00007fffffffd810 r10=0x0000000000000008 r11=0x0000000000000246 
r12=0x00007fffffffda80 r13=0x0000000000001000 r14=0x0000000000000000 r15=0x0000000000000030 
rip=0x00007ffff75fbe97 efl=0x0000000000000246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Heap error
   Short description: HeapError (10/22)
   Explanation: The target's backtrace indicates that libc has detected a heap error or that the target was executing a heap function when it stopped. This could be due to heap corruption, passing a bad pointer to a heap function such as free(), etc. Since heap errors might include buffer overflows, use-after-free situations, etc. they are generally considered exploitable.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000023,sig:11,src:000006,op:havoc,rep:128
SHA1: d6249d38b8807dd5fa5ab6a256c651afdefb2cb4
Classification: PROBABLY_NOT_EXPLOITABLE
Hash: ecde3310e561e4688b85e93027499e13.ecde3310e561e4688b85e93027499e13
Command: ./trdp-xmlprint-test afl-out/crashes/id:000023,sig:11,src:000006,op:havoc,rep:128
Faulting Frame:
   printIfCfg @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x0000000000402e1d: call 0x405f90 <__afl_maybe_log>
   0x0000000000402e22: mov rax,QWORD PTR [rsp+0x10]
   0x0000000000402e27: mov rcx,QWORD PTR [rsp+0x8]
   0x0000000000402e2c: mov rdx,QWORD PTR [rsp]
   0x0000000000402e30: lea rsp,[rsp+0x98]
=> 0x0000000000402e38: movzx esi,BYTE PTR [rbx+0x11]
   0x0000000000402e3c: xor eax,eax
   0x0000000000402e3e: mov rdi,r14
   0x0000000000402e41: mov rdx,rbx
   0x0000000000402e44: call 0x401ba0 <printf@plt>
Stack Head (2 entries):
   printIfCfg                @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000019 rbx=0x0000000000000000 rcx=0x0000000000000000 rdx=0x00007fffffffd810 
rsi=0x0000000000000000 rdi=0x00007fffffffd810 rbp=0x0000000000000001 rsp=0x00007fffffffdd70 
 r8=0x00007ffff7fd3740  r9=0x0000000000000000 r10=0x0000000000000000 r11=0x0000000000494d50 
r12=0x0000000000402010 r13=0x00007fffffffe050 r14=0x0000000000494da2 r15=0x0000000000494dc3 
rip=0x0000000000402e38 efl=0x0000000000010202  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Access violation near NULL on source operand
   Short description: SourceAvNearNull (16/22)
   Explanation: The target crashed on an access violation at an address matching the source operand of the current instruction. This likely indicates a read access violation, which may mean the application crashed on a simple NULL dereference to data structure that has no immediate effect on control of the processor.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000024,sig:06,src:000006,op:havoc,rep:8
SHA1: 5fda93eb33f8092d1905ee884aee5b2eafe26566
Classification: EXPLOITABLE
Hash: 92b3ea7508e258a91b96a1bcaab290ce.fda47f6974e87d79b4a198b5b5d2204c
Command: ./trdp-xmlprint-test afl-out/crashes/id:000024,sig:06,src:000006,op:havoc,rep:8
Faulting Frame:
   vos_memFree @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00007ffff75fbe86: xor edx,edx
   0x00007ffff75fbe88: mov rsi,r9
   0x00007ffff75fbe8b: mov edi,0x2
   0x00007ffff75fbe90: mov eax,0xe
   0x00007ffff75fbe95: syscall
=> 0x00007ffff75fbe97: mov rcx,QWORD PTR [rsp+0x108]
   0x00007ffff75fbe9f: xor rcx,QWORD PTR fs:0x28
   0x00007ffff75fbea8: mov eax,r8d
   0x00007ffff75fbeab: jne 0x7ffff75fbecc <__GI_raise+252>
   0x00007ffff75fbead: add rsp,0x118
Stack Head (9 entries):
   __GI_raise                @ 0x00007ffff75fbe97: in (BL)
   __GI_abort                @ 0x00007ffff75fd801: in (BL)
   __libc_message            @ 0x00007ffff7646897: in (BL)
   malloc_printerr           @ 0x00007ffff764d90a: in (BL)
   _int_free                 @ 0x00007ffff7654f60: in (BL)
   __GI___libc_free          @ 0x00007ffff7654f60: in (BL)
   vos_memFree               @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_freeTelegrams         @ 0x0000000000429924: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000405334: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000000 rbx=0x00007fffffffda90 rcx=0x00007ffff75fbe97 rdx=0x0000000000000000 
rsi=0x00007fffffffd820 rdi=0x0000000000000002 rbp=0x00007fffffffdb90 rsp=0x00007fffffffd820 
 r8=0x0000000000000000  r9=0x00007fffffffd820 r10=0x0000000000000008 r11=0x0000000000000246 
r12=0x00007fffffffda90 r13=0x0000000000001000 r14=0x0000000000000000 r15=0x0000000000000030 
rip=0x00007ffff75fbe97 efl=0x0000000000000246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Heap error
   Short description: HeapError (10/22)
   Explanation: The target's backtrace indicates that libc has detected a heap error or that the target was executing a heap function when it stopped. This could be due to heap corruption, passing a bad pointer to a heap function such as free(), etc. Since heap errors might include buffer overflows, use-after-free situations, etc. they are generally considered exploitable.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000025,sig:06,src:000006,op:havoc,rep:16
SHA1: 4c0bd4bc4b19a03b3d0a82354dc068d56ce4fc05
Classification: EXPLOITABLE
Hash: 92b3ea7508e258a91b96a1bcaab290ce.fda47f6974e87d79b4a198b5b5d2204c
Command: ./trdp-xmlprint-test afl-out/crashes/id:000025,sig:06,src:000006,op:havoc,rep:16
Faulting Frame:
   vos_memFree @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00007ffff75fbe86: xor edx,edx
   0x00007ffff75fbe88: mov rsi,r9
   0x00007ffff75fbe8b: mov edi,0x2
   0x00007ffff75fbe90: mov eax,0xe
   0x00007ffff75fbe95: syscall
=> 0x00007ffff75fbe97: mov rcx,QWORD PTR [rsp+0x108]
   0x00007ffff75fbe9f: xor rcx,QWORD PTR fs:0x28
   0x00007ffff75fbea8: mov eax,r8d
   0x00007ffff75fbeab: jne 0x7ffff75fbecc <__GI_raise+252>
   0x00007ffff75fbead: add rsp,0x118
Stack Head (9 entries):
   __GI_raise                @ 0x00007ffff75fbe97: in (BL)
   __GI_abort                @ 0x00007ffff75fd801: in (BL)
   __libc_message            @ 0x00007ffff7646897: in (BL)
   malloc_printerr           @ 0x00007ffff764d90a: in (BL)
   _int_free                 @ 0x00007ffff7654f60: in (BL)
   __GI___libc_free          @ 0x00007ffff7654f60: in (BL)
   vos_memFree               @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_freeTelegrams         @ 0x0000000000429924: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000405334: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000000 rbx=0x00007fffffffda90 rcx=0x00007ffff75fbe97 rdx=0x0000000000000000 
rsi=0x00007fffffffd820 rdi=0x0000000000000002 rbp=0x00007fffffffdb90 rsp=0x00007fffffffd820 
 r8=0x0000000000000000  r9=0x00007fffffffd820 r10=0x0000000000000008 r11=0x0000000000000246 
r12=0x00007fffffffda90 r13=0x0000000000001000 r14=0x0000000000000000 r15=0x0000000000000030 
rip=0x00007ffff75fbe97 efl=0x0000000000000246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Heap error
   Short description: HeapError (10/22)
   Explanation: The target's backtrace indicates that libc has detected a heap error or that the target was executing a heap function when it stopped. This could be due to heap corruption, passing a bad pointer to a heap function such as free(), etc. Since heap errors might include buffer overflows, use-after-free situations, etc. they are generally considered exploitable.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000026,sig:06,src:000006,op:havoc,rep:128
SHA1: 89e91012f81335643e1163eaeac26b9f69bbb345
Classification: EXPLOITABLE
Hash: 92b3ea7508e258a91b96a1bcaab290ce.fda47f6974e87d79b4a198b5b5d2204c
Command: ./trdp-xmlprint-test afl-out/crashes/id:000026,sig:06,src:000006,op:havoc,rep:128
Faulting Frame:
   vos_memFree @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00007ffff75fbe86: xor edx,edx
   0x00007ffff75fbe88: mov rsi,r9
   0x00007ffff75fbe8b: mov edi,0x2
   0x00007ffff75fbe90: mov eax,0xe
   0x00007ffff75fbe95: syscall
=> 0x00007ffff75fbe97: mov rcx,QWORD PTR [rsp+0x108]
   0x00007ffff75fbe9f: xor rcx,QWORD PTR fs:0x28
   0x00007ffff75fbea8: mov eax,r8d
   0x00007ffff75fbeab: jne 0x7ffff75fbecc <__GI_raise+252>
   0x00007ffff75fbead: add rsp,0x118
Stack Head (9 entries):
   __GI_raise                @ 0x00007ffff75fbe97: in (BL)
   __GI_abort                @ 0x00007ffff75fd801: in (BL)
   __libc_message            @ 0x00007ffff7646897: in (BL)
   malloc_printerr           @ 0x00007ffff764d90a: in (BL)
   _int_free                 @ 0x00007ffff7654f60: in (BL)
   __GI___libc_free          @ 0x00007ffff7654f60: in (BL)
   vos_memFree               @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_freeTelegrams         @ 0x0000000000429924: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000405334: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000000 rbx=0x00007fffffffda80 rcx=0x00007ffff75fbe97 rdx=0x0000000000000000 
rsi=0x00007fffffffd810 rdi=0x0000000000000002 rbp=0x00007fffffffdb80 rsp=0x00007fffffffd810 
 r8=0x0000000000000000  r9=0x00007fffffffd810 r10=0x0000000000000008 r11=0x0000000000000246 
r12=0x00007fffffffda80 r13=0x0000000000001000 r14=0x0000000000000000 r15=0x0000000000000030 
rip=0x00007ffff75fbe97 efl=0x0000000000000246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Heap error
   Short description: HeapError (10/22)
   Explanation: The target's backtrace indicates that libc has detected a heap error or that the target was executing a heap function when it stopped. This could be due to heap corruption, passing a bad pointer to a heap function such as free(), etc. Since heap errors might include buffer overflows, use-after-free situations, etc. they are generally considered exploitable.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000027,sig:06,src:000006,op:havoc,rep:128
SHA1: cfc2cfce0e27ffd7650e550564df2899f0eea569
Classification: EXPLOITABLE
Hash: 92b3ea7508e258a91b96a1bcaab290ce.fda47f6974e87d79b4a198b5b5d2204c
Command: ./trdp-xmlprint-test afl-out/crashes/id:000027,sig:06,src:000006,op:havoc,rep:128
Faulting Frame:
   vos_memFree @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00007ffff75fbe86: xor edx,edx
   0x00007ffff75fbe88: mov rsi,r9
   0x00007ffff75fbe8b: mov edi,0x2
   0x00007ffff75fbe90: mov eax,0xe
   0x00007ffff75fbe95: syscall
=> 0x00007ffff75fbe97: mov rcx,QWORD PTR [rsp+0x108]
   0x00007ffff75fbe9f: xor rcx,QWORD PTR fs:0x28
   0x00007ffff75fbea8: mov eax,r8d
   0x00007ffff75fbeab: jne 0x7ffff75fbecc <__GI_raise+252>
   0x00007ffff75fbead: add rsp,0x118
Stack Head (9 entries):
   __GI_raise                @ 0x00007ffff75fbe97: in (BL)
   __GI_abort                @ 0x00007ffff75fd801: in (BL)
   __libc_message            @ 0x00007ffff7646897: in (BL)
   malloc_printerr           @ 0x00007ffff764d90a: in (BL)
   _int_free                 @ 0x00007ffff7654f60: in (BL)
   __GI___libc_free          @ 0x00007ffff7654f60: in (BL)
   vos_memFree               @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_freeTelegrams         @ 0x0000000000429924: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000405334: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000000 rbx=0x00007fffffffda80 rcx=0x00007ffff75fbe97 rdx=0x0000000000000000 
rsi=0x00007fffffffd810 rdi=0x0000000000000002 rbp=0x00007fffffffdb80 rsp=0x00007fffffffd810 
 r8=0x0000000000000000  r9=0x00007fffffffd810 r10=0x0000000000000008 r11=0x0000000000000246 
r12=0x00007fffffffda80 r13=0x0000000000001000 r14=0x0000000000000000 r15=0x0000000000000030 
rip=0x00007ffff75fbe97 efl=0x0000000000000246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Heap error
   Short description: HeapError (10/22)
   Explanation: The target's backtrace indicates that libc has detected a heap error or that the target was executing a heap function when it stopped. This could be due to heap corruption, passing a bad pointer to a heap function such as free(), etc. Since heap errors might include buffer overflows, use-after-free situations, etc. they are generally considered exploitable.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000028,sig:06,src:000006,op:havoc,rep:32
SHA1: 73e6981ffa13fd31d54dc769f3137d502f62fbd4
Classification: EXPLOITABLE
Hash: a1a4cca98ed2b3523fc6332abf9c4ab8.360fdb70966a9c28bd3d633736a4794d
Command: ./trdp-xmlprint-test afl-out/crashes/id:000028,sig:06,src:000006,op:havoc,rep:32
Faulting Frame:
   vos_memAlloc @ 0x000000000041afab: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00007ffff75fbe86: xor edx,edx
   0x00007ffff75fbe88: mov rsi,r9
   0x00007ffff75fbe8b: mov edi,0x2
   0x00007ffff75fbe90: mov eax,0xe
   0x00007ffff75fbe95: syscall
=> 0x00007ffff75fbe97: mov rcx,QWORD PTR [rsp+0x108]
   0x00007ffff75fbe9f: xor rcx,QWORD PTR fs:0x28
   0x00007ffff75fbea8: mov eax,r8d
   0x00007ffff75fbeab: jne 0x7ffff75fbecc <__GI_raise+252>
   0x00007ffff75fbead: add rsp,0x118
Stack Head (10 entries):
   __GI_raise                @ 0x00007ffff75fbe97: in (BL)
   __GI_abort                @ 0x00007ffff75fd801: in (BL)
   __malloc_assert           @ 0x00007ffff7650a91: in (BL)
   sysmalloc                 @ 0x00007ffff7650a91: in (BL)
   _int_malloc               @ 0x00007ffff7651ff0: in (BL)
   __GI___libc_malloc        @ 0x00007ffff76540fc: in (BL)
   vos_memAlloc              @ 0x000000000041afab: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   readTelegramDef           @ 0x00000000004273a8: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_readXmlInterfaceConfi @ 0x00000000004273a8: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x000000000040570b: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000000 rbx=0x00007ffff79a8c40 rcx=0x00007ffff75fbe97 rdx=0x0000000000000000 
rsi=0x00007fffffffd3b0 rdi=0x0000000000000002 rbp=0x0000000000000020 rsp=0x00007fffffffd3b0 
 r8=0x0000000000000000  r9=0x00007fffffffd3b0 r10=0x0000000000000008 r11=0x0000000000000246 
r12=0x0000000000001000 r13=0x00000000006a83b0 r14=0x0000000000000000 r15=0x00007ffff79a8ca0 
rip=0x00007ffff75fbe97 efl=0x0000000000000246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Heap error
   Short description: HeapError (10/22)
   Explanation: The target's backtrace indicates that libc has detected a heap error or that the target was executing a heap function when it stopped. This could be due to heap corruption, passing a bad pointer to a heap function such as free(), etc. Since heap errors might include buffer overflows, use-after-free situations, etc. they are generally considered exploitable.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000029,sig:06,src:000006,op:havoc,rep:64
SHA1: 5890e8dfab49c425fb0b443df152c948a9a56698
Classification: EXPLOITABLE
Hash: 92b3ea7508e258a91b96a1bcaab290ce.fda47f6974e87d79b4a198b5b5d2204c
Command: ./trdp-xmlprint-test afl-out/crashes/id:000029,sig:06,src:000006,op:havoc,rep:64
Faulting Frame:
   vos_memFree @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00007ffff75fbe86: xor edx,edx
   0x00007ffff75fbe88: mov rsi,r9
   0x00007ffff75fbe8b: mov edi,0x2
   0x00007ffff75fbe90: mov eax,0xe
   0x00007ffff75fbe95: syscall
=> 0x00007ffff75fbe97: mov rcx,QWORD PTR [rsp+0x108]
   0x00007ffff75fbe9f: xor rcx,QWORD PTR fs:0x28
   0x00007ffff75fbea8: mov eax,r8d
   0x00007ffff75fbeab: jne 0x7ffff75fbecc <__GI_raise+252>
   0x00007ffff75fbead: add rsp,0x118
Stack Head (9 entries):
   __GI_raise                @ 0x00007ffff75fbe97: in (BL)
   __GI_abort                @ 0x00007ffff75fd801: in (BL)
   __libc_message            @ 0x00007ffff7646897: in (BL)
   malloc_printerr           @ 0x00007ffff764d90a: in (BL)
   _int_free                 @ 0x00007ffff7654f60: in (BL)
   __GI___libc_free          @ 0x00007ffff7654f60: in (BL)
   vos_memFree               @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_freeTelegrams         @ 0x0000000000429924: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000405334: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000000 rbx=0x00007fffffffda90 rcx=0x00007ffff75fbe97 rdx=0x0000000000000000 
rsi=0x00007fffffffd820 rdi=0x0000000000000002 rbp=0x00007fffffffdb90 rsp=0x00007fffffffd820 
 r8=0x0000000000000000  r9=0x00007fffffffd820 r10=0x0000000000000008 r11=0x0000000000000246 
r12=0x00007fffffffda90 r13=0x0000000000001000 r14=0x0000000000000000 r15=0x0000000000000030 
rip=0x00007ffff75fbe97 efl=0x0000000000000246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Heap error
   Short description: HeapError (10/22)
   Explanation: The target's backtrace indicates that libc has detected a heap error or that the target was executing a heap function when it stopped. This could be due to heap corruption, passing a bad pointer to a heap function such as free(), etc. Since heap errors might include buffer overflows, use-after-free situations, etc. they are generally considered exploitable.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000030,sig:06,src:000006,op:havoc,rep:128
SHA1: a0ec480e09f75ae9384764c4d299f279fa099dc2
Classification: EXPLOITABLE
Hash: 8384257eb6a5a6077c8eb728300d6b2d.c22c0e917af1074371593ef59435fcfe
Command: ./trdp-xmlprint-test afl-out/crashes/id:000030,sig:06,src:000006,op:havoc,rep:128
Faulting Frame:
   vos_memFree @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00007ffff75fbe86: xor edx,edx
   0x00007ffff75fbe88: mov rsi,r9
   0x00007ffff75fbe8b: mov edi,0x2
   0x00007ffff75fbe90: mov eax,0xe
   0x00007ffff75fbe95: syscall
=> 0x00007ffff75fbe97: mov rcx,QWORD PTR [rsp+0x108]
   0x00007ffff75fbe9f: xor rcx,QWORD PTR fs:0x28
   0x00007ffff75fbea8: mov eax,r8d
   0x00007ffff75fbeab: jne 0x7ffff75fbecc <__GI_raise+252>
   0x00007ffff75fbead: add rsp,0x118
Stack Head (9 entries):
   __GI_raise                @ 0x00007ffff75fbe97: in (BL)
   __GI_abort                @ 0x00007ffff75fd801: in (BL)
   __libc_message            @ 0x00007ffff7646897: in (BL)
   malloc_printerr           @ 0x00007ffff764d90a: in (BL)
   _int_free                 @ 0x00007ffff7654e1c: in (BL)
   __GI___libc_free          @ 0x00007ffff7654e1c: in (BL)
   vos_memFree               @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_freeTelegrams         @ 0x0000000000429be4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000405334: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000000 rbx=0x00007fffffffda80 rcx=0x00007ffff75fbe97 rdx=0x0000000000000000 
rsi=0x00007fffffffd810 rdi=0x0000000000000002 rbp=0x00007fffffffdb80 rsp=0x00007fffffffd810 
 r8=0x0000000000000000  r9=0x00007fffffffd810 r10=0x0000000000000008 r11=0x0000000000000246 
r12=0x00007fffffffda80 r13=0x0000000000001000 r14=0x0000000000000000 r15=0x0000000000000030 
rip=0x00007ffff75fbe97 efl=0x0000000000000246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Heap error
   Short description: HeapError (10/22)
   Explanation: The target's backtrace indicates that libc has detected a heap error or that the target was executing a heap function when it stopped. This could be due to heap corruption, passing a bad pointer to a heap function such as free(), etc. Since heap errors might include buffer overflows, use-after-free situations, etc. they are generally considered exploitable.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000031,sig:06,src:000007,op:flip1,pos:2523
SHA1: 64b5810ce0ef67fd845c914f21265029cbfa6bb9
Classification: EXPLOITABLE
Hash: 92b3ea7508e258a91b96a1bcaab290ce.fda47f6974e87d79b4a198b5b5d2204c
Command: ./trdp-xmlprint-test afl-out/crashes/id:000031,sig:06,src:000007,op:flip1,pos:2523
Faulting Frame:
   vos_memFree @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00007ffff75fbe86: xor edx,edx
   0x00007ffff75fbe88: mov rsi,r9
   0x00007ffff75fbe8b: mov edi,0x2
   0x00007ffff75fbe90: mov eax,0xe
   0x00007ffff75fbe95: syscall
=> 0x00007ffff75fbe97: mov rcx,QWORD PTR [rsp+0x108]
   0x00007ffff75fbe9f: xor rcx,QWORD PTR fs:0x28
   0x00007ffff75fbea8: mov eax,r8d
   0x00007ffff75fbeab: jne 0x7ffff75fbecc <__GI_raise+252>
   0x00007ffff75fbead: add rsp,0x118
Stack Head (9 entries):
   __GI_raise                @ 0x00007ffff75fbe97: in (BL)
   __GI_abort                @ 0x00007ffff75fd801: in (BL)
   __libc_message            @ 0x00007ffff7646897: in (BL)
   malloc_printerr           @ 0x00007ffff764d90a: in (BL)
   _int_free                 @ 0x00007ffff7654f60: in (BL)
   __GI___libc_free          @ 0x00007ffff7654f60: in (BL)
   vos_memFree               @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_freeTelegrams         @ 0x0000000000429924: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000405334: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000000 rbx=0x00007fffffffda80 rcx=0x00007ffff75fbe97 rdx=0x0000000000000000 
rsi=0x00007fffffffd810 rdi=0x0000000000000002 rbp=0x00007fffffffdb80 rsp=0x00007fffffffd810 
 r8=0x0000000000000000  r9=0x00007fffffffd810 r10=0x0000000000000008 r11=0x0000000000000246 
r12=0x00007fffffffda80 r13=0x0000000000001000 r14=0x0000000000000000 r15=0x0000000000000030 
rip=0x00007ffff75fbe97 efl=0x0000000000000246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Heap error
   Short description: HeapError (10/22)
   Explanation: The target's backtrace indicates that libc has detected a heap error or that the target was executing a heap function when it stopped. This could be due to heap corruption, passing a bad pointer to a heap function such as free(), etc. Since heap errors might include buffer overflows, use-after-free situations, etc. they are generally considered exploitable.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000032,sig:06,src:000007,op:flip1,pos:3390
SHA1: 5c4f925443a3eeea2d8e8af268f448d7c82a6e2a
Classification: EXPLOITABLE
Hash: 83b83baa4548c411fce054145445ea03.4d66ae41f52651f14021f8828811aede
Command: ./trdp-xmlprint-test afl-out/crashes/id:000032,sig:06,src:000007,op:flip1,pos:3390
Faulting Frame:
   vos_memAlloc @ 0x000000000041afab: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00007ffff75fbe86: xor edx,edx
   0x00007ffff75fbe88: mov rsi,r9
   0x00007ffff75fbe8b: mov edi,0x2
   0x00007ffff75fbe90: mov eax,0xe
   0x00007ffff75fbe95: syscall
=> 0x00007ffff75fbe97: mov rcx,QWORD PTR [rsp+0x108]
   0x00007ffff75fbe9f: xor rcx,QWORD PTR fs:0x28
   0x00007ffff75fbea8: mov eax,r8d
   0x00007ffff75fbeab: jne 0x7ffff75fbecc <__GI_raise+252>
   0x00007ffff75fbead: add rsp,0x118
Stack Head (10 entries):
   __GI_raise                @ 0x00007ffff75fbe97: in (BL)
   __GI_abort                @ 0x00007ffff75fd801: in (BL)
   __malloc_assert           @ 0x00007ffff7650a91: in (BL)
   sysmalloc                 @ 0x00007ffff7650a91: in (BL)
   _int_malloc               @ 0x00007ffff7651ff0: in (BL)
   __GI___libc_malloc        @ 0x00007ffff76540fc: in (BL)
   vos_memAlloc              @ 0x000000000041afab: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   readXmlDatasets           @ 0x0000000000432420: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_readXmlDatasetConfig  @ 0x0000000000432420: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x000000000040331e: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000000 rbx=0x00007ffff79a8c40 rcx=0x00007ffff75fbe97 rdx=0x0000000000000000 
rsi=0x00007fffffffd600 rdi=0x0000000000000002 rbp=0x0000000000000020 rsp=0x00007fffffffd600 
 r8=0x0000000000000000  r9=0x00007fffffffd600 r10=0x0000000000000008 r11=0x0000000000000246 
r12=0x0000000000001000 r13=0x00000000006a7b10 r14=0x0000000000000000 r15=0x00007ffff79a8ca0 
rip=0x00007ffff75fbe97 efl=0x0000000000000246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Heap error
   Short description: HeapError (10/22)
   Explanation: The target's backtrace indicates that libc has detected a heap error or that the target was executing a heap function when it stopped. This could be due to heap corruption, passing a bad pointer to a heap function such as free(), etc. Since heap errors might include buffer overflows, use-after-free situations, etc. they are generally considered exploitable.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000033,sig:06,src:000049,op:flip1,pos:2520
SHA1: dbbde0f7c9b5899cce348e22afac69dd97734fc1
Classification: EXPLOITABLE
Hash: 83b83baa4548c411fce054145445ea03.4d66ae41f52651f14021f8828811aede
Command: ./trdp-xmlprint-test afl-out/crashes/id:000033,sig:06,src:000049,op:flip1,pos:2520
Faulting Frame:
   vos_memAlloc @ 0x000000000041afab: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00007ffff75fbe86: xor edx,edx
   0x00007ffff75fbe88: mov rsi,r9
   0x00007ffff75fbe8b: mov edi,0x2
   0x00007ffff75fbe90: mov eax,0xe
   0x00007ffff75fbe95: syscall
=> 0x00007ffff75fbe97: mov rcx,QWORD PTR [rsp+0x108]
   0x00007ffff75fbe9f: xor rcx,QWORD PTR fs:0x28
   0x00007ffff75fbea8: mov eax,r8d
   0x00007ffff75fbeab: jne 0x7ffff75fbecc <__GI_raise+252>
   0x00007ffff75fbead: add rsp,0x118
Stack Head (10 entries):
   __GI_raise                @ 0x00007ffff75fbe97: in (BL)
   __GI_abort                @ 0x00007ffff75fd801: in (BL)
   __malloc_assert           @ 0x00007ffff7650a91: in (BL)
   sysmalloc                 @ 0x00007ffff7650a91: in (BL)
   _int_malloc               @ 0x00007ffff7651ff0: in (BL)
   __GI___libc_malloc        @ 0x00007ffff76540fc: in (BL)
   vos_memAlloc              @ 0x000000000041afab: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   readXmlDatasets           @ 0x0000000000432420: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_readXmlDatasetConfig  @ 0x0000000000432420: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x000000000040331e: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000000 rbx=0x00007ffff79a8c40 rcx=0x00007ffff75fbe97 rdx=0x0000000000000000 
rsi=0x00007fffffffd600 rdi=0x0000000000000002 rbp=0x0000000000000020 rsp=0x00007fffffffd600 
 r8=0x0000000000000000  r9=0x00007fffffffd600 r10=0x0000000000000008 r11=0x0000000000000246 
r12=0x0000000000001000 r13=0x00000000006a7b10 r14=0x0000000000000000 r15=0x00007ffff79a8ca0 
rip=0x00007ffff75fbe97 efl=0x0000000000000246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Heap error
   Short description: HeapError (10/22)
   Explanation: The target's backtrace indicates that libc has detected a heap error or that the target was executing a heap function when it stopped. This could be due to heap corruption, passing a bad pointer to a heap function such as free(), etc. Since heap errors might include buffer overflows, use-after-free situations, etc. they are generally considered exploitable.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000034,sig:06,src:000130,op:flip1,pos:2532
SHA1: 1efc93a47a3261a0ac63d0fba3fb595ecdafe997
Classification: EXPLOITABLE
Hash: 83b83baa4548c411fce054145445ea03.4d66ae41f52651f14021f8828811aede
Command: ./trdp-xmlprint-test afl-out/crashes/id:000034,sig:06,src:000130,op:flip1,pos:2532
Faulting Frame:
   vos_memAlloc @ 0x000000000041afab: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00007ffff75fbe86: xor edx,edx
   0x00007ffff75fbe88: mov rsi,r9
   0x00007ffff75fbe8b: mov edi,0x2
   0x00007ffff75fbe90: mov eax,0xe
   0x00007ffff75fbe95: syscall
=> 0x00007ffff75fbe97: mov rcx,QWORD PTR [rsp+0x108]
   0x00007ffff75fbe9f: xor rcx,QWORD PTR fs:0x28
   0x00007ffff75fbea8: mov eax,r8d
   0x00007ffff75fbeab: jne 0x7ffff75fbecc <__GI_raise+252>
   0x00007ffff75fbead: add rsp,0x118
Stack Head (10 entries):
   __GI_raise                @ 0x00007ffff75fbe97: in (BL)
   __GI_abort                @ 0x00007ffff75fd801: in (BL)
   __malloc_assert           @ 0x00007ffff7650a91: in (BL)
   sysmalloc                 @ 0x00007ffff7650a91: in (BL)
   _int_malloc               @ 0x00007ffff7651ff0: in (BL)
   __GI___libc_malloc        @ 0x00007ffff76540fc: in (BL)
   vos_memAlloc              @ 0x000000000041afab: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   readXmlDatasets           @ 0x0000000000432420: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_readXmlDatasetConfig  @ 0x0000000000432420: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x000000000040331e: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000000 rbx=0x00007ffff79a8c40 rcx=0x00007ffff75fbe97 rdx=0x0000000000000000 
rsi=0x00007fffffffd600 rdi=0x0000000000000002 rbp=0x0000000000000020 rsp=0x00007fffffffd600 
 r8=0x0000000000000000  r9=0x00007fffffffd600 r10=0x0000000000000008 r11=0x0000000000000246 
r12=0x0000000000001000 r13=0x00000000006a7b10 r14=0x0000000000000000 r15=0x00007ffff79a8ca0 
rip=0x00007ffff75fbe97 efl=0x0000000000000246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Heap error
   Short description: HeapError (10/22)
   Explanation: The target's backtrace indicates that libc has detected a heap error or that the target was executing a heap function when it stopped. This could be due to heap corruption, passing a bad pointer to a heap function such as free(), etc. Since heap errors might include buffer overflows, use-after-free situations, etc. they are generally considered exploitable.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000035,sig:11,src:000157,op:havoc,rep:16
SHA1: 1d8f4cdf8a066ebe04ead3bb7edc5fd025bcb92b
Classification: PROBABLY_NOT_EXPLOITABLE
Hash: ecde3310e561e4688b85e93027499e13.ecde3310e561e4688b85e93027499e13
Command: ./trdp-xmlprint-test afl-out/crashes/id:000035,sig:11,src:000157,op:havoc,rep:16
Faulting Frame:
   printIfCfg @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x0000000000402e1d: call 0x405f90 <__afl_maybe_log>
   0x0000000000402e22: mov rax,QWORD PTR [rsp+0x10]
   0x0000000000402e27: mov rcx,QWORD PTR [rsp+0x8]
   0x0000000000402e2c: mov rdx,QWORD PTR [rsp]
   0x0000000000402e30: lea rsp,[rsp+0x98]
=> 0x0000000000402e38: movzx esi,BYTE PTR [rbx+0x11]
   0x0000000000402e3c: xor eax,eax
   0x0000000000402e3e: mov rdi,r14
   0x0000000000402e41: mov rdx,rbx
   0x0000000000402e44: call 0x401ba0 <printf@plt>
Stack Head (2 entries):
   printIfCfg                @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000019 rbx=0x0000000000000000 rcx=0x0000000000000000 rdx=0x00007fffffffd820 
rsi=0x0000000000000000 rdi=0x00007fffffffd820 rbp=0x0000000000000001 rsp=0x00007fffffffdd80 
 r8=0x00007ffff7fd3740  r9=0x0000000000000000 r10=0x0000000000000000 r11=0x0000000000494d50 
r12=0x0000000000402010 r13=0x00007fffffffe060 r14=0x0000000000494da2 r15=0x0000000000494dc3 
rip=0x0000000000402e38 efl=0x0000000000010202  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Access violation near NULL on source operand
   Short description: SourceAvNearNull (16/22)
   Explanation: The target crashed on an access violation at an address matching the source operand of the current instruction. This likely indicates a read access violation, which may mean the application crashed on a simple NULL dereference to data structure that has no immediate effect on control of the processor.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000036,sig:11,src:000157,op:havoc,rep:32
SHA1: 21da9f51c3f8fb60dddd83597044a36c3ac41afe
Classification: PROBABLY_NOT_EXPLOITABLE
Hash: ecde3310e561e4688b85e93027499e13.ecde3310e561e4688b85e93027499e13
Command: ./trdp-xmlprint-test afl-out/crashes/id:000036,sig:11,src:000157,op:havoc,rep:32
Faulting Frame:
   printIfCfg @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x0000000000402e1d: call 0x405f90 <__afl_maybe_log>
   0x0000000000402e22: mov rax,QWORD PTR [rsp+0x10]
   0x0000000000402e27: mov rcx,QWORD PTR [rsp+0x8]
   0x0000000000402e2c: mov rdx,QWORD PTR [rsp]
   0x0000000000402e30: lea rsp,[rsp+0x98]
=> 0x0000000000402e38: movzx esi,BYTE PTR [rbx+0x11]
   0x0000000000402e3c: xor eax,eax
   0x0000000000402e3e: mov rdi,r14
   0x0000000000402e41: mov rdx,rbx
   0x0000000000402e44: call 0x401ba0 <printf@plt>
Stack Head (2 entries):
   printIfCfg                @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000019 rbx=0x0000000000000000 rcx=0x0000000000000000 rdx=0x00007fffffffd820 
rsi=0x0000000000000000 rdi=0x00007fffffffd820 rbp=0x0000000000000001 rsp=0x00007fffffffdd80 
 r8=0x00007ffff7fd3740  r9=0x0000000000000000 r10=0x0000000000000000 r11=0x0000000000494d50 
r12=0x0000000000402010 r13=0x00007fffffffe060 r14=0x0000000000494da2 r15=0x0000000000494dc3 
rip=0x0000000000402e38 efl=0x0000000000010202  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Access violation near NULL on source operand
   Short description: SourceAvNearNull (16/22)
   Explanation: The target crashed on an access violation at an address matching the source operand of the current instruction. This likely indicates a read access violation, which may mean the application crashed on a simple NULL dereference to data structure that has no immediate effect on control of the processor.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000037,sig:11,src:000157,op:havoc,rep:16
SHA1: 36ce793fbc173da28052e1523b490f00d20c12f2
Classification: PROBABLY_NOT_EXPLOITABLE
Hash: ecde3310e561e4688b85e93027499e13.ecde3310e561e4688b85e93027499e13
Command: ./trdp-xmlprint-test afl-out/crashes/id:000037,sig:11,src:000157,op:havoc,rep:16
Faulting Frame:
   printIfCfg @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x0000000000402e1d: call 0x405f90 <__afl_maybe_log>
   0x0000000000402e22: mov rax,QWORD PTR [rsp+0x10]
   0x0000000000402e27: mov rcx,QWORD PTR [rsp+0x8]
   0x0000000000402e2c: mov rdx,QWORD PTR [rsp]
   0x0000000000402e30: lea rsp,[rsp+0x98]
=> 0x0000000000402e38: movzx esi,BYTE PTR [rbx+0x11]
   0x0000000000402e3c: xor eax,eax
   0x0000000000402e3e: mov rdi,r14
   0x0000000000402e41: mov rdx,rbx
   0x0000000000402e44: call 0x401ba0 <printf@plt>
Stack Head (2 entries):
   printIfCfg                @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000019 rbx=0x0000000000000000 rcx=0x0000000000000000 rdx=0x00007fffffffd820 
rsi=0x0000000000000000 rdi=0x00007fffffffd820 rbp=0x0000000000000001 rsp=0x00007fffffffdd80 
 r8=0x00007ffff7fd3740  r9=0x0000000000000000 r10=0x0000000000000000 r11=0x0000000000494d50 
r12=0x0000000000402010 r13=0x00007fffffffe060 r14=0x0000000000494da2 r15=0x0000000000494dc3 
rip=0x0000000000402e38 efl=0x0000000000010202  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Access violation near NULL on source operand
   Short description: SourceAvNearNull (16/22)
   Explanation: The target crashed on an access violation at an address matching the source operand of the current instruction. This likely indicates a read access violation, which may mean the application crashed on a simple NULL dereference to data structure that has no immediate effect on control of the processor.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000038,sig:11,src:000157,op:havoc,rep:16
SHA1: b8e2f74c1fad0613439e2cb00a6f381a68fec1d2
Classification: PROBABLY_NOT_EXPLOITABLE
Hash: ecde3310e561e4688b85e93027499e13.ecde3310e561e4688b85e93027499e13
Command: ./trdp-xmlprint-test afl-out/crashes/id:000038,sig:11,src:000157,op:havoc,rep:16
Faulting Frame:
   printIfCfg @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x0000000000402e1d: call 0x405f90 <__afl_maybe_log>
   0x0000000000402e22: mov rax,QWORD PTR [rsp+0x10]
   0x0000000000402e27: mov rcx,QWORD PTR [rsp+0x8]
   0x0000000000402e2c: mov rdx,QWORD PTR [rsp]
   0x0000000000402e30: lea rsp,[rsp+0x98]
=> 0x0000000000402e38: movzx esi,BYTE PTR [rbx+0x11]
   0x0000000000402e3c: xor eax,eax
   0x0000000000402e3e: mov rdi,r14
   0x0000000000402e41: mov rdx,rbx
   0x0000000000402e44: call 0x401ba0 <printf@plt>
Stack Head (2 entries):
   printIfCfg                @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000019 rbx=0x0000000000000000 rcx=0x0000000000000000 rdx=0x00007fffffffd820 
rsi=0x0000000000000000 rdi=0x00007fffffffd820 rbp=0x0000000000000001 rsp=0x00007fffffffdd80 
 r8=0x00007ffff7fd3740  r9=0x0000000000000000 r10=0x0000000000000000 r11=0x0000000000494d50 
r12=0x0000000000402010 r13=0x00007fffffffe060 r14=0x0000000000494da2 r15=0x0000000000494dc3 
rip=0x0000000000402e38 efl=0x0000000000010202  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Access violation near NULL on source operand
   Short description: SourceAvNearNull (16/22)
   Explanation: The target crashed on an access violation at an address matching the source operand of the current instruction. This likely indicates a read access violation, which may mean the application crashed on a simple NULL dereference to data structure that has no immediate effect on control of the processor.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000039,sig:11,src:000157,op:havoc,rep:64
SHA1: f6892abf5718ba0c295978cc9b705c56f6f32adf
Classification: PROBABLY_NOT_EXPLOITABLE
Hash: ecde3310e561e4688b85e93027499e13.ecde3310e561e4688b85e93027499e13
Command: ./trdp-xmlprint-test afl-out/crashes/id:000039,sig:11,src:000157,op:havoc,rep:64
Faulting Frame:
   printIfCfg @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x0000000000402e1d: call 0x405f90 <__afl_maybe_log>
   0x0000000000402e22: mov rax,QWORD PTR [rsp+0x10]
   0x0000000000402e27: mov rcx,QWORD PTR [rsp+0x8]
   0x0000000000402e2c: mov rdx,QWORD PTR [rsp]
   0x0000000000402e30: lea rsp,[rsp+0x98]
=> 0x0000000000402e38: movzx esi,BYTE PTR [rbx+0x11]
   0x0000000000402e3c: xor eax,eax
   0x0000000000402e3e: mov rdi,r14
   0x0000000000402e41: mov rdx,rbx
   0x0000000000402e44: call 0x401ba0 <printf@plt>
Stack Head (2 entries):
   printIfCfg                @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000019 rbx=0x0000000000000000 rcx=0x0000000000000000 rdx=0x00007fffffffd820 
rsi=0x0000000000000000 rdi=0x00007fffffffd820 rbp=0x0000000000000001 rsp=0x00007fffffffdd80 
 r8=0x00007ffff7fd3740  r9=0x0000000000000000 r10=0x0000000000000000 r11=0x0000000000494d50 
r12=0x0000000000402010 r13=0x00007fffffffe060 r14=0x0000000000494da2 r15=0x0000000000494dc3 
rip=0x0000000000402e38 efl=0x0000000000010202  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Access violation near NULL on source operand
   Short description: SourceAvNearNull (16/22)
   Explanation: The target crashed on an access violation at an address matching the source operand of the current instruction. This likely indicates a read access violation, which may mean the application crashed on a simple NULL dereference to data structure that has no immediate effect on control of the processor.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000040,sig:11,src:000157,op:havoc,rep:32
SHA1: 6a9966dab7bf960aac88cc254dd2dd17b0e0321a
Classification: PROBABLY_NOT_EXPLOITABLE
Hash: ecde3310e561e4688b85e93027499e13.ecde3310e561e4688b85e93027499e13
Command: ./trdp-xmlprint-test afl-out/crashes/id:000040,sig:11,src:000157,op:havoc,rep:32
Faulting Frame:
   printIfCfg @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x0000000000402e1d: call 0x405f90 <__afl_maybe_log>
   0x0000000000402e22: mov rax,QWORD PTR [rsp+0x10]
   0x0000000000402e27: mov rcx,QWORD PTR [rsp+0x8]
   0x0000000000402e2c: mov rdx,QWORD PTR [rsp]
   0x0000000000402e30: lea rsp,[rsp+0x98]
=> 0x0000000000402e38: movzx esi,BYTE PTR [rbx+0x11]
   0x0000000000402e3c: xor eax,eax
   0x0000000000402e3e: mov rdi,r14
   0x0000000000402e41: mov rdx,rbx
   0x0000000000402e44: call 0x401ba0 <printf@plt>
Stack Head (2 entries):
   printIfCfg                @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000019 rbx=0x0000000000000000 rcx=0x0000000000000000 rdx=0x00007fffffffd820 
rsi=0x0000000000000000 rdi=0x00007fffffffd820 rbp=0x0000000000000001 rsp=0x00007fffffffdd80 
 r8=0x00007ffff7fd3740  r9=0x0000000000000000 r10=0x0000000000000000 r11=0x0000000000494d50 
r12=0x0000000000402010 r13=0x00007fffffffe060 r14=0x0000000000494da2 r15=0x0000000000494dc3 
rip=0x0000000000402e38 efl=0x0000000000010202  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Access violation near NULL on source operand
   Short description: SourceAvNearNull (16/22)
   Explanation: The target crashed on an access violation at an address matching the source operand of the current instruction. This likely indicates a read access violation, which may mean the application crashed on a simple NULL dereference to data structure that has no immediate effect on control of the processor.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000041,sig:11,src:000157,op:havoc,rep:16
SHA1: f4980db2e078f19e2af4ef56796526ed7e7fe3ac
Classification: PROBABLY_NOT_EXPLOITABLE
Hash: ecde3310e561e4688b85e93027499e13.ecde3310e561e4688b85e93027499e13
Command: ./trdp-xmlprint-test afl-out/crashes/id:000041,sig:11,src:000157,op:havoc,rep:16
Faulting Frame:
   printIfCfg @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x0000000000402e1d: call 0x405f90 <__afl_maybe_log>
   0x0000000000402e22: mov rax,QWORD PTR [rsp+0x10]
   0x0000000000402e27: mov rcx,QWORD PTR [rsp+0x8]
   0x0000000000402e2c: mov rdx,QWORD PTR [rsp]
   0x0000000000402e30: lea rsp,[rsp+0x98]
=> 0x0000000000402e38: movzx esi,BYTE PTR [rbx+0x11]
   0x0000000000402e3c: xor eax,eax
   0x0000000000402e3e: mov rdi,r14
   0x0000000000402e41: mov rdx,rbx
   0x0000000000402e44: call 0x401ba0 <printf@plt>
Stack Head (2 entries):
   printIfCfg                @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000019 rbx=0x0000000000000000 rcx=0x0000000000000000 rdx=0x00007fffffffd820 
rsi=0x0000000000000000 rdi=0x00007fffffffd820 rbp=0x0000000000000001 rsp=0x00007fffffffdd80 
 r8=0x00007ffff7fd3740  r9=0x0000000000000000 r10=0x0000000000000000 r11=0x0000000000494d50 
r12=0x0000000000402010 r13=0x00007fffffffe060 r14=0x0000000000494da2 r15=0x0000000000494dc3 
rip=0x0000000000402e38 efl=0x0000000000010202  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Access violation near NULL on source operand
   Short description: SourceAvNearNull (16/22)
   Explanation: The target crashed on an access violation at an address matching the source operand of the current instruction. This likely indicates a read access violation, which may mean the application crashed on a simple NULL dereference to data structure that has no immediate effect on control of the processor.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000042,sig:11,src:000157,op:havoc,rep:32
SHA1: 0c80f7cb65525cbedcf03308a95fca6d0d475a89
Classification: PROBABLY_NOT_EXPLOITABLE
Hash: ecde3310e561e4688b85e93027499e13.ecde3310e561e4688b85e93027499e13
Command: ./trdp-xmlprint-test afl-out/crashes/id:000042,sig:11,src:000157,op:havoc,rep:32
Faulting Frame:
   printIfCfg @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x0000000000402e1d: call 0x405f90 <__afl_maybe_log>
   0x0000000000402e22: mov rax,QWORD PTR [rsp+0x10]
   0x0000000000402e27: mov rcx,QWORD PTR [rsp+0x8]
   0x0000000000402e2c: mov rdx,QWORD PTR [rsp]
   0x0000000000402e30: lea rsp,[rsp+0x98]
=> 0x0000000000402e38: movzx esi,BYTE PTR [rbx+0x11]
   0x0000000000402e3c: xor eax,eax
   0x0000000000402e3e: mov rdi,r14
   0x0000000000402e41: mov rdx,rbx
   0x0000000000402e44: call 0x401ba0 <printf@plt>
Stack Head (2 entries):
   printIfCfg                @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000019 rbx=0x0000000000000000 rcx=0x0000000000000000 rdx=0x00007fffffffd820 
rsi=0x0000000000000000 rdi=0x00007fffffffd820 rbp=0x0000000000000001 rsp=0x00007fffffffdd80 
 r8=0x00007ffff7fd3740  r9=0x0000000000000000 r10=0x0000000000000000 r11=0x0000000000494d50 
r12=0x0000000000402010 r13=0x00007fffffffe060 r14=0x0000000000494da2 r15=0x0000000000494dc3 
rip=0x0000000000402e38 efl=0x0000000000010202  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Access violation near NULL on source operand
   Short description: SourceAvNearNull (16/22)
   Explanation: The target crashed on an access violation at an address matching the source operand of the current instruction. This likely indicates a read access violation, which may mean the application crashed on a simple NULL dereference to data structure that has no immediate effect on control of the processor.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000043,sig:11,src:000157,op:havoc,rep:16
SHA1: a122199ebdc4946a8d84efe2877073d02058b209
Classification: PROBABLY_NOT_EXPLOITABLE
Hash: ecde3310e561e4688b85e93027499e13.ecde3310e561e4688b85e93027499e13
Command: ./trdp-xmlprint-test afl-out/crashes/id:000043,sig:11,src:000157,op:havoc,rep:16
Faulting Frame:
   printIfCfg @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x0000000000402e1d: call 0x405f90 <__afl_maybe_log>
   0x0000000000402e22: mov rax,QWORD PTR [rsp+0x10]
   0x0000000000402e27: mov rcx,QWORD PTR [rsp+0x8]
   0x0000000000402e2c: mov rdx,QWORD PTR [rsp]
   0x0000000000402e30: lea rsp,[rsp+0x98]
=> 0x0000000000402e38: movzx esi,BYTE PTR [rbx+0x11]
   0x0000000000402e3c: xor eax,eax
   0x0000000000402e3e: mov rdi,r14
   0x0000000000402e41: mov rdx,rbx
   0x0000000000402e44: call 0x401ba0 <printf@plt>
Stack Head (2 entries):
   printIfCfg                @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000019 rbx=0x0000000000000000 rcx=0x0000000000000000 rdx=0x00007fffffffd820 
rsi=0x0000000000000000 rdi=0x00007fffffffd820 rbp=0x0000000000000001 rsp=0x00007fffffffdd80 
 r8=0x00007ffff7fd3740  r9=0x0000000000000000 r10=0x0000000000000000 r11=0x0000000000494d50 
r12=0x0000000000402010 r13=0x00007fffffffe060 r14=0x0000000000494da2 r15=0x0000000000494dc3 
rip=0x0000000000402e38 efl=0x0000000000010202  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Access violation near NULL on source operand
   Short description: SourceAvNearNull (16/22)
   Explanation: The target crashed on an access violation at an address matching the source operand of the current instruction. This likely indicates a read access violation, which may mean the application crashed on a simple NULL dereference to data structure that has no immediate effect on control of the processor.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000044,sig:11,src:000255,op:ext_AO,pos:1293
SHA1: 5815076b6377c23ce3acec8f5d83a0331b1c91f5
Classification: PROBABLY_NOT_EXPLOITABLE
Hash: ecde3310e561e4688b85e93027499e13.ecde3310e561e4688b85e93027499e13
Command: ./trdp-xmlprint-test afl-out/crashes/id:000044,sig:11,src:000255,op:ext_AO,pos:1293
Faulting Frame:
   printIfCfg @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x0000000000402e1d: call 0x405f90 <__afl_maybe_log>
   0x0000000000402e22: mov rax,QWORD PTR [rsp+0x10]
   0x0000000000402e27: mov rcx,QWORD PTR [rsp+0x8]
   0x0000000000402e2c: mov rdx,QWORD PTR [rsp]
   0x0000000000402e30: lea rsp,[rsp+0x98]
=> 0x0000000000402e38: movzx esi,BYTE PTR [rbx+0x11]
   0x0000000000402e3c: xor eax,eax
   0x0000000000402e3e: mov rdi,r14
   0x0000000000402e41: mov rdx,rbx
   0x0000000000402e44: call 0x401ba0 <printf@plt>
Stack Head (2 entries):
   printIfCfg                @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000019 rbx=0x0000000000000000 rcx=0x0000000000000000 rdx=0x00007fffffffd810 
rsi=0x0000000000000000 rdi=0x00007fffffffd810 rbp=0x0000000000000001 rsp=0x00007fffffffdd70 
 r8=0x00007ffff7fd3740  r9=0x0000000000000000 r10=0x0000000000000000 r11=0x0000000000494d86 
r12=0x0000000000402010 r13=0x00007fffffffe050 r14=0x0000000000494da2 r15=0x0000000000494dc3 
rip=0x0000000000402e38 efl=0x0000000000010202  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Access violation near NULL on source operand
   Short description: SourceAvNearNull (16/22)
   Explanation: The target crashed on an access violation at an address matching the source operand of the current instruction. This likely indicates a read access violation, which may mean the application crashed on a simple NULL dereference to data structure that has no immediate effect on control of the processor.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000045,sig:11,src:000256,op:ext_AO,pos:1293
SHA1: 22f1b8b9dc88d52a71d0ef60bd53ed2b35a48def
Classification: PROBABLY_NOT_EXPLOITABLE
Hash: ecde3310e561e4688b85e93027499e13.ecde3310e561e4688b85e93027499e13
Command: ./trdp-xmlprint-test afl-out/crashes/id:000045,sig:11,src:000256,op:ext_AO,pos:1293
Faulting Frame:
   printIfCfg @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x0000000000402e1d: call 0x405f90 <__afl_maybe_log>
   0x0000000000402e22: mov rax,QWORD PTR [rsp+0x10]
   0x0000000000402e27: mov rcx,QWORD PTR [rsp+0x8]
   0x0000000000402e2c: mov rdx,QWORD PTR [rsp]
   0x0000000000402e30: lea rsp,[rsp+0x98]
=> 0x0000000000402e38: movzx esi,BYTE PTR [rbx+0x11]
   0x0000000000402e3c: xor eax,eax
   0x0000000000402e3e: mov rdi,r14
   0x0000000000402e41: mov rdx,rbx
   0x0000000000402e44: call 0x401ba0 <printf@plt>
Stack Head (2 entries):
   printIfCfg                @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000019 rbx=0x0000000000000000 rcx=0x0000000000000000 rdx=0x00007fffffffd810 
rsi=0x0000000000000000 rdi=0x00007fffffffd810 rbp=0x0000000000000001 rsp=0x00007fffffffdd70 
 r8=0x00007ffff7fd3740  r9=0x0000000000000000 r10=0x0000000000000000 r11=0x0000000000494d86 
r12=0x0000000000402010 r13=0x00007fffffffe050 r14=0x0000000000494da2 r15=0x0000000000494dc3 
rip=0x0000000000402e38 efl=0x0000000000010202  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Access violation near NULL on source operand
   Short description: SourceAvNearNull (16/22)
   Explanation: The target crashed on an access violation at an address matching the source operand of the current instruction. This likely indicates a read access violation, which may mean the application crashed on a simple NULL dereference to data structure that has no immediate effect on control of the processor.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000046,sig:11,src:000262,op:ext_AO,pos:1293
SHA1: f10b6c3d05100192851d25fc3f0e1666e4d9e50d
Classification: PROBABLY_NOT_EXPLOITABLE
Hash: ecde3310e561e4688b85e93027499e13.ecde3310e561e4688b85e93027499e13
Command: ./trdp-xmlprint-test afl-out/crashes/id:000046,sig:11,src:000262,op:ext_AO,pos:1293
Faulting Frame:
   printIfCfg @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x0000000000402e1d: call 0x405f90 <__afl_maybe_log>
   0x0000000000402e22: mov rax,QWORD PTR [rsp+0x10]
   0x0000000000402e27: mov rcx,QWORD PTR [rsp+0x8]
   0x0000000000402e2c: mov rdx,QWORD PTR [rsp]
   0x0000000000402e30: lea rsp,[rsp+0x98]
=> 0x0000000000402e38: movzx esi,BYTE PTR [rbx+0x11]
   0x0000000000402e3c: xor eax,eax
   0x0000000000402e3e: mov rdi,r14
   0x0000000000402e41: mov rdx,rbx
   0x0000000000402e44: call 0x401ba0 <printf@plt>
Stack Head (2 entries):
   printIfCfg                @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000019 rbx=0x0000000000000000 rcx=0x0000000000000000 rdx=0x00007fffffffd810 
rsi=0x0000000000000000 rdi=0x00007fffffffd810 rbp=0x0000000000000001 rsp=0x00007fffffffdd70 
 r8=0x00007ffff7fd3740  r9=0x0000000000000000 r10=0x0000000000000000 r11=0x0000000000494d86 
r12=0x0000000000402010 r13=0x00007fffffffe050 r14=0x0000000000494da2 r15=0x0000000000494dc3 
rip=0x0000000000402e38 efl=0x0000000000010202  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Access violation near NULL on source operand
   Short description: SourceAvNearNull (16/22)
   Explanation: The target crashed on an access violation at an address matching the source operand of the current instruction. This likely indicates a read access violation, which may mean the application crashed on a simple NULL dereference to data structure that has no immediate effect on control of the processor.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000047,sig:06,src:000270,op:flip1,pos:2520
SHA1: 30f510e7af379e85c30ef167a013f8fb65dd5993
Classification: EXPLOITABLE
Hash: 83b83baa4548c411fce054145445ea03.4d66ae41f52651f14021f8828811aede
Command: ./trdp-xmlprint-test afl-out/crashes/id:000047,sig:06,src:000270,op:flip1,pos:2520
Faulting Frame:
   vos_memAlloc @ 0x000000000041afab: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00007ffff75fbe86: xor edx,edx
   0x00007ffff75fbe88: mov rsi,r9
   0x00007ffff75fbe8b: mov edi,0x2
   0x00007ffff75fbe90: mov eax,0xe
   0x00007ffff75fbe95: syscall
=> 0x00007ffff75fbe97: mov rcx,QWORD PTR [rsp+0x108]
   0x00007ffff75fbe9f: xor rcx,QWORD PTR fs:0x28
   0x00007ffff75fbea8: mov eax,r8d
   0x00007ffff75fbeab: jne 0x7ffff75fbecc <__GI_raise+252>
   0x00007ffff75fbead: add rsp,0x118
Stack Head (10 entries):
   __GI_raise                @ 0x00007ffff75fbe97: in (BL)
   __GI_abort                @ 0x00007ffff75fd801: in (BL)
   __malloc_assert           @ 0x00007ffff7650a91: in (BL)
   sysmalloc                 @ 0x00007ffff7650a91: in (BL)
   _int_malloc               @ 0x00007ffff7651ff0: in (BL)
   __GI___libc_malloc        @ 0x00007ffff76540fc: in (BL)
   vos_memAlloc              @ 0x000000000041afab: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   readXmlDatasets           @ 0x0000000000432420: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_readXmlDatasetConfig  @ 0x0000000000432420: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x000000000040331e: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000000 rbx=0x00007ffff79a8c40 rcx=0x00007ffff75fbe97 rdx=0x0000000000000000 
rsi=0x00007fffffffd600 rdi=0x0000000000000002 rbp=0x0000000000000020 rsp=0x00007fffffffd600 
 r8=0x0000000000000000  r9=0x00007fffffffd600 r10=0x0000000000000008 r11=0x0000000000000246 
r12=0x0000000000001000 r13=0x00000000006a7b10 r14=0x0000000000000000 r15=0x00007ffff79a8ca0 
rip=0x00007ffff75fbe97 efl=0x0000000000000246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Heap error
   Short description: HeapError (10/22)
   Explanation: The target's backtrace indicates that libc has detected a heap error or that the target was executing a heap function when it stopped. This could be due to heap corruption, passing a bad pointer to a heap function such as free(), etc. Since heap errors might include buffer overflows, use-after-free situations, etc. they are generally considered exploitable.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000048,sig:06,src:000271,op:flip1,pos:2520
SHA1: 871afb36ed63a7c1711fb0d62d8b42da875db36a
Classification: EXPLOITABLE
Hash: 83b83baa4548c411fce054145445ea03.4d66ae41f52651f14021f8828811aede
Command: ./trdp-xmlprint-test afl-out/crashes/id:000048,sig:06,src:000271,op:flip1,pos:2520
Faulting Frame:
   vos_memAlloc @ 0x000000000041afab: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00007ffff75fbe86: xor edx,edx
   0x00007ffff75fbe88: mov rsi,r9
   0x00007ffff75fbe8b: mov edi,0x2
   0x00007ffff75fbe90: mov eax,0xe
   0x00007ffff75fbe95: syscall
=> 0x00007ffff75fbe97: mov rcx,QWORD PTR [rsp+0x108]
   0x00007ffff75fbe9f: xor rcx,QWORD PTR fs:0x28
   0x00007ffff75fbea8: mov eax,r8d
   0x00007ffff75fbeab: jne 0x7ffff75fbecc <__GI_raise+252>
   0x00007ffff75fbead: add rsp,0x118
Stack Head (10 entries):
   __GI_raise                @ 0x00007ffff75fbe97: in (BL)
   __GI_abort                @ 0x00007ffff75fd801: in (BL)
   __malloc_assert           @ 0x00007ffff7650a91: in (BL)
   sysmalloc                 @ 0x00007ffff7650a91: in (BL)
   _int_malloc               @ 0x00007ffff7651ff0: in (BL)
   __GI___libc_malloc        @ 0x00007ffff76540fc: in (BL)
   vos_memAlloc              @ 0x000000000041afab: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   readXmlDatasets           @ 0x0000000000432420: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_readXmlDatasetConfig  @ 0x0000000000432420: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x000000000040331e: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000000 rbx=0x00007ffff79a8c40 rcx=0x00007ffff75fbe97 rdx=0x0000000000000000 
rsi=0x00007fffffffd600 rdi=0x0000000000000002 rbp=0x0000000000000020 rsp=0x00007fffffffd600 
 r8=0x0000000000000000  r9=0x00007fffffffd600 r10=0x0000000000000008 r11=0x0000000000000246 
r12=0x0000000000001000 r13=0x00000000006a7b10 r14=0x0000000000000000 r15=0x00007ffff79a8ca0 
rip=0x00007ffff75fbe97 efl=0x0000000000000246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Heap error
   Short description: HeapError (10/22)
   Explanation: The target's backtrace indicates that libc has detected a heap error or that the target was executing a heap function when it stopped. This could be due to heap corruption, passing a bad pointer to a heap function such as free(), etc. Since heap errors might include buffer overflows, use-after-free situations, etc. they are generally considered exploitable.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000049,sig:11,src:000286,op:ext_AO,pos:3251
SHA1: 00bc5f94c95a6b0693d9880f2b63831360d0d437
Classification: PROBABLY_NOT_EXPLOITABLE
Hash: ecde3310e561e4688b85e93027499e13.ecde3310e561e4688b85e93027499e13
Command: ./trdp-xmlprint-test afl-out/crashes/id:000049,sig:11,src:000286,op:ext_AO,pos:3251
Faulting Frame:
   printIfCfg @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x0000000000402e1d: call 0x405f90 <__afl_maybe_log>
   0x0000000000402e22: mov rax,QWORD PTR [rsp+0x10]
   0x0000000000402e27: mov rcx,QWORD PTR [rsp+0x8]
   0x0000000000402e2c: mov rdx,QWORD PTR [rsp]
   0x0000000000402e30: lea rsp,[rsp+0x98]
=> 0x0000000000402e38: movzx esi,BYTE PTR [rbx+0x11]
   0x0000000000402e3c: xor eax,eax
   0x0000000000402e3e: mov rdi,r14
   0x0000000000402e41: mov rdx,rbx
   0x0000000000402e44: call 0x401ba0 <printf@plt>
Stack Head (2 entries):
   printIfCfg                @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000019 rbx=0x0000000000000000 rcx=0x0000000000000000 rdx=0x00007fffffffd810 
rsi=0x0000000000000000 rdi=0x00007fffffffd810 rbp=0x0000000000000001 rsp=0x00007fffffffdd70 
 r8=0x00007ffff7fd3740  r9=0x0000000000000000 r10=0x0000000000000000 r11=0x0000000000494d86 
r12=0x0000000000402010 r13=0x00007fffffffe050 r14=0x0000000000494da2 r15=0x0000000000494dc3 
rip=0x0000000000402e38 efl=0x0000000000010202  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Access violation near NULL on source operand
   Short description: SourceAvNearNull (16/22)
   Explanation: The target crashed on an access violation at an address matching the source operand of the current instruction. This likely indicates a read access violation, which may mean the application crashed on a simple NULL dereference to data structure that has no immediate effect on control of the processor.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000050,sig:11,src:000304,op:ext_AO,pos:1293
SHA1: 78058ff5ac4956d2802d29309c064b9a9044a938
Classification: PROBABLY_NOT_EXPLOITABLE
Hash: ecde3310e561e4688b85e93027499e13.ecde3310e561e4688b85e93027499e13
Command: ./trdp-xmlprint-test afl-out/crashes/id:000050,sig:11,src:000304,op:ext_AO,pos:1293
Faulting Frame:
   printIfCfg @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x0000000000402e1d: call 0x405f90 <__afl_maybe_log>
   0x0000000000402e22: mov rax,QWORD PTR [rsp+0x10]
   0x0000000000402e27: mov rcx,QWORD PTR [rsp+0x8]
   0x0000000000402e2c: mov rdx,QWORD PTR [rsp]
   0x0000000000402e30: lea rsp,[rsp+0x98]
=> 0x0000000000402e38: movzx esi,BYTE PTR [rbx+0x11]
   0x0000000000402e3c: xor eax,eax
   0x0000000000402e3e: mov rdi,r14
   0x0000000000402e41: mov rdx,rbx
   0x0000000000402e44: call 0x401ba0 <printf@plt>
Stack Head (2 entries):
   printIfCfg                @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000019 rbx=0x0000000000000000 rcx=0x0000000000000000 rdx=0x00007fffffffd810 
rsi=0x0000000000000000 rdi=0x00007fffffffd810 rbp=0x0000000000000001 rsp=0x00007fffffffdd70 
 r8=0x00007ffff7fd3740  r9=0x0000000000000000 r10=0x0000000000000000 r11=0x0000000000494d86 
r12=0x0000000000402010 r13=0x00007fffffffe050 r14=0x0000000000494da2 r15=0x0000000000494dc3 
rip=0x0000000000402e38 efl=0x0000000000010202  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Access violation near NULL on source operand
   Short description: SourceAvNearNull (16/22)
   Explanation: The target crashed on an access violation at an address matching the source operand of the current instruction. This likely indicates a read access violation, which may mean the application crashed on a simple NULL dereference to data structure that has no immediate effect on control of the processor.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000051,sig:11,src:000410,op:ext_AO,pos:1166
SHA1: 9ccc11af433c6dfcad7ec43d5a74a8b0bbc83166
Classification: PROBABLY_NOT_EXPLOITABLE
Hash: ecde3310e561e4688b85e93027499e13.ecde3310e561e4688b85e93027499e13
Command: ./trdp-xmlprint-test afl-out/crashes/id:000051,sig:11,src:000410,op:ext_AO,pos:1166
Faulting Frame:
   printIfCfg @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x0000000000402e1d: call 0x405f90 <__afl_maybe_log>
   0x0000000000402e22: mov rax,QWORD PTR [rsp+0x10]
   0x0000000000402e27: mov rcx,QWORD PTR [rsp+0x8]
   0x0000000000402e2c: mov rdx,QWORD PTR [rsp]
   0x0000000000402e30: lea rsp,[rsp+0x98]
=> 0x0000000000402e38: movzx esi,BYTE PTR [rbx+0x11]
   0x0000000000402e3c: xor eax,eax
   0x0000000000402e3e: mov rdi,r14
   0x0000000000402e41: mov rdx,rbx
   0x0000000000402e44: call 0x401ba0 <printf@plt>
Stack Head (2 entries):
   printIfCfg                @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000019 rbx=0x0000000000000000 rcx=0x0000000000000000 rdx=0x00007fffffffd810 
rsi=0x0000000000000000 rdi=0x00007fffffffd810 rbp=0x0000000000000001 rsp=0x00007fffffffdd70 
 r8=0x00007ffff7fd3740  r9=0x0000000000000000 r10=0x0000000000000000 r11=0x0000000000494d50 
r12=0x0000000000402010 r13=0x00007fffffffe050 r14=0x0000000000494da2 r15=0x0000000000494dc3 
rip=0x0000000000402e38 efl=0x0000000000010202  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Access violation near NULL on source operand
   Short description: SourceAvNearNull (16/22)
   Explanation: The target crashed on an access violation at an address matching the source operand of the current instruction. This likely indicates a read access violation, which may mean the application crashed on a simple NULL dereference to data structure that has no immediate effect on control of the processor.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000052,sig:06,src:000429,op:flip1,pos:2100
SHA1: 65f663931615e4f6b9468490229aebdbb2815ec2
Classification: EXPLOITABLE
Hash: 5ce2eaf0ef3b5ab4577c2289a61015eb.991e6d975c0ca7fe8dd061fc66fcb5a4
Command: ./trdp-xmlprint-test afl-out/crashes/id:000052,sig:06,src:000429,op:flip1,pos:2100
Faulting Frame:
   vos_memAlloc @ 0x000000000041afab: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00007ffff75fbe86: xor edx,edx
   0x00007ffff75fbe88: mov rsi,r9
   0x00007ffff75fbe8b: mov edi,0x2
   0x00007ffff75fbe90: mov eax,0xe
   0x00007ffff75fbe95: syscall
=> 0x00007ffff75fbe97: mov rcx,QWORD PTR [rsp+0x108]
   0x00007ffff75fbe9f: xor rcx,QWORD PTR fs:0x28
   0x00007ffff75fbea8: mov eax,r8d
   0x00007ffff75fbeab: jne 0x7ffff75fbecc <__GI_raise+252>
   0x00007ffff75fbead: add rsp,0x118
Stack Head (9 entries):
   __GI_raise                @ 0x00007ffff75fbe97: in (BL)
   __GI_abort                @ 0x00007ffff75fd801: in (BL)
   __malloc_assert           @ 0x00007ffff7650a91: in (BL)
   sysmalloc                 @ 0x00007ffff7650a91: in (BL)
   _int_malloc               @ 0x00007ffff7651ff0: in (BL)
   __GI___libc_malloc        @ 0x00007ffff76540fc: in (BL)
   vos_memAlloc              @ 0x000000000041afab: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_readXmlInterfaceConfi @ 0x0000000000423658: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x000000000040570b: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000000 rbx=0x00007ffff79a8c40 rcx=0x00007ffff75fbe97 rdx=0x0000000000000000 
rsi=0x00007fffffffd3a0 rdi=0x0000000000000002 rbp=0x0000000000000060 rsp=0x00007fffffffd3a0 
 r8=0x0000000000000000  r9=0x00007fffffffd3a0 r10=0x0000000000000008 r11=0x0000000000000246 
r12=0x0000000000001000 r13=0x00000000006a7a10 r14=0x0000000000000000 r15=0x00007ffff79a8ca0 
rip=0x00007ffff75fbe97 efl=0x0000000000000246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Heap error
   Short description: HeapError (10/22)
   Explanation: The target's backtrace indicates that libc has detected a heap error or that the target was executing a heap function when it stopped. This could be due to heap corruption, passing a bad pointer to a heap function such as free(), etc. Since heap errors might include buffer overflows, use-after-free situations, etc. they are generally considered exploitable.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000053,sig:06,src:000429,op:flip1,pos:2392
SHA1: c519138f5e7962b24ef9cc165d76c151a7ddc713
Classification: EXPLOITABLE
Hash: 5ce2eaf0ef3b5ab4577c2289a61015eb.991e6d975c0ca7fe8dd061fc66fcb5a4
Command: ./trdp-xmlprint-test afl-out/crashes/id:000053,sig:06,src:000429,op:flip1,pos:2392
Faulting Frame:
   vos_memAlloc @ 0x000000000041afab: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00007ffff75fbe86: xor edx,edx
   0x00007ffff75fbe88: mov rsi,r9
   0x00007ffff75fbe8b: mov edi,0x2
   0x00007ffff75fbe90: mov eax,0xe
   0x00007ffff75fbe95: syscall
=> 0x00007ffff75fbe97: mov rcx,QWORD PTR [rsp+0x108]
   0x00007ffff75fbe9f: xor rcx,QWORD PTR fs:0x28
   0x00007ffff75fbea8: mov eax,r8d
   0x00007ffff75fbeab: jne 0x7ffff75fbecc <__GI_raise+252>
   0x00007ffff75fbead: add rsp,0x118
Stack Head (9 entries):
   __GI_raise                @ 0x00007ffff75fbe97: in (BL)
   __GI_abort                @ 0x00007ffff75fd801: in (BL)
   __malloc_assert           @ 0x00007ffff7650a91: in (BL)
   sysmalloc                 @ 0x00007ffff7650a91: in (BL)
   _int_malloc               @ 0x00007ffff7651ff0: in (BL)
   __GI___libc_malloc        @ 0x00007ffff76540fc: in (BL)
   vos_memAlloc              @ 0x000000000041afab: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_readXmlInterfaceConfi @ 0x0000000000423658: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x000000000040570b: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000000 rbx=0x00007ffff79a8c40 rcx=0x00007ffff75fbe97 rdx=0x0000000000000000 
rsi=0x00007fffffffd3a0 rdi=0x0000000000000002 rbp=0x0000000000000060 rsp=0x00007fffffffd3a0 
 r8=0x0000000000000000  r9=0x00007fffffffd3a0 r10=0x0000000000000008 r11=0x0000000000000246 
r12=0x0000000000001000 r13=0x00000000006a7b40 r14=0x0000000000000000 r15=0x00007ffff79a8ca0 
rip=0x00007ffff75fbe97 efl=0x0000000000000246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Heap error
   Short description: HeapError (10/22)
   Explanation: The target's backtrace indicates that libc has detected a heap error or that the target was executing a heap function when it stopped. This could be due to heap corruption, passing a bad pointer to a heap function such as free(), etc. Since heap errors might include buffer overflows, use-after-free situations, etc. they are generally considered exploitable.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000054,sig:11,src:000474,op:ext_AO,pos:2287
SHA1: 0fe7c4327c1eeb68039fa86759c2121bd755508c
Classification: PROBABLY_NOT_EXPLOITABLE
Hash: ecde3310e561e4688b85e93027499e13.ecde3310e561e4688b85e93027499e13
Command: ./trdp-xmlprint-test afl-out/crashes/id:000054,sig:11,src:000474,op:ext_AO,pos:2287
Faulting Frame:
   printIfCfg @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x0000000000402e1d: call 0x405f90 <__afl_maybe_log>
   0x0000000000402e22: mov rax,QWORD PTR [rsp+0x10]
   0x0000000000402e27: mov rcx,QWORD PTR [rsp+0x8]
   0x0000000000402e2c: mov rdx,QWORD PTR [rsp]
   0x0000000000402e30: lea rsp,[rsp+0x98]
=> 0x0000000000402e38: movzx esi,BYTE PTR [rbx+0x11]
   0x0000000000402e3c: xor eax,eax
   0x0000000000402e3e: mov rdi,r14
   0x0000000000402e41: mov rdx,rbx
   0x0000000000402e44: call 0x401ba0 <printf@plt>
Stack Head (2 entries):
   printIfCfg                @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000019 rbx=0x0000000000000000 rcx=0x0000000000000000 rdx=0x00007fffffffd810 
rsi=0x0000000000000000 rdi=0x00007fffffffd810 rbp=0x0000000000000001 rsp=0x00007fffffffdd70 
 r8=0x00007ffff7fd3740  r9=0x0000000000000000 r10=0x0000000000000000 r11=0x0000000000494d50 
r12=0x0000000000402010 r13=0x00007fffffffe050 r14=0x0000000000494da2 r15=0x0000000000494dc3 
rip=0x0000000000402e38 efl=0x0000000000010202  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Access violation near NULL on source operand
   Short description: SourceAvNearNull (16/22)
   Explanation: The target crashed on an access violation at an address matching the source operand of the current instruction. This likely indicates a read access violation, which may mean the application crashed on a simple NULL dereference to data structure that has no immediate effect on control of the processor.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000055,sig:11,src:000498,op:ext_AO,pos:1225
SHA1: 03a84fccf9def9ca5a75c099afe48975261e577e
Classification: PROBABLY_NOT_EXPLOITABLE
Hash: ecde3310e561e4688b85e93027499e13.ecde3310e561e4688b85e93027499e13
Command: ./trdp-xmlprint-test afl-out/crashes/id:000055,sig:11,src:000498,op:ext_AO,pos:1225
Faulting Frame:
   printIfCfg @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x0000000000402e1d: call 0x405f90 <__afl_maybe_log>
   0x0000000000402e22: mov rax,QWORD PTR [rsp+0x10]
   0x0000000000402e27: mov rcx,QWORD PTR [rsp+0x8]
   0x0000000000402e2c: mov rdx,QWORD PTR [rsp]
   0x0000000000402e30: lea rsp,[rsp+0x98]
=> 0x0000000000402e38: movzx esi,BYTE PTR [rbx+0x11]
   0x0000000000402e3c: xor eax,eax
   0x0000000000402e3e: mov rdi,r14
   0x0000000000402e41: mov rdx,rbx
   0x0000000000402e44: call 0x401ba0 <printf@plt>
Stack Head (2 entries):
   printIfCfg                @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000019 rbx=0x0000000000000000 rcx=0x0000000000000000 rdx=0x00007fffffffd810 
rsi=0x0000000000000000 rdi=0x00007fffffffd810 rbp=0x0000000000000001 rsp=0x00007fffffffdd70 
 r8=0x00007ffff7fd3740  r9=0x0000000000000000 r10=0x0000000000000000 r11=0x0000000000494d86 
r12=0x0000000000402010 r13=0x00007fffffffe050 r14=0x0000000000494da2 r15=0x0000000000494dc3 
rip=0x0000000000402e38 efl=0x0000000000010202  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Access violation near NULL on source operand
   Short description: SourceAvNearNull (16/22)
   Explanation: The target crashed on an access violation at an address matching the source operand of the current instruction. This likely indicates a read access violation, which may mean the application crashed on a simple NULL dereference to data structure that has no immediate effect on control of the processor.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000056,sig:11,src:000498,op:havoc,rep:2
SHA1: 507812de7b3b58fe4e6e48bc327ecd4e0c696446
Classification: PROBABLY_NOT_EXPLOITABLE
Hash: 0370904da3afb96a8168a1f6f0bdcc8a.0370904da3afb96a8168a1f6f0bdcc8a
Command: ./trdp-xmlprint-test afl-out/crashes/id:000056,sig:11,src:000498,op:havoc,rep:2
Faulting Frame:
   printCommParams @ 0x0000000000402d08: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x0000000000402ced: call 0x405f90 <__afl_maybe_log>
   0x0000000000402cf2: mov rax,QWORD PTR [rsp+0x10]
   0x0000000000402cf7: mov rcx,QWORD PTR [rsp+0x8]
   0x0000000000402cfc: mov rdx,QWORD PTR [rsp]
   0x0000000000402d00: lea rsp,[rsp+0x98]
=> 0x0000000000402d08: mov esi,DWORD PTR [rbx-0x5]
   0x0000000000402d0b: movzx edx,BYTE PTR [rbx-0x1]
   0x0000000000402d0f: movzx ecx,BYTE PTR [rbx]
   0x0000000000402d12: xor eax,eax
   0x0000000000402d14: mov rdi,r14
Stack Head (2 entries):
   printCommParams           @ 0x0000000000402d08: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000402d08: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000019 rbx=0x0000000000000005 rcx=0x0000000000000000 rdx=0x00007fffffffd820 
rsi=0x0000000000000000 rdi=0x00007fffffffd820 rbp=0x0000000000000003 rsp=0x00007fffffffdd80 
 r8=0x00007ffff7fd3740  r9=0x0000000000000000 r10=0x0000000000000000 r11=0x0000000000494d50 
r12=0x0000000000402010 r13=0x00007fffffffe060 r14=0x0000000000494d6c r15=0x0000000000000000 
rip=0x0000000000402d08 efl=0x0000000000010206  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Access violation near NULL on source operand
   Short description: SourceAvNearNull (16/22)
   Explanation: The target crashed on an access violation at an address matching the source operand of the current instruction. This likely indicates a read access violation, which may mean the application crashed on a simple NULL dereference to data structure that has no immediate effect on control of the processor.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000057,sig:11,src:000509,op:flip1,pos:563
SHA1: 0566c38b08ef853b76dd0707570ef52a97e96222
Classification: PROBABLY_EXPLOITABLE
Hash: 31bcadb15f57445cd48f3071eee12c57.31bcadb15f57445cd48f3071eee12c57
Command: ./trdp-xmlprint-test afl-out/crashes/id:000057,sig:11,src:000509,op:flip1,pos:563
Faulting Frame:
   readXmlDatasetMap @ 0x0000000000431317: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00000000004312fc: mov rdx,QWORD PTR [rsp]
   0x0000000000431300: lea rsp,[rsp+0x98]
   0x0000000000431308: mov eax,DWORD PTR [rsp+0xb0]
   0x000000000043130f: mov rcx,QWORD PTR [rsp+0x10]
   0x0000000000431314: mov rcx,QWORD PTR [rcx]
=> 0x0000000000431317: mov DWORD PTR [rcx+r13*8],eax
   0x000000000043131b: nop
   0x000000000043131c: lea rsp,[rsp-0x98]
   0x0000000000431324: mov QWORD PTR [rsp],rdx
   0x0000000000431328: mov QWORD PTR [rsp+0x8],rcx
Stack Head (3 entries):
   readXmlDatasetMap         @ 0x0000000000431317: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_readXmlDatasetConfig  @ 0x0000000000431317: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x000000000040331e: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x00000000000003ec rbx=0x00007fffffffdcb0 rcx=0x0000000000000000 rdx=0x00007ffff775adc0 
rsi=0x0000000000497ac3 rdi=0x00007fffffffdcb0 rbp=0x00000000006a6270 rsp=0x00007fffffffdb00 
 r8=0x00007fffffffdb34  r9=0x0000000000000000 r10=0x00007ffff775bcc0 r11=0x0000000000000076 
r12=0x0000000000497ac3 r13=0x0000000000000000 r14=0x00007fffffffdb30 r15=0x00007fffffffdbb0 
rip=0x0000000000431317 efl=0x0000000000010246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Access violation near NULL on destination operand
   Short description: DestAvNearNull (15/22)
   Explanation: The target crashed on an access violation at an address matching the destination operand of the instruction. This likely indicates a write access violation, which means the attacker may control write address and/or value. However, it there is a chance it could be a NULL dereference.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000058,sig:11,src:000509,op:havoc,rep:32
SHA1: 1176b08365d33ea1cac8655ec4d08bc19b8799d4
Classification: PROBABLY_EXPLOITABLE
Hash: 31bcadb15f57445cd48f3071eee12c57.31bcadb15f57445cd48f3071eee12c57
Command: ./trdp-xmlprint-test afl-out/crashes/id:000058,sig:11,src:000509,op:havoc,rep:32
Faulting Frame:
   readXmlDatasetMap @ 0x0000000000431317: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00000000004312fc: mov rdx,QWORD PTR [rsp]
   0x0000000000431300: lea rsp,[rsp+0x98]
   0x0000000000431308: mov eax,DWORD PTR [rsp+0xb0]
   0x000000000043130f: mov rcx,QWORD PTR [rsp+0x10]
   0x0000000000431314: mov rcx,QWORD PTR [rcx]
=> 0x0000000000431317: mov DWORD PTR [rcx+r13*8],eax
   0x000000000043131b: nop
   0x000000000043131c: lea rsp,[rsp-0x98]
   0x0000000000431324: mov QWORD PTR [rsp],rdx
   0x0000000000431328: mov QWORD PTR [rsp+0x8],rcx
Stack Head (3 entries):
   readXmlDatasetMap         @ 0x0000000000431317: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_readXmlDatasetConfig  @ 0x0000000000431317: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x000000000040331e: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x00000000000003ec rbx=0x00007fffffffdcc0 rcx=0x0000000000000000 rdx=0x00007ffff775adc0 
rsi=0x0000000000497ac3 rdi=0x00007fffffffdcc0 rbp=0x00000000006a6270 rsp=0x00007fffffffdb10 
 r8=0x00007fffffffdb44  r9=0x0000000000000000 r10=0x00007ffff775bcc0 r11=0x0000000000000076 
r12=0x0000000000497ac3 r13=0x0000000000000000 r14=0x00007fffffffdb40 r15=0x00007fffffffdbc0 
rip=0x0000000000431317 efl=0x0000000000010246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Access violation near NULL on destination operand
   Short description: DestAvNearNull (15/22)
   Explanation: The target crashed on an access violation at an address matching the destination operand of the instruction. This likely indicates a write access violation, which means the attacker may control write address and/or value. However, it there is a chance it could be a NULL dereference.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000059,sig:11,src:000509,op:havoc,rep:32
SHA1: b4ac36a5882fcd3dbe962e5f3b22e9bbc7d74d6a
Classification: PROBABLY_EXPLOITABLE
Hash: 31bcadb15f57445cd48f3071eee12c57.31bcadb15f57445cd48f3071eee12c57
Command: ./trdp-xmlprint-test afl-out/crashes/id:000059,sig:11,src:000509,op:havoc,rep:32
Faulting Frame:
   readXmlDatasetMap @ 0x0000000000431317: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00000000004312fc: mov rdx,QWORD PTR [rsp]
   0x0000000000431300: lea rsp,[rsp+0x98]
   0x0000000000431308: mov eax,DWORD PTR [rsp+0xb0]
   0x000000000043130f: mov rcx,QWORD PTR [rsp+0x10]
   0x0000000000431314: mov rcx,QWORD PTR [rcx]
=> 0x0000000000431317: mov DWORD PTR [rcx+r13*8],eax
   0x000000000043131b: nop
   0x000000000043131c: lea rsp,[rsp-0x98]
   0x0000000000431324: mov QWORD PTR [rsp],rdx
   0x0000000000431328: mov QWORD PTR [rsp+0x8],rcx
Stack Head (3 entries):
   readXmlDatasetMap         @ 0x0000000000431317: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_readXmlDatasetConfig  @ 0x0000000000431317: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x000000000040331e: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x00000000000003ec rbx=0x00007fffffffdcc0 rcx=0x0000000000000000 rdx=0x00007ffff775adc0 
rsi=0x0000000000497ac3 rdi=0x00007fffffffdcc0 rbp=0x00000000006a6270 rsp=0x00007fffffffdb10 
 r8=0x00007fffffffdb44  r9=0x0000000000000000 r10=0x00007ffff775bcc0 r11=0x0000000000000076 
r12=0x0000000000497ac3 r13=0x0000000000000000 r14=0x00007fffffffdb40 r15=0x00007fffffffdbc0 
rip=0x0000000000431317 efl=0x0000000000010246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Access violation near NULL on destination operand
   Short description: DestAvNearNull (15/22)
   Explanation: The target crashed on an access violation at an address matching the destination operand of the instruction. This likely indicates a write access violation, which means the attacker may control write address and/or value. However, it there is a chance it could be a NULL dereference.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000060,sig:11,src:000509,op:havoc,rep:32
SHA1: e7446c90ef9ab8b189285d82b9f24aaae1fca851
Classification: PROBABLY_EXPLOITABLE
Hash: 31bcadb15f57445cd48f3071eee12c57.31bcadb15f57445cd48f3071eee12c57
Command: ./trdp-xmlprint-test afl-out/crashes/id:000060,sig:11,src:000509,op:havoc,rep:32
Faulting Frame:
   readXmlDatasetMap @ 0x0000000000431317: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00000000004312fc: mov rdx,QWORD PTR [rsp]
   0x0000000000431300: lea rsp,[rsp+0x98]
   0x0000000000431308: mov eax,DWORD PTR [rsp+0xb0]
   0x000000000043130f: mov rcx,QWORD PTR [rsp+0x10]
   0x0000000000431314: mov rcx,QWORD PTR [rcx]
=> 0x0000000000431317: mov DWORD PTR [rcx+r13*8],eax
   0x000000000043131b: nop
   0x000000000043131c: lea rsp,[rsp-0x98]
   0x0000000000431324: mov QWORD PTR [rsp],rdx
   0x0000000000431328: mov QWORD PTR [rsp+0x8],rcx
Stack Head (3 entries):
   readXmlDatasetMap         @ 0x0000000000431317: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_readXmlDatasetConfig  @ 0x0000000000431317: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x000000000040331e: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x00000000000003ec rbx=0x00007fffffffdcc0 rcx=0x0000000000000000 rdx=0x00007ffff775adc0 
rsi=0x0000000000497ac3 rdi=0x00007fffffffdcc0 rbp=0x00000000006a6270 rsp=0x00007fffffffdb10 
 r8=0x00007fffffffdb44  r9=0x0000000000000000 r10=0x00007ffff775bcc0 r11=0x0000000000000076 
r12=0x0000000000497ac3 r13=0x0000000000000000 r14=0x00007fffffffdb40 r15=0x00007fffffffdbc0 
rip=0x0000000000431317 efl=0x0000000000010246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Access violation near NULL on destination operand
   Short description: DestAvNearNull (15/22)
   Explanation: The target crashed on an access violation at an address matching the destination operand of the instruction. This likely indicates a write access violation, which means the attacker may control write address and/or value. However, it there is a chance it could be a NULL dereference.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000061,sig:06,src:000509,op:havoc,rep:64
SHA1: 1cc2203e4287e8cf2efa74ce0bc094840f85da72
Classification: EXPLOITABLE
Hash: 83b83baa4548c411fce054145445ea03.4d66ae41f52651f14021f8828811aede
Command: ./trdp-xmlprint-test afl-out/crashes/id:000061,sig:06,src:000509,op:havoc,rep:64
Faulting Frame:
   vos_memAlloc @ 0x000000000041afab: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00007ffff75fbe86: xor edx,edx
   0x00007ffff75fbe88: mov rsi,r9
   0x00007ffff75fbe8b: mov edi,0x2
   0x00007ffff75fbe90: mov eax,0xe
   0x00007ffff75fbe95: syscall
=> 0x00007ffff75fbe97: mov rcx,QWORD PTR [rsp+0x108]
   0x00007ffff75fbe9f: xor rcx,QWORD PTR fs:0x28
   0x00007ffff75fbea8: mov eax,r8d
   0x00007ffff75fbeab: jne 0x7ffff75fbecc <__GI_raise+252>
   0x00007ffff75fbead: add rsp,0x118
Stack Head (10 entries):
   __GI_raise                @ 0x00007ffff75fbe97: in (BL)
   __GI_abort                @ 0x00007ffff75fd801: in (BL)
   __malloc_assert           @ 0x00007ffff7650a91: in (BL)
   sysmalloc                 @ 0x00007ffff7650a91: in (BL)
   _int_malloc               @ 0x00007ffff7651ff0: in (BL)
   __GI___libc_malloc        @ 0x00007ffff76540fc: in (BL)
   vos_memAlloc              @ 0x000000000041afab: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   readXmlDatasets           @ 0x0000000000432420: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_readXmlDatasetConfig  @ 0x0000000000432420: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x000000000040331e: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000000 rbx=0x00007ffff79a8c40 rcx=0x00007ffff75fbe97 rdx=0x0000000000000000 
rsi=0x00007fffffffd610 rdi=0x0000000000000002 rbp=0x0000000000000020 rsp=0x00007fffffffd610 
 r8=0x0000000000000000  r9=0x00007fffffffd610 r10=0x0000000000000008 r11=0x0000000000000246 
r12=0x0000000000001000 r13=0x00000000006a7710 r14=0x0000000000000000 r15=0x00007ffff79a8ca0 
rip=0x00007ffff75fbe97 efl=0x0000000000000246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Heap error
   Short description: HeapError (10/22)
   Explanation: The target's backtrace indicates that libc has detected a heap error or that the target was executing a heap function when it stopped. This could be due to heap corruption, passing a bad pointer to a heap function such as free(), etc. Since heap errors might include buffer overflows, use-after-free situations, etc. they are generally considered exploitable.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000062,sig:06,src:000509,op:havoc,rep:4
SHA1: a2db7160733fe695031c0b7d805ef58825818316
Classification: EXPLOITABLE
Hash: 92b3ea7508e258a91b96a1bcaab290ce.fda47f6974e87d79b4a198b5b5d2204c
Command: ./trdp-xmlprint-test afl-out/crashes/id:000062,sig:06,src:000509,op:havoc,rep:4
Faulting Frame:
   vos_memFree @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00007ffff75fbe86: xor edx,edx
   0x00007ffff75fbe88: mov rsi,r9
   0x00007ffff75fbe8b: mov edi,0x2
   0x00007ffff75fbe90: mov eax,0xe
   0x00007ffff75fbe95: syscall
=> 0x00007ffff75fbe97: mov rcx,QWORD PTR [rsp+0x108]
   0x00007ffff75fbe9f: xor rcx,QWORD PTR fs:0x28
   0x00007ffff75fbea8: mov eax,r8d
   0x00007ffff75fbeab: jne 0x7ffff75fbecc <__GI_raise+252>
   0x00007ffff75fbead: add rsp,0x118
Stack Head (9 entries):
   __GI_raise                @ 0x00007ffff75fbe97: in (BL)
   __GI_abort                @ 0x00007ffff75fd801: in (BL)
   __libc_message            @ 0x00007ffff7646897: in (BL)
   malloc_printerr           @ 0x00007ffff764d90a: in (BL)
   _int_free                 @ 0x00007ffff7654f60: in (BL)
   __GI___libc_free          @ 0x00007ffff7654f60: in (BL)
   vos_memFree               @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_freeTelegrams         @ 0x0000000000429924: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000405334: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000000 rbx=0x00007fffffffda90 rcx=0x00007ffff75fbe97 rdx=0x0000000000000000 
rsi=0x00007fffffffd820 rdi=0x0000000000000002 rbp=0x00007fffffffdb90 rsp=0x00007fffffffd820 
 r8=0x0000000000000000  r9=0x00007fffffffd820 r10=0x0000000000000008 r11=0x0000000000000246 
r12=0x00007fffffffda90 r13=0x0000000000001000 r14=0x0000000000000000 r15=0x0000000000000030 
rip=0x00007ffff75fbe97 efl=0x0000000000000246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Heap error
   Short description: HeapError (10/22)
   Explanation: The target's backtrace indicates that libc has detected a heap error or that the target was executing a heap function when it stopped. This could be due to heap corruption, passing a bad pointer to a heap function such as free(), etc. Since heap errors might include buffer overflows, use-after-free situations, etc. they are generally considered exploitable.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000063,sig:11,src:000515,op:havoc,rep:8
SHA1: 3b8e9b107dcc36a90a46b6aa357d481197c37770
Classification: PROBABLY_EXPLOITABLE
Hash: 31bcadb15f57445cd48f3071eee12c57.31bcadb15f57445cd48f3071eee12c57
Command: ./trdp-xmlprint-test afl-out/crashes/id:000063,sig:11,src:000515,op:havoc,rep:8
Faulting Frame:
   readXmlDatasetMap @ 0x0000000000431317: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00000000004312fc: mov rdx,QWORD PTR [rsp]
   0x0000000000431300: lea rsp,[rsp+0x98]
   0x0000000000431308: mov eax,DWORD PTR [rsp+0xb0]
   0x000000000043130f: mov rcx,QWORD PTR [rsp+0x10]
   0x0000000000431314: mov rcx,QWORD PTR [rcx]
=> 0x0000000000431317: mov DWORD PTR [rcx+r13*8],eax
   0x000000000043131b: nop
   0x000000000043131c: lea rsp,[rsp-0x98]
   0x0000000000431324: mov QWORD PTR [rsp],rdx
   0x0000000000431328: mov QWORD PTR [rsp+0x8],rcx
Stack Head (3 entries):
   readXmlDatasetMap         @ 0x0000000000431317: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_readXmlDatasetConfig  @ 0x0000000000431317: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x000000000040331e: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x00000000000003ec rbx=0x00007fffffffdcc0 rcx=0x0000000000000000 rdx=0x00007ffff775adc0 
rsi=0x0000000000497ac3 rdi=0x00007fffffffdcc0 rbp=0x00000000006a6270 rsp=0x00007fffffffdb10 
 r8=0x00007fffffffdb44  r9=0x0000000000000000 r10=0x00007ffff775bcc0 r11=0x0000000000000076 
r12=0x0000000000497ac3 r13=0x0000000000000000 r14=0x00007fffffffdb40 r15=0x00007fffffffdbc0 
rip=0x0000000000431317 efl=0x0000000000010246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Access violation near NULL on destination operand
   Short description: DestAvNearNull (15/22)
   Explanation: The target crashed on an access violation at an address matching the destination operand of the instruction. This likely indicates a write access violation, which means the attacker may control write address and/or value. However, it there is a chance it could be a NULL dereference.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000064,sig:06,src:000537,op:flip1,pos:3328
SHA1: 9f8261fce8a49bfc0246ea39b0e52c3c2a4090b4
Classification: EXPLOITABLE
Hash: 92b3ea7508e258a91b96a1bcaab290ce.fda47f6974e87d79b4a198b5b5d2204c
Command: ./trdp-xmlprint-test afl-out/crashes/id:000064,sig:06,src:000537,op:flip1,pos:3328
Faulting Frame:
   vos_memFree @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00007ffff75fbe86: xor edx,edx
   0x00007ffff75fbe88: mov rsi,r9
   0x00007ffff75fbe8b: mov edi,0x2
   0x00007ffff75fbe90: mov eax,0xe
   0x00007ffff75fbe95: syscall
=> 0x00007ffff75fbe97: mov rcx,QWORD PTR [rsp+0x108]
   0x00007ffff75fbe9f: xor rcx,QWORD PTR fs:0x28
   0x00007ffff75fbea8: mov eax,r8d
   0x00007ffff75fbeab: jne 0x7ffff75fbecc <__GI_raise+252>
   0x00007ffff75fbead: add rsp,0x118
Stack Head (9 entries):
   __GI_raise                @ 0x00007ffff75fbe97: in (BL)
   __GI_abort                @ 0x00007ffff75fd801: in (BL)
   __libc_message            @ 0x00007ffff7646897: in (BL)
   malloc_printerr           @ 0x00007ffff764d90a: in (BL)
   _int_free                 @ 0x00007ffff7654f60: in (BL)
   __GI___libc_free          @ 0x00007ffff7654f60: in (BL)
   vos_memFree               @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_freeTelegrams         @ 0x0000000000429924: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000405334: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000000 rbx=0x00007fffffffda80 rcx=0x00007ffff75fbe97 rdx=0x0000000000000000 
rsi=0x00007fffffffd810 rdi=0x0000000000000002 rbp=0x00007fffffffdb80 rsp=0x00007fffffffd810 
 r8=0x0000000000000000  r9=0x00007fffffffd810 r10=0x0000000000000008 r11=0x0000000000000246 
r12=0x00007fffffffda80 r13=0x0000000000001000 r14=0x0000000000000000 r15=0x0000000000000030 
rip=0x00007ffff75fbe97 efl=0x0000000000000246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Heap error
   Short description: HeapError (10/22)
   Explanation: The target's backtrace indicates that libc has detected a heap error or that the target was executing a heap function when it stopped. This could be due to heap corruption, passing a bad pointer to a heap function such as free(), etc. Since heap errors might include buffer overflows, use-after-free situations, etc. they are generally considered exploitable.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000065,sig:06,src:000538,op:flip1,pos:3328
SHA1: 2b1ac41b3d4504a2a7f013718a994b133a9f858f
Classification: EXPLOITABLE
Hash: 92b3ea7508e258a91b96a1bcaab290ce.fda47f6974e87d79b4a198b5b5d2204c
Command: ./trdp-xmlprint-test afl-out/crashes/id:000065,sig:06,src:000538,op:flip1,pos:3328
Faulting Frame:
   vos_memFree @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00007ffff75fbe86: xor edx,edx
   0x00007ffff75fbe88: mov rsi,r9
   0x00007ffff75fbe8b: mov edi,0x2
   0x00007ffff75fbe90: mov eax,0xe
   0x00007ffff75fbe95: syscall
=> 0x00007ffff75fbe97: mov rcx,QWORD PTR [rsp+0x108]
   0x00007ffff75fbe9f: xor rcx,QWORD PTR fs:0x28
   0x00007ffff75fbea8: mov eax,r8d
   0x00007ffff75fbeab: jne 0x7ffff75fbecc <__GI_raise+252>
   0x00007ffff75fbead: add rsp,0x118
Stack Head (9 entries):
   __GI_raise                @ 0x00007ffff75fbe97: in (BL)
   __GI_abort                @ 0x00007ffff75fd801: in (BL)
   __libc_message            @ 0x00007ffff7646897: in (BL)
   malloc_printerr           @ 0x00007ffff764d90a: in (BL)
   _int_free                 @ 0x00007ffff7654f60: in (BL)
   __GI___libc_free          @ 0x00007ffff7654f60: in (BL)
   vos_memFree               @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_freeTelegrams         @ 0x0000000000429924: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000405334: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000000 rbx=0x00007fffffffda80 rcx=0x00007ffff75fbe97 rdx=0x0000000000000000 
rsi=0x00007fffffffd810 rdi=0x0000000000000002 rbp=0x00007fffffffdb80 rsp=0x00007fffffffd810 
 r8=0x0000000000000000  r9=0x00007fffffffd810 r10=0x0000000000000008 r11=0x0000000000000246 
r12=0x00007fffffffda80 r13=0x0000000000001000 r14=0x0000000000000000 r15=0x0000000000000030 
rip=0x00007ffff75fbe97 efl=0x0000000000000246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Heap error
   Short description: HeapError (10/22)
   Explanation: The target's backtrace indicates that libc has detected a heap error or that the target was executing a heap function when it stopped. This could be due to heap corruption, passing a bad pointer to a heap function such as free(), etc. Since heap errors might include buffer overflows, use-after-free situations, etc. they are generally considered exploitable.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000066,sig:11,src:000540,op:flip1,pos:563
SHA1: 4fb7d8b5ce26882b9281cfab85d7930a52fb8082
Classification: PROBABLY_EXPLOITABLE
Hash: 31bcadb15f57445cd48f3071eee12c57.31bcadb15f57445cd48f3071eee12c57
Command: ./trdp-xmlprint-test afl-out/crashes/id:000066,sig:11,src:000540,op:flip1,pos:563
Faulting Frame:
   readXmlDatasetMap @ 0x0000000000431317: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00000000004312fc: mov rdx,QWORD PTR [rsp]
   0x0000000000431300: lea rsp,[rsp+0x98]
   0x0000000000431308: mov eax,DWORD PTR [rsp+0xb0]
   0x000000000043130f: mov rcx,QWORD PTR [rsp+0x10]
   0x0000000000431314: mov rcx,QWORD PTR [rcx]
=> 0x0000000000431317: mov DWORD PTR [rcx+r13*8],eax
   0x000000000043131b: nop
   0x000000000043131c: lea rsp,[rsp-0x98]
   0x0000000000431324: mov QWORD PTR [rsp],rdx
   0x0000000000431328: mov QWORD PTR [rsp+0x8],rcx
Stack Head (3 entries):
   readXmlDatasetMap         @ 0x0000000000431317: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_readXmlDatasetConfig  @ 0x0000000000431317: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x000000000040331e: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x00000000000003ec rbx=0x00007fffffffdcb0 rcx=0x0000000000000000 rdx=0x00007ffff775adc0 
rsi=0x0000000000497ac3 rdi=0x00007fffffffdcb0 rbp=0x00000000006a6270 rsp=0x00007fffffffdb00 
 r8=0x00007fffffffdb34  r9=0x0000000000000000 r10=0x00007ffff775bcc0 r11=0x0000000000000076 
r12=0x0000000000497ac3 r13=0x0000000000000000 r14=0x00007fffffffdb30 r15=0x00007fffffffdbb0 
rip=0x0000000000431317 efl=0x0000000000010246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Access violation near NULL on destination operand
   Short description: DestAvNearNull (15/22)
   Explanation: The target crashed on an access violation at an address matching the destination operand of the instruction. This likely indicates a write access violation, which means the attacker may control write address and/or value. However, it there is a chance it could be a NULL dereference.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000067,sig:06,src:000541,op:flip1,pos:3328
SHA1: d115dad5f2dce338691861c0b6a7bc795943cda7
Classification: EXPLOITABLE
Hash: 92b3ea7508e258a91b96a1bcaab290ce.fda47f6974e87d79b4a198b5b5d2204c
Command: ./trdp-xmlprint-test afl-out/crashes/id:000067,sig:06,src:000541,op:flip1,pos:3328
Faulting Frame:
   vos_memFree @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00007ffff75fbe86: xor edx,edx
   0x00007ffff75fbe88: mov rsi,r9
   0x00007ffff75fbe8b: mov edi,0x2
   0x00007ffff75fbe90: mov eax,0xe
   0x00007ffff75fbe95: syscall
=> 0x00007ffff75fbe97: mov rcx,QWORD PTR [rsp+0x108]
   0x00007ffff75fbe9f: xor rcx,QWORD PTR fs:0x28
   0x00007ffff75fbea8: mov eax,r8d
   0x00007ffff75fbeab: jne 0x7ffff75fbecc <__GI_raise+252>
   0x00007ffff75fbead: add rsp,0x118
Stack Head (9 entries):
   __GI_raise                @ 0x00007ffff75fbe97: in (BL)
   __GI_abort                @ 0x00007ffff75fd801: in (BL)
   __libc_message            @ 0x00007ffff7646897: in (BL)
   malloc_printerr           @ 0x00007ffff764d90a: in (BL)
   _int_free                 @ 0x00007ffff7654f60: in (BL)
   __GI___libc_free          @ 0x00007ffff7654f60: in (BL)
   vos_memFree               @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_freeTelegrams         @ 0x0000000000429924: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000405334: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000000 rbx=0x00007fffffffda80 rcx=0x00007ffff75fbe97 rdx=0x0000000000000000 
rsi=0x00007fffffffd810 rdi=0x0000000000000002 rbp=0x00007fffffffdb80 rsp=0x00007fffffffd810 
 r8=0x0000000000000000  r9=0x00007fffffffd810 r10=0x0000000000000008 r11=0x0000000000000246 
r12=0x00007fffffffda80 r13=0x0000000000001000 r14=0x0000000000000000 r15=0x0000000000000030 
rip=0x00007ffff75fbe97 efl=0x0000000000000246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Heap error
   Short description: HeapError (10/22)
   Explanation: The target's backtrace indicates that libc has detected a heap error or that the target was executing a heap function when it stopped. This could be due to heap corruption, passing a bad pointer to a heap function such as free(), etc. Since heap errors might include buffer overflows, use-after-free situations, etc. they are generally considered exploitable.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000068,sig:06,src:000543,op:flip1,pos:3328
SHA1: 6c08dd2f33e51c1e5ac67330fd2c24bca76dd51a
Classification: EXPLOITABLE
Hash: 92b3ea7508e258a91b96a1bcaab290ce.fda47f6974e87d79b4a198b5b5d2204c
Command: ./trdp-xmlprint-test afl-out/crashes/id:000068,sig:06,src:000543,op:flip1,pos:3328
Faulting Frame:
   vos_memFree @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00007ffff75fbe86: xor edx,edx
   0x00007ffff75fbe88: mov rsi,r9
   0x00007ffff75fbe8b: mov edi,0x2
   0x00007ffff75fbe90: mov eax,0xe
   0x00007ffff75fbe95: syscall
=> 0x00007ffff75fbe97: mov rcx,QWORD PTR [rsp+0x108]
   0x00007ffff75fbe9f: xor rcx,QWORD PTR fs:0x28
   0x00007ffff75fbea8: mov eax,r8d
   0x00007ffff75fbeab: jne 0x7ffff75fbecc <__GI_raise+252>
   0x00007ffff75fbead: add rsp,0x118
Stack Head (9 entries):
   __GI_raise                @ 0x00007ffff75fbe97: in (BL)
   __GI_abort                @ 0x00007ffff75fd801: in (BL)
   __libc_message            @ 0x00007ffff7646897: in (BL)
   malloc_printerr           @ 0x00007ffff764d90a: in (BL)
   _int_free                 @ 0x00007ffff7654f60: in (BL)
   __GI___libc_free          @ 0x00007ffff7654f60: in (BL)
   vos_memFree               @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_freeTelegrams         @ 0x0000000000429924: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000405334: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000000 rbx=0x00007fffffffda80 rcx=0x00007ffff75fbe97 rdx=0x0000000000000000 
rsi=0x00007fffffffd810 rdi=0x0000000000000002 rbp=0x00007fffffffdb80 rsp=0x00007fffffffd810 
 r8=0x0000000000000000  r9=0x00007fffffffd810 r10=0x0000000000000008 r11=0x0000000000000246 
r12=0x00007fffffffda80 r13=0x0000000000001000 r14=0x0000000000000000 r15=0x0000000000000030 
rip=0x00007ffff75fbe97 efl=0x0000000000000246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Heap error
   Short description: HeapError (10/22)
   Explanation: The target's backtrace indicates that libc has detected a heap error or that the target was executing a heap function when it stopped. This could be due to heap corruption, passing a bad pointer to a heap function such as free(), etc. Since heap errors might include buffer overflows, use-after-free situations, etc. they are generally considered exploitable.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000069,sig:06,src:000555,op:havoc,rep:16
SHA1: f569f04b50fa3ddaa3929f5747063a63cb616e16
Classification: EXPLOITABLE
Hash: 92b3ea7508e258a91b96a1bcaab290ce.fda47f6974e87d79b4a198b5b5d2204c
Command: ./trdp-xmlprint-test afl-out/crashes/id:000069,sig:06,src:000555,op:havoc,rep:16
Faulting Frame:
   vos_memFree @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00007ffff75fbe86: xor edx,edx
   0x00007ffff75fbe88: mov rsi,r9
   0x00007ffff75fbe8b: mov edi,0x2
   0x00007ffff75fbe90: mov eax,0xe
   0x00007ffff75fbe95: syscall
=> 0x00007ffff75fbe97: mov rcx,QWORD PTR [rsp+0x108]
   0x00007ffff75fbe9f: xor rcx,QWORD PTR fs:0x28
   0x00007ffff75fbea8: mov eax,r8d
   0x00007ffff75fbeab: jne 0x7ffff75fbecc <__GI_raise+252>
   0x00007ffff75fbead: add rsp,0x118
Stack Head (9 entries):
   __GI_raise                @ 0x00007ffff75fbe97: in (BL)
   __GI_abort                @ 0x00007ffff75fd801: in (BL)
   __libc_message            @ 0x00007ffff7646897: in (BL)
   malloc_printerr           @ 0x00007ffff764d90a: in (BL)
   _int_free                 @ 0x00007ffff7654f60: in (BL)
   __GI___libc_free          @ 0x00007ffff7654f60: in (BL)
   vos_memFree               @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_freeTelegrams         @ 0x0000000000429924: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000405334: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000000 rbx=0x00007fffffffda90 rcx=0x00007ffff75fbe97 rdx=0x0000000000000000 
rsi=0x00007fffffffd820 rdi=0x0000000000000002 rbp=0x00007fffffffdb90 rsp=0x00007fffffffd820 
 r8=0x0000000000000000  r9=0x00007fffffffd820 r10=0x0000000000000008 r11=0x0000000000000246 
r12=0x00007fffffffda90 r13=0x0000000000001000 r14=0x0000000000000000 r15=0x0000000000000030 
rip=0x00007ffff75fbe97 efl=0x0000000000000246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Heap error
   Short description: HeapError (10/22)
   Explanation: The target's backtrace indicates that libc has detected a heap error or that the target was executing a heap function when it stopped. This could be due to heap corruption, passing a bad pointer to a heap function such as free(), etc. Since heap errors might include buffer overflows, use-after-free situations, etc. they are generally considered exploitable.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000070,sig:11,src:000591,op:ext_AO,pos:2797
SHA1: 15217b78bcd2a6eb8ac32dbca5cadaedf497d6d4
Classification: PROBABLY_NOT_EXPLOITABLE
Hash: ecde3310e561e4688b85e93027499e13.ecde3310e561e4688b85e93027499e13
Command: ./trdp-xmlprint-test afl-out/crashes/id:000070,sig:11,src:000591,op:ext_AO,pos:2797
Faulting Frame:
   printIfCfg @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x0000000000402e1d: call 0x405f90 <__afl_maybe_log>
   0x0000000000402e22: mov rax,QWORD PTR [rsp+0x10]
   0x0000000000402e27: mov rcx,QWORD PTR [rsp+0x8]
   0x0000000000402e2c: mov rdx,QWORD PTR [rsp]
   0x0000000000402e30: lea rsp,[rsp+0x98]
=> 0x0000000000402e38: movzx esi,BYTE PTR [rbx+0x11]
   0x0000000000402e3c: xor eax,eax
   0x0000000000402e3e: mov rdi,r14
   0x0000000000402e41: mov rdx,rbx
   0x0000000000402e44: call 0x401ba0 <printf@plt>
Stack Head (2 entries):
   printIfCfg                @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000019 rbx=0x0000000000000000 rcx=0x0000000000000000 rdx=0x00007fffffffd810 
rsi=0x0000000000000000 rdi=0x00007fffffffd810 rbp=0x0000000000000001 rsp=0x00007fffffffdd70 
 r8=0x00007ffff7fd3740  r9=0x0000000000000000 r10=0x0000000000000000 r11=0x0000000000494d50 
r12=0x0000000000402010 r13=0x00007fffffffe050 r14=0x0000000000494da2 r15=0x0000000000494dc3 
rip=0x0000000000402e38 efl=0x0000000000010202  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Access violation near NULL on source operand
   Short description: SourceAvNearNull (16/22)
   Explanation: The target crashed on an access violation at an address matching the source operand of the current instruction. This likely indicates a read access violation, which may mean the application crashed on a simple NULL dereference to data structure that has no immediate effect on control of the processor.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000071,sig:06,src:000615,op:flip1,pos:1120
SHA1: 231b7ab7e99b8cb1ad82a99c6a259e3ebb2bb541
Classification: EXPLOITABLE
Hash: a1a4cca98ed2b3523fc6332abf9c4ab8.360fdb70966a9c28bd3d633736a4794d
Command: ./trdp-xmlprint-test afl-out/crashes/id:000071,sig:06,src:000615,op:flip1,pos:1120
Faulting Frame:
   vos_memAlloc @ 0x000000000041afab: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00007ffff75fbe86: xor edx,edx
   0x00007ffff75fbe88: mov rsi,r9
   0x00007ffff75fbe8b: mov edi,0x2
   0x00007ffff75fbe90: mov eax,0xe
   0x00007ffff75fbe95: syscall
=> 0x00007ffff75fbe97: mov rcx,QWORD PTR [rsp+0x108]
   0x00007ffff75fbe9f: xor rcx,QWORD PTR fs:0x28
   0x00007ffff75fbea8: mov eax,r8d
   0x00007ffff75fbeab: jne 0x7ffff75fbecc <__GI_raise+252>
   0x00007ffff75fbead: add rsp,0x118
Stack Head (10 entries):
   __GI_raise                @ 0x00007ffff75fbe97: in (BL)
   __GI_abort                @ 0x00007ffff75fd801: in (BL)
   __malloc_assert           @ 0x00007ffff7650a91: in (BL)
   sysmalloc                 @ 0x00007ffff7650a91: in (BL)
   _int_malloc               @ 0x00007ffff7651ff0: in (BL)
   __GI___libc_malloc        @ 0x00007ffff76540fc: in (BL)
   vos_memAlloc              @ 0x000000000041afab: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   readTelegramDef           @ 0x00000000004273a8: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_readXmlInterfaceConfi @ 0x00000000004273a8: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x000000000040570b: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000000 rbx=0x00007ffff79a8c40 rcx=0x00007ffff75fbe97 rdx=0x0000000000000000 
rsi=0x00007fffffffd3a0 rdi=0x0000000000000002 rbp=0x0000000000000020 rsp=0x00007fffffffd3a0 
 r8=0x0000000000000000  r9=0x00007fffffffd3a0 r10=0x0000000000000008 r11=0x0000000000000246 
r12=0x0000000000001000 r13=0x00000000006a76a0 r14=0x0000000000000000 r15=0x00007ffff79a8ca0 
rip=0x00007ffff75fbe97 efl=0x0000000000000246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Heap error
   Short description: HeapError (10/22)
   Explanation: The target's backtrace indicates that libc has detected a heap error or that the target was executing a heap function when it stopped. This could be due to heap corruption, passing a bad pointer to a heap function such as free(), etc. Since heap errors might include buffer overflows, use-after-free situations, etc. they are generally considered exploitable.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000072,sig:11,src:000629,op:ext_AO,pos:1241
SHA1: 35f2b4bb4b8c1f6b96797b10d1a07fc4bc2c2da9
Classification: PROBABLY_NOT_EXPLOITABLE
Hash: ecde3310e561e4688b85e93027499e13.ecde3310e561e4688b85e93027499e13
Command: ./trdp-xmlprint-test afl-out/crashes/id:000072,sig:11,src:000629,op:ext_AO,pos:1241
Faulting Frame:
   printIfCfg @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x0000000000402e1d: call 0x405f90 <__afl_maybe_log>
   0x0000000000402e22: mov rax,QWORD PTR [rsp+0x10]
   0x0000000000402e27: mov rcx,QWORD PTR [rsp+0x8]
   0x0000000000402e2c: mov rdx,QWORD PTR [rsp]
   0x0000000000402e30: lea rsp,[rsp+0x98]
=> 0x0000000000402e38: movzx esi,BYTE PTR [rbx+0x11]
   0x0000000000402e3c: xor eax,eax
   0x0000000000402e3e: mov rdi,r14
   0x0000000000402e41: mov rdx,rbx
   0x0000000000402e44: call 0x401ba0 <printf@plt>
Stack Head (2 entries):
   printIfCfg                @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000019 rbx=0x0000000000000000 rcx=0x0000000000000000 rdx=0x00007fffffffd810 
rsi=0x0000000000000000 rdi=0x00007fffffffd810 rbp=0x0000000000000001 rsp=0x00007fffffffdd70 
 r8=0x00007ffff7fd3740  r9=0x0000000000000000 r10=0x0000000000000000 r11=0x0000000000494d50 
r12=0x0000000000402010 r13=0x00007fffffffe050 r14=0x0000000000494da2 r15=0x0000000000494dc3 
rip=0x0000000000402e38 efl=0x0000000000010202  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Access violation near NULL on source operand
   Short description: SourceAvNearNull (16/22)
   Explanation: The target crashed on an access violation at an address matching the source operand of the current instruction. This likely indicates a read access violation, which may mean the application crashed on a simple NULL dereference to data structure that has no immediate effect on control of the processor.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000073,sig:11,src:000630,op:ext_AO,pos:1241
SHA1: ea7c6faaee5cdc8f70c8f726c6f2d1c667ca78d6
Classification: PROBABLY_NOT_EXPLOITABLE
Hash: ecde3310e561e4688b85e93027499e13.ecde3310e561e4688b85e93027499e13
Command: ./trdp-xmlprint-test afl-out/crashes/id:000073,sig:11,src:000630,op:ext_AO,pos:1241
Faulting Frame:
   printIfCfg @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x0000000000402e1d: call 0x405f90 <__afl_maybe_log>
   0x0000000000402e22: mov rax,QWORD PTR [rsp+0x10]
   0x0000000000402e27: mov rcx,QWORD PTR [rsp+0x8]
   0x0000000000402e2c: mov rdx,QWORD PTR [rsp]
   0x0000000000402e30: lea rsp,[rsp+0x98]
=> 0x0000000000402e38: movzx esi,BYTE PTR [rbx+0x11]
   0x0000000000402e3c: xor eax,eax
   0x0000000000402e3e: mov rdi,r14
   0x0000000000402e41: mov rdx,rbx
   0x0000000000402e44: call 0x401ba0 <printf@plt>
Stack Head (2 entries):
   printIfCfg                @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000019 rbx=0x0000000000000000 rcx=0x0000000000000000 rdx=0x00007fffffffd810 
rsi=0x0000000000000000 rdi=0x00007fffffffd810 rbp=0x0000000000000001 rsp=0x00007fffffffdd70 
 r8=0x00007ffff7fd3740  r9=0x0000000000000000 r10=0x0000000000000000 r11=0x0000000000494d50 
r12=0x0000000000402010 r13=0x00007fffffffe050 r14=0x0000000000494da2 r15=0x0000000000494dc3 
rip=0x0000000000402e38 efl=0x0000000000010202  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Access violation near NULL on source operand
   Short description: SourceAvNearNull (16/22)
   Explanation: The target crashed on an access violation at an address matching the source operand of the current instruction. This likely indicates a read access violation, which may mean the application crashed on a simple NULL dereference to data structure that has no immediate effect on control of the processor.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000074,sig:11,src:000631,op:ext_AO,pos:1241
SHA1: c4c1b12a0a58ae2f043699bf7f5813c2642542ac
Classification: PROBABLY_NOT_EXPLOITABLE
Hash: ecde3310e561e4688b85e93027499e13.ecde3310e561e4688b85e93027499e13
Command: ./trdp-xmlprint-test afl-out/crashes/id:000074,sig:11,src:000631,op:ext_AO,pos:1241
Faulting Frame:
   printIfCfg @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x0000000000402e1d: call 0x405f90 <__afl_maybe_log>
   0x0000000000402e22: mov rax,QWORD PTR [rsp+0x10]
   0x0000000000402e27: mov rcx,QWORD PTR [rsp+0x8]
   0x0000000000402e2c: mov rdx,QWORD PTR [rsp]
   0x0000000000402e30: lea rsp,[rsp+0x98]
=> 0x0000000000402e38: movzx esi,BYTE PTR [rbx+0x11]
   0x0000000000402e3c: xor eax,eax
   0x0000000000402e3e: mov rdi,r14
   0x0000000000402e41: mov rdx,rbx
   0x0000000000402e44: call 0x401ba0 <printf@plt>
Stack Head (2 entries):
   printIfCfg                @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000019 rbx=0x0000000000000000 rcx=0x0000000000000000 rdx=0x00007fffffffd810 
rsi=0x0000000000000000 rdi=0x00007fffffffd810 rbp=0x0000000000000001 rsp=0x00007fffffffdd70 
 r8=0x00007ffff7fd3740  r9=0x0000000000000000 r10=0x0000000000000000 r11=0x0000000000494d50 
r12=0x0000000000402010 r13=0x00007fffffffe050 r14=0x0000000000494da2 r15=0x0000000000494dc3 
rip=0x0000000000402e38 efl=0x0000000000010202  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Access violation near NULL on source operand
   Short description: SourceAvNearNull (16/22)
   Explanation: The target crashed on an access violation at an address matching the source operand of the current instruction. This likely indicates a read access violation, which may mean the application crashed on a simple NULL dereference to data structure that has no immediate effect on control of the processor.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000075,sig:11,src:000632,op:ext_AO,pos:1241
SHA1: 03793f85a64293658dd6fab3be59ce800b9e8ae6
Classification: PROBABLY_NOT_EXPLOITABLE
Hash: ecde3310e561e4688b85e93027499e13.ecde3310e561e4688b85e93027499e13
Command: ./trdp-xmlprint-test afl-out/crashes/id:000075,sig:11,src:000632,op:ext_AO,pos:1241
Faulting Frame:
   printIfCfg @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x0000000000402e1d: call 0x405f90 <__afl_maybe_log>
   0x0000000000402e22: mov rax,QWORD PTR [rsp+0x10]
   0x0000000000402e27: mov rcx,QWORD PTR [rsp+0x8]
   0x0000000000402e2c: mov rdx,QWORD PTR [rsp]
   0x0000000000402e30: lea rsp,[rsp+0x98]
=> 0x0000000000402e38: movzx esi,BYTE PTR [rbx+0x11]
   0x0000000000402e3c: xor eax,eax
   0x0000000000402e3e: mov rdi,r14
   0x0000000000402e41: mov rdx,rbx
   0x0000000000402e44: call 0x401ba0 <printf@plt>
Stack Head (2 entries):
   printIfCfg                @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000402e38: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000019 rbx=0x0000000000000000 rcx=0x0000000000000000 rdx=0x00007fffffffd810 
rsi=0x0000000000000000 rdi=0x00007fffffffd810 rbp=0x0000000000000001 rsp=0x00007fffffffdd70 
 r8=0x00007ffff7fd3740  r9=0x0000000000000000 r10=0x0000000000000000 r11=0x0000000000494d50 
r12=0x0000000000402010 r13=0x00007fffffffe050 r14=0x0000000000494da2 r15=0x0000000000494dc3 
rip=0x0000000000402e38 efl=0x0000000000010202  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Access violation near NULL on source operand
   Short description: SourceAvNearNull (16/22)
   Explanation: The target crashed on an access violation at an address matching the source operand of the current instruction. This likely indicates a read access violation, which may mean the application crashed on a simple NULL dereference to data structure that has no immediate effect on control of the processor.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000076,sig:06,src:000634,op:flip1,pos:2090
SHA1: 988a0865e6d86581626b4bf10c8ec242a73fa02c
Classification: EXPLOITABLE
Hash: 92b3ea7508e258a91b96a1bcaab290ce.fda47f6974e87d79b4a198b5b5d2204c
Command: ./trdp-xmlprint-test afl-out/crashes/id:000076,sig:06,src:000634,op:flip1,pos:2090
Faulting Frame:
   vos_memFree @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00007ffff75fbe86: xor edx,edx
   0x00007ffff75fbe88: mov rsi,r9
   0x00007ffff75fbe8b: mov edi,0x2
   0x00007ffff75fbe90: mov eax,0xe
   0x00007ffff75fbe95: syscall
=> 0x00007ffff75fbe97: mov rcx,QWORD PTR [rsp+0x108]
   0x00007ffff75fbe9f: xor rcx,QWORD PTR fs:0x28
   0x00007ffff75fbea8: mov eax,r8d
   0x00007ffff75fbeab: jne 0x7ffff75fbecc <__GI_raise+252>
   0x00007ffff75fbead: add rsp,0x118
Stack Head (9 entries):
   __GI_raise                @ 0x00007ffff75fbe97: in (BL)
   __GI_abort                @ 0x00007ffff75fd801: in (BL)
   __libc_message            @ 0x00007ffff7646897: in (BL)
   malloc_printerr           @ 0x00007ffff764d90a: in (BL)
   _int_free                 @ 0x00007ffff7654f60: in (BL)
   __GI___libc_free          @ 0x00007ffff7654f60: in (BL)
   vos_memFree               @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_freeTelegrams         @ 0x0000000000429924: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000405334: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000000 rbx=0x00007fffffffda80 rcx=0x00007ffff75fbe97 rdx=0x0000000000000000 
rsi=0x00007fffffffd810 rdi=0x0000000000000002 rbp=0x00007fffffffdb80 rsp=0x00007fffffffd810 
 r8=0x0000000000000000  r9=0x00007fffffffd810 r10=0x0000000000000008 r11=0x0000000000000246 
r12=0x00007fffffffda80 r13=0x0000000000001000 r14=0x0000000000000000 r15=0x0000000000000030 
rip=0x00007ffff75fbe97 efl=0x0000000000000246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Heap error
   Short description: HeapError (10/22)
   Explanation: The target's backtrace indicates that libc has detected a heap error or that the target was executing a heap function when it stopped. This could be due to heap corruption, passing a bad pointer to a heap function such as free(), etc. Since heap errors might include buffer overflows, use-after-free situations, etc. they are generally considered exploitable.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000077,sig:06,src:000634,op:flip1,pos:3062
SHA1: ca196d1b3d72b05c2fdcbbeadef228bafb995b18
Classification: EXPLOITABLE
Hash: 92b3ea7508e258a91b96a1bcaab290ce.fda47f6974e87d79b4a198b5b5d2204c
Command: ./trdp-xmlprint-test afl-out/crashes/id:000077,sig:06,src:000634,op:flip1,pos:3062
Faulting Frame:
   vos_memFree @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00007ffff75fbe86: xor edx,edx
   0x00007ffff75fbe88: mov rsi,r9
   0x00007ffff75fbe8b: mov edi,0x2
   0x00007ffff75fbe90: mov eax,0xe
   0x00007ffff75fbe95: syscall
=> 0x00007ffff75fbe97: mov rcx,QWORD PTR [rsp+0x108]
   0x00007ffff75fbe9f: xor rcx,QWORD PTR fs:0x28
   0x00007ffff75fbea8: mov eax,r8d
   0x00007ffff75fbeab: jne 0x7ffff75fbecc <__GI_raise+252>
   0x00007ffff75fbead: add rsp,0x118
Stack Head (9 entries):
   __GI_raise                @ 0x00007ffff75fbe97: in (BL)
   __GI_abort                @ 0x00007ffff75fd801: in (BL)
   __libc_message            @ 0x00007ffff7646897: in (BL)
   malloc_printerr           @ 0x00007ffff764d90a: in (BL)
   _int_free                 @ 0x00007ffff7654f60: in (BL)
   __GI___libc_free          @ 0x00007ffff7654f60: in (BL)
   vos_memFree               @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_freeTelegrams         @ 0x0000000000429924: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000405334: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000000 rbx=0x00007fffffffda80 rcx=0x00007ffff75fbe97 rdx=0x0000000000000000 
rsi=0x00007fffffffd810 rdi=0x0000000000000002 rbp=0x00007fffffffdb80 rsp=0x00007fffffffd810 
 r8=0x0000000000000000  r9=0x00007fffffffd810 r10=0x0000000000000008 r11=0x0000000000000246 
r12=0x00007fffffffda80 r13=0x0000000000001000 r14=0x0000000000000000 r15=0x0000000000000030 
rip=0x00007ffff75fbe97 efl=0x0000000000000246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Heap error
   Short description: HeapError (10/22)
   Explanation: The target's backtrace indicates that libc has detected a heap error or that the target was executing a heap function when it stopped. This could be due to heap corruption, passing a bad pointer to a heap function such as free(), etc. Since heap errors might include buffer overflows, use-after-free situations, etc. they are generally considered exploitable.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000078,sig:06,src:000634,op:flip1,pos:6302
SHA1: 6ac5c1c886ae781cfa4134a10df89b4ca6fb8ee4
Classification: EXPLOITABLE
Hash: 92b3ea7508e258a91b96a1bcaab290ce.fda47f6974e87d79b4a198b5b5d2204c
Command: ./trdp-xmlprint-test afl-out/crashes/id:000078,sig:06,src:000634,op:flip1,pos:6302
Faulting Frame:
   vos_memFree @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00007ffff75fbe86: xor edx,edx
   0x00007ffff75fbe88: mov rsi,r9
   0x00007ffff75fbe8b: mov edi,0x2
   0x00007ffff75fbe90: mov eax,0xe
   0x00007ffff75fbe95: syscall
=> 0x00007ffff75fbe97: mov rcx,QWORD PTR [rsp+0x108]
   0x00007ffff75fbe9f: xor rcx,QWORD PTR fs:0x28
   0x00007ffff75fbea8: mov eax,r8d
   0x00007ffff75fbeab: jne 0x7ffff75fbecc <__GI_raise+252>
   0x00007ffff75fbead: add rsp,0x118
Stack Head (9 entries):
   __GI_raise                @ 0x00007ffff75fbe97: in (BL)
   __GI_abort                @ 0x00007ffff75fd801: in (BL)
   __libc_message            @ 0x00007ffff7646897: in (BL)
   malloc_printerr           @ 0x00007ffff764d90a: in (BL)
   _int_free                 @ 0x00007ffff7654f60: in (BL)
   __GI___libc_free          @ 0x00007ffff7654f60: in (BL)
   vos_memFree               @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_freeTelegrams         @ 0x0000000000429924: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000405334: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000000 rbx=0x00007fffffffda80 rcx=0x00007ffff75fbe97 rdx=0x0000000000000000 
rsi=0x00007fffffffd810 rdi=0x0000000000000002 rbp=0x00007fffffffdb80 rsp=0x00007fffffffd810 
 r8=0x0000000000000000  r9=0x00007fffffffd810 r10=0x0000000000000008 r11=0x0000000000000246 
r12=0x00007fffffffda80 r13=0x0000000000001000 r14=0x0000000000000000 r15=0x0000000000000030 
rip=0x00007ffff75fbe97 efl=0x0000000000000246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Heap error
   Short description: HeapError (10/22)
   Explanation: The target's backtrace indicates that libc has detected a heap error or that the target was executing a heap function when it stopped. This could be due to heap corruption, passing a bad pointer to a heap function such as free(), etc. Since heap errors might include buffer overflows, use-after-free situations, etc. they are generally considered exploitable.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000079,sig:06,src:000635,op:flip1,pos:2090
SHA1: 71cfd160d33f046a0ae3b6dc8ed79371e083dd12
Classification: EXPLOITABLE
Hash: 92b3ea7508e258a91b96a1bcaab290ce.fda47f6974e87d79b4a198b5b5d2204c
Command: ./trdp-xmlprint-test afl-out/crashes/id:000079,sig:06,src:000635,op:flip1,pos:2090
Faulting Frame:
   vos_memFree @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00007ffff75fbe86: xor edx,edx
   0x00007ffff75fbe88: mov rsi,r9
   0x00007ffff75fbe8b: mov edi,0x2
   0x00007ffff75fbe90: mov eax,0xe
   0x00007ffff75fbe95: syscall
=> 0x00007ffff75fbe97: mov rcx,QWORD PTR [rsp+0x108]
   0x00007ffff75fbe9f: xor rcx,QWORD PTR fs:0x28
   0x00007ffff75fbea8: mov eax,r8d
   0x00007ffff75fbeab: jne 0x7ffff75fbecc <__GI_raise+252>
   0x00007ffff75fbead: add rsp,0x118
Stack Head (9 entries):
   __GI_raise                @ 0x00007ffff75fbe97: in (BL)
   __GI_abort                @ 0x00007ffff75fd801: in (BL)
   __libc_message            @ 0x00007ffff7646897: in (BL)
   malloc_printerr           @ 0x00007ffff764d90a: in (BL)
   _int_free                 @ 0x00007ffff7654f60: in (BL)
   __GI___libc_free          @ 0x00007ffff7654f60: in (BL)
   vos_memFree               @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_freeTelegrams         @ 0x0000000000429924: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000405334: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000000 rbx=0x00007fffffffda80 rcx=0x00007ffff75fbe97 rdx=0x0000000000000000 
rsi=0x00007fffffffd810 rdi=0x0000000000000002 rbp=0x00007fffffffdb80 rsp=0x00007fffffffd810 
 r8=0x0000000000000000  r9=0x00007fffffffd810 r10=0x0000000000000008 r11=0x0000000000000246 
r12=0x00007fffffffda80 r13=0x0000000000001000 r14=0x0000000000000000 r15=0x0000000000000030 
rip=0x00007ffff75fbe97 efl=0x0000000000000246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Heap error
   Short description: HeapError (10/22)
   Explanation: The target's backtrace indicates that libc has detected a heap error or that the target was executing a heap function when it stopped. This could be due to heap corruption, passing a bad pointer to a heap function such as free(), etc. Since heap errors might include buffer overflows, use-after-free situations, etc. they are generally considered exploitable.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000080,sig:06,src:000636,op:flip1,pos:2090
SHA1: 2a0e679db21c365f8415398834dbd365c52b320d
Classification: EXPLOITABLE
Hash: 92b3ea7508e258a91b96a1bcaab290ce.fda47f6974e87d79b4a198b5b5d2204c
Command: ./trdp-xmlprint-test afl-out/crashes/id:000080,sig:06,src:000636,op:flip1,pos:2090
Faulting Frame:
   vos_memFree @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00007ffff75fbe86: xor edx,edx
   0x00007ffff75fbe88: mov rsi,r9
   0x00007ffff75fbe8b: mov edi,0x2
   0x00007ffff75fbe90: mov eax,0xe
   0x00007ffff75fbe95: syscall
=> 0x00007ffff75fbe97: mov rcx,QWORD PTR [rsp+0x108]
   0x00007ffff75fbe9f: xor rcx,QWORD PTR fs:0x28
   0x00007ffff75fbea8: mov eax,r8d
   0x00007ffff75fbeab: jne 0x7ffff75fbecc <__GI_raise+252>
   0x00007ffff75fbead: add rsp,0x118
Stack Head (9 entries):
   __GI_raise                @ 0x00007ffff75fbe97: in (BL)
   __GI_abort                @ 0x00007ffff75fd801: in (BL)
   __libc_message            @ 0x00007ffff7646897: in (BL)
   malloc_printerr           @ 0x00007ffff764d90a: in (BL)
   _int_free                 @ 0x00007ffff7654f60: in (BL)
   __GI___libc_free          @ 0x00007ffff7654f60: in (BL)
   vos_memFree               @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_freeTelegrams         @ 0x0000000000429924: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000405334: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000000 rbx=0x00007fffffffda80 rcx=0x00007ffff75fbe97 rdx=0x0000000000000000 
rsi=0x00007fffffffd810 rdi=0x0000000000000002 rbp=0x00007fffffffdb80 rsp=0x00007fffffffd810 
 r8=0x0000000000000000  r9=0x00007fffffffd810 r10=0x0000000000000008 r11=0x0000000000000246 
r12=0x00007fffffffda80 r13=0x0000000000001000 r14=0x0000000000000000 r15=0x0000000000000030 
rip=0x00007ffff75fbe97 efl=0x0000000000000246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Heap error
   Short description: HeapError (10/22)
   Explanation: The target's backtrace indicates that libc has detected a heap error or that the target was executing a heap function when it stopped. This could be due to heap corruption, passing a bad pointer to a heap function such as free(), etc. Since heap errors might include buffer overflows, use-after-free situations, etc. they are generally considered exploitable.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000081,sig:06,src:000711,op:flip1,pos:2074
SHA1: 740f6e770cfe405de58b603f4bb20454f1fc1ade
Classification: EXPLOITABLE
Hash: 92b3ea7508e258a91b96a1bcaab290ce.fda47f6974e87d79b4a198b5b5d2204c
Command: ./trdp-xmlprint-test afl-out/crashes/id:000081,sig:06,src:000711,op:flip1,pos:2074
Faulting Frame:
   vos_memFree @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00007ffff75fbe86: xor edx,edx
   0x00007ffff75fbe88: mov rsi,r9
   0x00007ffff75fbe8b: mov edi,0x2
   0x00007ffff75fbe90: mov eax,0xe
   0x00007ffff75fbe95: syscall
=> 0x00007ffff75fbe97: mov rcx,QWORD PTR [rsp+0x108]
   0x00007ffff75fbe9f: xor rcx,QWORD PTR fs:0x28
   0x00007ffff75fbea8: mov eax,r8d
   0x00007ffff75fbeab: jne 0x7ffff75fbecc <__GI_raise+252>
   0x00007ffff75fbead: add rsp,0x118
Stack Head (9 entries):
   __GI_raise                @ 0x00007ffff75fbe97: in (BL)
   __GI_abort                @ 0x00007ffff75fd801: in (BL)
   __libc_message            @ 0x00007ffff7646897: in (BL)
   malloc_printerr           @ 0x00007ffff764d90a: in (BL)
   _int_free                 @ 0x00007ffff7654f60: in (BL)
   __GI___libc_free          @ 0x00007ffff7654f60: in (BL)
   vos_memFree               @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_freeTelegrams         @ 0x0000000000429924: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000405334: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000000 rbx=0x00007fffffffda80 rcx=0x00007ffff75fbe97 rdx=0x0000000000000000 
rsi=0x00007fffffffd810 rdi=0x0000000000000002 rbp=0x00007fffffffdb80 rsp=0x00007fffffffd810 
 r8=0x0000000000000000  r9=0x00007fffffffd810 r10=0x0000000000000008 r11=0x0000000000000246 
r12=0x00007fffffffda80 r13=0x0000000000001000 r14=0x0000000000000000 r15=0x0000000000000030 
rip=0x00007ffff75fbe97 efl=0x0000000000000246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Heap error
   Short description: HeapError (10/22)
   Explanation: The target's backtrace indicates that libc has detected a heap error or that the target was executing a heap function when it stopped. This could be due to heap corruption, passing a bad pointer to a heap function such as free(), etc. Since heap errors might include buffer overflows, use-after-free situations, etc. they are generally considered exploitable.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000082,sig:06,src:000711,op:flip1,pos:8878
SHA1: c40f16f3bd300111b38ae70545e74373de174334
Classification: EXPLOITABLE
Hash: 92b3ea7508e258a91b96a1bcaab290ce.fda47f6974e87d79b4a198b5b5d2204c
Command: ./trdp-xmlprint-test afl-out/crashes/id:000082,sig:06,src:000711,op:flip1,pos:8878
Faulting Frame:
   vos_memFree @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00007ffff75fbe86: xor edx,edx
   0x00007ffff75fbe88: mov rsi,r9
   0x00007ffff75fbe8b: mov edi,0x2
   0x00007ffff75fbe90: mov eax,0xe
   0x00007ffff75fbe95: syscall
=> 0x00007ffff75fbe97: mov rcx,QWORD PTR [rsp+0x108]
   0x00007ffff75fbe9f: xor rcx,QWORD PTR fs:0x28
   0x00007ffff75fbea8: mov eax,r8d
   0x00007ffff75fbeab: jne 0x7ffff75fbecc <__GI_raise+252>
   0x00007ffff75fbead: add rsp,0x118
Stack Head (9 entries):
   __GI_raise                @ 0x00007ffff75fbe97: in (BL)
   __GI_abort                @ 0x00007ffff75fd801: in (BL)
   __libc_message            @ 0x00007ffff7646897: in (BL)
   malloc_printerr           @ 0x00007ffff764d90a: in (BL)
   _int_free                 @ 0x00007ffff7654f60: in (BL)
   __GI___libc_free          @ 0x00007ffff7654f60: in (BL)
   vos_memFree               @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_freeTelegrams         @ 0x0000000000429924: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000405334: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000000 rbx=0x00007fffffffda80 rcx=0x00007ffff75fbe97 rdx=0x0000000000000000 
rsi=0x00007fffffffd810 rdi=0x0000000000000002 rbp=0x00007fffffffdb80 rsp=0x00007fffffffd810 
 r8=0x0000000000000000  r9=0x00007fffffffd810 r10=0x0000000000000008 r11=0x0000000000000246 
r12=0x00007fffffffda80 r13=0x0000000000001000 r14=0x0000000000000000 r15=0x0000000000000030 
rip=0x00007ffff75fbe97 efl=0x0000000000000246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Heap error
   Short description: HeapError (10/22)
   Explanation: The target's backtrace indicates that libc has detected a heap error or that the target was executing a heap function when it stopped. This could be due to heap corruption, passing a bad pointer to a heap function such as free(), etc. Since heap errors might include buffer overflows, use-after-free situations, etc. they are generally considered exploitable.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000083,sig:06,src:000711,op:flip1,pos:10174
SHA1: 11a82622382b60296aa0156eb7b0ce2e95911fd2
Classification: EXPLOITABLE
Hash: 92b3ea7508e258a91b96a1bcaab290ce.fda47f6974e87d79b4a198b5b5d2204c
Command: ./trdp-xmlprint-test afl-out/crashes/id:000083,sig:06,src:000711,op:flip1,pos:10174
Faulting Frame:
   vos_memFree @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00007ffff75fbe86: xor edx,edx
   0x00007ffff75fbe88: mov rsi,r9
   0x00007ffff75fbe8b: mov edi,0x2
   0x00007ffff75fbe90: mov eax,0xe
   0x00007ffff75fbe95: syscall
=> 0x00007ffff75fbe97: mov rcx,QWORD PTR [rsp+0x108]
   0x00007ffff75fbe9f: xor rcx,QWORD PTR fs:0x28
   0x00007ffff75fbea8: mov eax,r8d
   0x00007ffff75fbeab: jne 0x7ffff75fbecc <__GI_raise+252>
   0x00007ffff75fbead: add rsp,0x118
Stack Head (9 entries):
   __GI_raise                @ 0x00007ffff75fbe97: in (BL)
   __GI_abort                @ 0x00007ffff75fd801: in (BL)
   __libc_message            @ 0x00007ffff7646897: in (BL)
   malloc_printerr           @ 0x00007ffff764d90a: in (BL)
   _int_free                 @ 0x00007ffff7654f60: in (BL)
   __GI___libc_free          @ 0x00007ffff7654f60: in (BL)
   vos_memFree               @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_freeTelegrams         @ 0x0000000000429924: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000405334: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000000 rbx=0x00007fffffffda80 rcx=0x00007ffff75fbe97 rdx=0x0000000000000000 
rsi=0x00007fffffffd810 rdi=0x0000000000000002 rbp=0x00007fffffffdb80 rsp=0x00007fffffffd810 
 r8=0x0000000000000000  r9=0x00007fffffffd810 r10=0x0000000000000008 r11=0x0000000000000246 
r12=0x00007fffffffda80 r13=0x0000000000001000 r14=0x0000000000000000 r15=0x0000000000000030 
rip=0x00007ffff75fbe97 efl=0x0000000000000246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Heap error
   Short description: HeapError (10/22)
   Explanation: The target's backtrace indicates that libc has detected a heap error or that the target was executing a heap function when it stopped. This could be due to heap corruption, passing a bad pointer to a heap function such as free(), etc. Since heap errors might include buffer overflows, use-after-free situations, etc. they are generally considered exploitable.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000084,sig:06,src:000711,op:flip1,pos:11794
SHA1: dc2d71bbb63d931d9124d41a7f60fb019f363977
Classification: EXPLOITABLE
Hash: 92b3ea7508e258a91b96a1bcaab290ce.fda47f6974e87d79b4a198b5b5d2204c
Command: ./trdp-xmlprint-test afl-out/crashes/id:000084,sig:06,src:000711,op:flip1,pos:11794
Faulting Frame:
   vos_memFree @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00007ffff75fbe86: xor edx,edx
   0x00007ffff75fbe88: mov rsi,r9
   0x00007ffff75fbe8b: mov edi,0x2
   0x00007ffff75fbe90: mov eax,0xe
   0x00007ffff75fbe95: syscall
=> 0x00007ffff75fbe97: mov rcx,QWORD PTR [rsp+0x108]
   0x00007ffff75fbe9f: xor rcx,QWORD PTR fs:0x28
   0x00007ffff75fbea8: mov eax,r8d
   0x00007ffff75fbeab: jne 0x7ffff75fbecc <__GI_raise+252>
   0x00007ffff75fbead: add rsp,0x118
Stack Head (9 entries):
   __GI_raise                @ 0x00007ffff75fbe97: in (BL)
   __GI_abort                @ 0x00007ffff75fd801: in (BL)
   __libc_message            @ 0x00007ffff7646897: in (BL)
   malloc_printerr           @ 0x00007ffff764d90a: in (BL)
   _int_free                 @ 0x00007ffff7654f60: in (BL)
   __GI___libc_free          @ 0x00007ffff7654f60: in (BL)
   vos_memFree               @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_freeTelegrams         @ 0x0000000000429924: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000405334: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000000 rbx=0x00007fffffffda80 rcx=0x00007ffff75fbe97 rdx=0x0000000000000000 
rsi=0x00007fffffffd810 rdi=0x0000000000000002 rbp=0x00007fffffffdb80 rsp=0x00007fffffffd810 
 r8=0x0000000000000000  r9=0x00007fffffffd810 r10=0x0000000000000008 r11=0x0000000000000246 
r12=0x00007fffffffda80 r13=0x0000000000001000 r14=0x0000000000000000 r15=0x0000000000000030 
rip=0x00007ffff75fbe97 efl=0x0000000000000246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Heap error
   Short description: HeapError (10/22)
   Explanation: The target's backtrace indicates that libc has detected a heap error or that the target was executing a heap function when it stopped. This could be due to heap corruption, passing a bad pointer to a heap function such as free(), etc. Since heap errors might include buffer overflows, use-after-free situations, etc. they are generally considered exploitable.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000085,sig:06,src:000712,op:flip1,pos:2090
SHA1: fb247882416903e7cab8a6493ca396a7ed4575d2
Classification: EXPLOITABLE
Hash: 92b3ea7508e258a91b96a1bcaab290ce.fda47f6974e87d79b4a198b5b5d2204c
Command: ./trdp-xmlprint-test afl-out/crashes/id:000085,sig:06,src:000712,op:flip1,pos:2090
Faulting Frame:
   vos_memFree @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00007ffff75fbe86: xor edx,edx
   0x00007ffff75fbe88: mov rsi,r9
   0x00007ffff75fbe8b: mov edi,0x2
   0x00007ffff75fbe90: mov eax,0xe
   0x00007ffff75fbe95: syscall
=> 0x00007ffff75fbe97: mov rcx,QWORD PTR [rsp+0x108]
   0x00007ffff75fbe9f: xor rcx,QWORD PTR fs:0x28
   0x00007ffff75fbea8: mov eax,r8d
   0x00007ffff75fbeab: jne 0x7ffff75fbecc <__GI_raise+252>
   0x00007ffff75fbead: add rsp,0x118
Stack Head (9 entries):
   __GI_raise                @ 0x00007ffff75fbe97: in (BL)
   __GI_abort                @ 0x00007ffff75fd801: in (BL)
   __libc_message            @ 0x00007ffff7646897: in (BL)
   malloc_printerr           @ 0x00007ffff764d90a: in (BL)
   _int_free                 @ 0x00007ffff7654f60: in (BL)
   __GI___libc_free          @ 0x00007ffff7654f60: in (BL)
   vos_memFree               @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_freeTelegrams         @ 0x0000000000429924: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000405334: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000000 rbx=0x00007fffffffda80 rcx=0x00007ffff75fbe97 rdx=0x0000000000000000 
rsi=0x00007fffffffd810 rdi=0x0000000000000002 rbp=0x00007fffffffdb80 rsp=0x00007fffffffd810 
 r8=0x0000000000000000  r9=0x00007fffffffd810 r10=0x0000000000000008 r11=0x0000000000000246 
r12=0x00007fffffffda80 r13=0x0000000000001000 r14=0x0000000000000000 r15=0x0000000000000030 
rip=0x00007ffff75fbe97 efl=0x0000000000000246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Heap error
   Short description: HeapError (10/22)
   Explanation: The target's backtrace indicates that libc has detected a heap error or that the target was executing a heap function when it stopped. This could be due to heap corruption, passing a bad pointer to a heap function such as free(), etc. Since heap errors might include buffer overflows, use-after-free situations, etc. they are generally considered exploitable.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000086,sig:06,src:000738,op:flip1,pos:2081
SHA1: 459186a591ef0027f6c9ad7b3661a8ab4e07da68
Classification: EXPLOITABLE
Hash: 92b3ea7508e258a91b96a1bcaab290ce.fda47f6974e87d79b4a198b5b5d2204c
Command: ./trdp-xmlprint-test afl-out/crashes/id:000086,sig:06,src:000738,op:flip1,pos:2081
Faulting Frame:
   vos_memFree @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00007ffff75fbe86: xor edx,edx
   0x00007ffff75fbe88: mov rsi,r9
   0x00007ffff75fbe8b: mov edi,0x2
   0x00007ffff75fbe90: mov eax,0xe
   0x00007ffff75fbe95: syscall
=> 0x00007ffff75fbe97: mov rcx,QWORD PTR [rsp+0x108]
   0x00007ffff75fbe9f: xor rcx,QWORD PTR fs:0x28
   0x00007ffff75fbea8: mov eax,r8d
   0x00007ffff75fbeab: jne 0x7ffff75fbecc <__GI_raise+252>
   0x00007ffff75fbead: add rsp,0x118
Stack Head (9 entries):
   __GI_raise                @ 0x00007ffff75fbe97: in (BL)
   __GI_abort                @ 0x00007ffff75fd801: in (BL)
   __libc_message            @ 0x00007ffff7646897: in (BL)
   malloc_printerr           @ 0x00007ffff764d90a: in (BL)
   _int_free                 @ 0x00007ffff7654f60: in (BL)
   __GI___libc_free          @ 0x00007ffff7654f60: in (BL)
   vos_memFree               @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_freeTelegrams         @ 0x0000000000429924: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000405334: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000000 rbx=0x00007fffffffda80 rcx=0x00007ffff75fbe97 rdx=0x0000000000000000 
rsi=0x00007fffffffd810 rdi=0x0000000000000002 rbp=0x00007fffffffdb80 rsp=0x00007fffffffd810 
 r8=0x0000000000000000  r9=0x00007fffffffd810 r10=0x0000000000000008 r11=0x0000000000000246 
r12=0x00007fffffffda80 r13=0x0000000000001000 r14=0x0000000000000000 r15=0x0000000000000030 
rip=0x00007ffff75fbe97 efl=0x0000000000000246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Heap error
   Short description: HeapError (10/22)
   Explanation: The target's backtrace indicates that libc has detected a heap error or that the target was executing a heap function when it stopped. This could be due to heap corruption, passing a bad pointer to a heap function such as free(), etc. Since heap errors might include buffer overflows, use-after-free situations, etc. they are generally considered exploitable.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000087,sig:06,src:000743,op:flip1,pos:1949
SHA1: 6593028634d8aaedd549f120083195bb828a94a3
Classification: EXPLOITABLE
Hash: 35770cfd2cc8e1c65ba3bd4cdd43f918.6c0b4463213487c07c7c910906baf1ab
Command: ./trdp-xmlprint-test afl-out/crashes/id:000087,sig:06,src:000743,op:flip1,pos:1949
Faulting Frame:
   vos_memFree @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00007ffff75fbe86: xor edx,edx
   0x00007ffff75fbe88: mov rsi,r9
   0x00007ffff75fbe8b: mov edi,0x2
   0x00007ffff75fbe90: mov eax,0xe
   0x00007ffff75fbe95: syscall
=> 0x00007ffff75fbe97: mov rcx,QWORD PTR [rsp+0x108]
   0x00007ffff75fbe9f: xor rcx,QWORD PTR fs:0x28
   0x00007ffff75fbea8: mov eax,r8d
   0x00007ffff75fbeab: jne 0x7ffff75fbecc <__GI_raise+252>
   0x00007ffff75fbead: add rsp,0x118
Stack Head (9 entries):
   __GI_raise                @ 0x00007ffff75fbe97: in (BL)
   __GI_abort                @ 0x00007ffff75fd801: in (BL)
   __libc_message            @ 0x00007ffff7646897: in (BL)
   malloc_printerr           @ 0x00007ffff764d90a: in (BL)
   _int_free                 @ 0x00007ffff7654e1c: in (BL)
   __GI___libc_free          @ 0x00007ffff7654e1c: in (BL)
   vos_memFree               @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_freeTelegrams         @ 0x0000000000429cf4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000405334: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000000 rbx=0x00007fffffffda80 rcx=0x00007ffff75fbe97 rdx=0x0000000000000000 
rsi=0x00007fffffffd810 rdi=0x0000000000000002 rbp=0x00007fffffffdb80 rsp=0x00007fffffffd810 
 r8=0x0000000000000000  r9=0x00007fffffffd810 r10=0x0000000000000008 r11=0x0000000000000246 
r12=0x00007fffffffda80 r13=0x0000000000001000 r14=0x0000000000000000 r15=0x0000000000000030 
rip=0x00007ffff75fbe97 efl=0x0000000000000246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Heap error
   Short description: HeapError (10/22)
   Explanation: The target's backtrace indicates that libc has detected a heap error or that the target was executing a heap function when it stopped. This could be due to heap corruption, passing a bad pointer to a heap function such as free(), etc. Since heap errors might include buffer overflows, use-after-free situations, etc. they are generally considered exploitable.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000088,sig:06,src:000743,op:flip1,pos:2120
SHA1: a3e1fd6350feb860f3ea31b295586aa2d5112096
Classification: EXPLOITABLE
Hash: 8384257eb6a5a6077c8eb728300d6b2d.d81e5c5d5cf00f2541b8b7ec193dbb67
Command: ./trdp-xmlprint-test afl-out/crashes/id:000088,sig:06,src:000743,op:flip1,pos:2120
Faulting Frame:
   vos_memFree @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00007ffff75fbe86: xor edx,edx
   0x00007ffff75fbe88: mov rsi,r9
   0x00007ffff75fbe8b: mov edi,0x2
   0x00007ffff75fbe90: mov eax,0xe
   0x00007ffff75fbe95: syscall
=> 0x00007ffff75fbe97: mov rcx,QWORD PTR [rsp+0x108]
   0x00007ffff75fbe9f: xor rcx,QWORD PTR fs:0x28
   0x00007ffff75fbea8: mov eax,r8d
   0x00007ffff75fbeab: jne 0x7ffff75fbecc <__GI_raise+252>
   0x00007ffff75fbead: add rsp,0x118
Stack Head (9 entries):
   __GI_raise                @ 0x00007ffff75fbe97: in (BL)
   __GI_abort                @ 0x00007ffff75fd801: in (BL)
   __libc_message            @ 0x00007ffff7646897: in (BL)
   malloc_printerr           @ 0x00007ffff764d90a: in (BL)
   _int_free                 @ 0x00007ffff7654f60: in (BL)
   __GI___libc_free          @ 0x00007ffff7654f60: in (BL)
   vos_memFree               @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_freeTelegrams         @ 0x0000000000429be4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000405334: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000000 rbx=0x00007fffffffda80 rcx=0x00007ffff75fbe97 rdx=0x0000000000000000 
rsi=0x00007fffffffd810 rdi=0x0000000000000002 rbp=0x00007fffffffdb80 rsp=0x00007fffffffd810 
 r8=0x0000000000000000  r9=0x00007fffffffd810 r10=0x0000000000000008 r11=0x0000000000000246 
r12=0x00007fffffffda80 r13=0x0000000000001000 r14=0x0000000000000000 r15=0x0000000000000030 
rip=0x00007ffff75fbe97 efl=0x0000000000000246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Heap error
   Short description: HeapError (10/22)
   Explanation: The target's backtrace indicates that libc has detected a heap error or that the target was executing a heap function when it stopped. This could be due to heap corruption, passing a bad pointer to a heap function such as free(), etc. Since heap errors might include buffer overflows, use-after-free situations, etc. they are generally considered exploitable.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000089,sig:06,src:000743,op:flip1,pos:2752
SHA1: b55a1f07c4fbeec09076443799968d8c9a0eb1a6
Classification: EXPLOITABLE
Hash: a1a4cca98ed2b3523fc6332abf9c4ab8.360fdb70966a9c28bd3d633736a4794d
Command: ./trdp-xmlprint-test afl-out/crashes/id:000089,sig:06,src:000743,op:flip1,pos:2752
Faulting Frame:
   vos_memAlloc @ 0x000000000041afab: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00007ffff75fbe86: xor edx,edx
   0x00007ffff75fbe88: mov rsi,r9
   0x00007ffff75fbe8b: mov edi,0x2
   0x00007ffff75fbe90: mov eax,0xe
   0x00007ffff75fbe95: syscall
=> 0x00007ffff75fbe97: mov rcx,QWORD PTR [rsp+0x108]
   0x00007ffff75fbe9f: xor rcx,QWORD PTR fs:0x28
   0x00007ffff75fbea8: mov eax,r8d
   0x00007ffff75fbeab: jne 0x7ffff75fbecc <__GI_raise+252>
   0x00007ffff75fbead: add rsp,0x118
Stack Head (10 entries):
   __GI_raise                @ 0x00007ffff75fbe97: in (BL)
   __GI_abort                @ 0x00007ffff75fd801: in (BL)
   __malloc_assert           @ 0x00007ffff7650a91: in (BL)
   sysmalloc                 @ 0x00007ffff7650a91: in (BL)
   _int_malloc               @ 0x00007ffff7651ff0: in (BL)
   __GI___libc_malloc        @ 0x00007ffff76540fc: in (BL)
   vos_memAlloc              @ 0x000000000041afab: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   readTelegramDef           @ 0x00000000004273a8: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_readXmlInterfaceConfi @ 0x00000000004273a8: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x000000000040570b: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000000 rbx=0x00007ffff79a8c40 rcx=0x00007ffff75fbe97 rdx=0x0000000000000000 
rsi=0x00007fffffffd3a0 rdi=0x0000000000000002 rbp=0x0000000000000020 rsp=0x00007fffffffd3a0 
 r8=0x0000000000000000  r9=0x00007fffffffd3a0 r10=0x0000000000000008 r11=0x0000000000000246 
r12=0x0000000000001000 r13=0x00000000006a7a00 r14=0x0000000000000020 r15=0x00007ffff79a8ca0 
rip=0x00007ffff75fbe97 efl=0x0000000000000246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Heap error
   Short description: HeapError (10/22)
   Explanation: The target's backtrace indicates that libc has detected a heap error or that the target was executing a heap function when it stopped. This could be due to heap corruption, passing a bad pointer to a heap function such as free(), etc. Since heap errors might include buffer overflows, use-after-free situations, etc. they are generally considered exploitable.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000090,sig:06,src:000743,op:arith8,pos:1256,val:+11
SHA1: 6758fe465689b7832e204b065155414f5181861e
Classification: EXPLOITABLE
Hash: 4ef4067827297d38af9c1fb2ed6b3882.60b4ecb0e48b518589b64c99de221048
Command: ./trdp-xmlprint-test afl-out/crashes/id:000090,sig:06,src:000743,op:arith8,pos:1256,val:+11
Faulting Frame:
   vos_memFree @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00007ffff75fbe86: xor edx,edx
   0x00007ffff75fbe88: mov rsi,r9
   0x00007ffff75fbe8b: mov edi,0x2
   0x00007ffff75fbe90: mov eax,0xe
   0x00007ffff75fbe95: syscall
=> 0x00007ffff75fbe97: mov rcx,QWORD PTR [rsp+0x108]
   0x00007ffff75fbe9f: xor rcx,QWORD PTR fs:0x28
   0x00007ffff75fbea8: mov eax,r8d
   0x00007ffff75fbeab: jne 0x7ffff75fbecc <__GI_raise+252>
   0x00007ffff75fbead: add rsp,0x118
Stack Head (9 entries):
   __GI_raise                @ 0x00007ffff75fbe97: in (BL)
   __GI_abort                @ 0x00007ffff75fd801: in (BL)
   __libc_message            @ 0x00007ffff7646897: in (BL)
   malloc_printerr           @ 0x00007ffff764d90a: in (BL)
   _int_free                 @ 0x00007ffff7654e1c: in (BL)
   __GI___libc_free          @ 0x00007ffff7654e1c: in (BL)
   vos_memFree               @ 0x000000000041c1c4: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_freeTelegrams         @ 0x000000000042980d: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000405334: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000000 rbx=0x00007fffffffda80 rcx=0x00007ffff75fbe97 rdx=0x0000000000000000 
rsi=0x00007fffffffd810 rdi=0x0000000000000002 rbp=0x00007fffffffdb80 rsp=0x00007fffffffd810 
 r8=0x0000000000000000  r9=0x00007fffffffd810 r10=0x0000000000000008 r11=0x0000000000000246 
r12=0x00007fffffffda80 r13=0x0000000000001000 r14=0x0000000000000000 r15=0x0000000000000030 
rip=0x00007ffff75fbe97 efl=0x0000000000000246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Heap error
   Short description: HeapError (10/22)
   Explanation: The target's backtrace indicates that libc has detected a heap error or that the target was executing a heap function when it stopped. This could be due to heap corruption, passing a bad pointer to a heap function such as free(), etc. Since heap errors might include buffer overflows, use-after-free situations, etc. they are generally considered exploitable.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000091,sig:11,src:000773,op:flip1,pos:1484
SHA1: 8068c9c12ee548484f1fc6be51ad58c32417a1d2
Classification: PROBABLY_NOT_EXPLOITABLE
Hash: 03798a197a56a496b91e402ac8524bc3.03798a197a56a496b91e402ac8524bc3
Command: ./trdp-xmlprint-test afl-out/crashes/id:000091,sig:11,src:000773,op:flip1,pos:1484
Faulting Frame:
   printDatasets @ 0x0000000000403561: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x0000000000403547: mov rcx,QWORD PTR [rsp+0x8]
   0x000000000040354c: mov rdx,QWORD PTR [rsp]
   0x0000000000403550: lea rsp,[rsp+0x98]
   0x0000000000403558: mov rax,QWORD PTR [rsp+0x58]
   0x000000000040355d: mov r14,QWORD PTR [rax+r13*8]
=> 0x0000000000403561: mov esi,DWORD PTR [r14]
   0x0000000000403564: movzx edx,WORD PTR [r14+0x6]
   0x0000000000403569: xor eax,eax
   0x000000000040356b: lea rdi,[rip+0x919c7] # 0x494f39
   0x0000000000403572: call 0x401ba0 <printf@plt>
Stack Head (2 entries):
   printDatasets             @ 0x0000000000403561: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000403561: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x00000000006a75d0 rbx=0x0000000000494cf7 rcx=0x0000000000000000 rdx=0x00007fffffffd810 
rsi=0x0000000000000000 rdi=0x00007fffffffd810 rbp=0x0000000000494f67 rsp=0x00007fffffffdd70 
 r8=0x0000000000000000  r9=0x0000000000000000 r10=0x0000000000000000 r11=0x0000000000494f57 
r12=0x0000000000402010 r13=0x0000000000000002 r14=0x0000000000000000 r15=0x0000000000000000 
rip=0x0000000000403561 efl=0x0000000000010297  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Access violation near NULL on source operand
   Short description: SourceAvNearNull (16/22)
   Explanation: The target crashed on an access violation at an address matching the source operand of the current instruction. This likely indicates a read access violation, which may mean the application crashed on a simple NULL dereference to data structure that has no immediate effect on control of the processor.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000092,sig:11,src:000773,op:havoc,rep:32
SHA1: 5a6bcf592afb2aab079fae98469cec758efd8ecc
Classification: PROBABLY_NOT_EXPLOITABLE
Hash: 03798a197a56a496b91e402ac8524bc3.03798a197a56a496b91e402ac8524bc3
Command: ./trdp-xmlprint-test afl-out/crashes/id:000092,sig:11,src:000773,op:havoc,rep:32
Faulting Frame:
   printDatasets @ 0x0000000000403561: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x0000000000403547: mov rcx,QWORD PTR [rsp+0x8]
   0x000000000040354c: mov rdx,QWORD PTR [rsp]
   0x0000000000403550: lea rsp,[rsp+0x98]
   0x0000000000403558: mov rax,QWORD PTR [rsp+0x58]
   0x000000000040355d: mov r14,QWORD PTR [rax+r13*8]
=> 0x0000000000403561: mov esi,DWORD PTR [r14]
   0x0000000000403564: movzx edx,WORD PTR [r14+0x6]
   0x0000000000403569: xor eax,eax
   0x000000000040356b: lea rdi,[rip+0x919c7] # 0x494f39
   0x0000000000403572: call 0x401ba0 <printf@plt>
Stack Head (2 entries):
   printDatasets             @ 0x0000000000403561: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x0000000000403561: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x00000000006a75d0 rbx=0x0000000000494cf7 rcx=0x0000000000000000 rdx=0x00007fffffffd820 
rsi=0x0000000000000000 rdi=0x00007fffffffd820 rbp=0x0000000000494f67 rsp=0x00007fffffffdd80 
 r8=0x0000000000000000  r9=0x0000000000000000 r10=0x0000000000000000 r11=0x0000000000494f57 
r12=0x0000000000402010 r13=0x0000000000000001 r14=0x0000000000000000 r15=0x0000000000000000 
rip=0x0000000000403561 efl=0x0000000000010297  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Access violation near NULL on source operand
   Short description: SourceAvNearNull (16/22)
   Explanation: The target crashed on an access violation at an address matching the source operand of the current instruction. This likely indicates a read access violation, which may mean the application crashed on a simple NULL dereference to data structure that has no immediate effect on control of the processor.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000093,sig:06,src:000775,op:flip1,pos:2447
SHA1: f9f099d0ee6c08c14af274da86037fee06810326
Classification: EXPLOITABLE
Hash: 83b83baa4548c411fce054145445ea03.4d66ae41f52651f14021f8828811aede
Command: ./trdp-xmlprint-test afl-out/crashes/id:000093,sig:06,src:000775,op:flip1,pos:2447
Faulting Frame:
   vos_memAlloc @ 0x000000000041afab: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00007ffff75fbe86: xor edx,edx
   0x00007ffff75fbe88: mov rsi,r9
   0x00007ffff75fbe8b: mov edi,0x2
   0x00007ffff75fbe90: mov eax,0xe
   0x00007ffff75fbe95: syscall
=> 0x00007ffff75fbe97: mov rcx,QWORD PTR [rsp+0x108]
   0x00007ffff75fbe9f: xor rcx,QWORD PTR fs:0x28
   0x00007ffff75fbea8: mov eax,r8d
   0x00007ffff75fbeab: jne 0x7ffff75fbecc <__GI_raise+252>
   0x00007ffff75fbead: add rsp,0x118
Stack Head (10 entries):
   __GI_raise                @ 0x00007ffff75fbe97: in (BL)
   __GI_abort                @ 0x00007ffff75fd801: in (BL)
   __malloc_assert           @ 0x00007ffff7650a91: in (BL)
   sysmalloc                 @ 0x00007ffff7650a91: in (BL)
   _int_malloc               @ 0x00007ffff7651ff0: in (BL)
   __GI___libc_malloc        @ 0x00007ffff76540fc: in (BL)
   vos_memAlloc              @ 0x000000000041afab: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   readXmlDatasets           @ 0x0000000000432420: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_readXmlDatasetConfig  @ 0x0000000000432420: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x000000000040331e: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000000 rbx=0x00007ffff79a8c40 rcx=0x00007ffff75fbe97 rdx=0x0000000000000000 
rsi=0x00007fffffffd600 rdi=0x0000000000000002 rbp=0x0000000000000020 rsp=0x00007fffffffd600 
 r8=0x0000000000000000  r9=0x00007fffffffd600 r10=0x0000000000000008 r11=0x0000000000000246 
r12=0x0000000000001000 r13=0x00000000006a7750 r14=0x0000000000000000 r15=0x00007ffff79a8ca0 
rip=0x00007ffff75fbe97 efl=0x0000000000000246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Heap error
   Short description: HeapError (10/22)
   Explanation: The target's backtrace indicates that libc has detected a heap error or that the target was executing a heap function when it stopped. This could be due to heap corruption, passing a bad pointer to a heap function such as free(), etc. Since heap errors might include buffer overflows, use-after-free situations, etc. they are generally considered exploitable.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000094,sig:06,src:000775,op:ext_AO,pos:1670
SHA1: 75990ed7bb7113293d08586f3d8b654c68879e8a
Classification: EXPLOITABLE
Hash: 83b83baa4548c411fce054145445ea03.4d66ae41f52651f14021f8828811aede
Command: ./trdp-xmlprint-test afl-out/crashes/id:000094,sig:06,src:000775,op:ext_AO,pos:1670
Faulting Frame:
   vos_memAlloc @ 0x000000000041afab: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00007ffff75fbe86: xor edx,edx
   0x00007ffff75fbe88: mov rsi,r9
   0x00007ffff75fbe8b: mov edi,0x2
   0x00007ffff75fbe90: mov eax,0xe
   0x00007ffff75fbe95: syscall
=> 0x00007ffff75fbe97: mov rcx,QWORD PTR [rsp+0x108]
   0x00007ffff75fbe9f: xor rcx,QWORD PTR fs:0x28
   0x00007ffff75fbea8: mov eax,r8d
   0x00007ffff75fbeab: jne 0x7ffff75fbecc <__GI_raise+252>
   0x00007ffff75fbead: add rsp,0x118
Stack Head (10 entries):
   __GI_raise                @ 0x00007ffff75fbe97: in (BL)
   __GI_abort                @ 0x00007ffff75fd801: in (BL)
   __malloc_assert           @ 0x00007ffff7650a91: in (BL)
   sysmalloc                 @ 0x00007ffff7650a91: in (BL)
   _int_malloc               @ 0x00007ffff7651ff0: in (BL)
   __GI___libc_malloc        @ 0x00007ffff76540fc: in (BL)
   vos_memAlloc              @ 0x000000000041afab: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   readXmlDatasets           @ 0x0000000000432420: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_readXmlDatasetConfig  @ 0x0000000000432420: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x000000000040331e: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000000 rbx=0x00007ffff79a8c40 rcx=0x00007ffff75fbe97 rdx=0x0000000000000000 
rsi=0x00007fffffffd600 rdi=0x0000000000000002 rbp=0x0000000000000020 rsp=0x00007fffffffd600 
 r8=0x0000000000000000  r9=0x00007fffffffd600 r10=0x0000000000000008 r11=0x0000000000000246 
r12=0x0000000000001000 r13=0x00000000006a7750 r14=0x0000000000000000 r15=0x00007ffff79a8ca0 
rip=0x00007ffff75fbe97 efl=0x0000000000000246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Heap error
   Short description: HeapError (10/22)
   Explanation: The target's backtrace indicates that libc has detected a heap error or that the target was executing a heap function when it stopped. This could be due to heap corruption, passing a bad pointer to a heap function such as free(), etc. Since heap errors might include buffer overflows, use-after-free situations, etc. they are generally considered exploitable.
---END SUMMARY---
---CRASH SUMMARY---
Filename: afl-out/crashes/id:000095,sig:06,src:000775,op:havoc,rep:4
SHA1: 3760e0bd9624b837b481b18fa8a91e45f17e40d6
Classification: EXPLOITABLE
Hash: 83b83baa4548c411fce054145445ea03.4d66ae41f52651f14021f8828811aede
Command: ./trdp-xmlprint-test afl-out/crashes/id:000095,sig:06,src:000775,op:havoc,rep:4
Faulting Frame:
   vos_memAlloc @ 0x000000000041afab: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Disassembly:
   0x00007ffff75fbe86: xor edx,edx
   0x00007ffff75fbe88: mov rsi,r9
   0x00007ffff75fbe8b: mov edi,0x2
   0x00007ffff75fbe90: mov eax,0xe
   0x00007ffff75fbe95: syscall
=> 0x00007ffff75fbe97: mov rcx,QWORD PTR [rsp+0x108]
   0x00007ffff75fbe9f: xor rcx,QWORD PTR fs:0x28
   0x00007ffff75fbea8: mov eax,r8d
   0x00007ffff75fbeab: jne 0x7ffff75fbecc <__GI_raise+252>
   0x00007ffff75fbead: add rsp,0x118
Stack Head (10 entries):
   __GI_raise                @ 0x00007ffff75fbe97: in (BL)
   __GI_abort                @ 0x00007ffff75fd801: in (BL)
   __malloc_assert           @ 0x00007ffff7650a91: in (BL)
   sysmalloc                 @ 0x00007ffff7650a91: in (BL)
   _int_malloc               @ 0x00007ffff7651ff0: in (BL)
   __GI___libc_malloc        @ 0x00007ffff76540fc: in (BL)
   vos_memAlloc              @ 0x000000000041afab: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   readXmlDatasets           @ 0x0000000000432420: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   tau_readXmlDatasetConfig  @ 0x0000000000432420: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
   main                      @ 0x000000000040331e: in /home/timon/Schreibtisch/afl/trdp-xmlprint-test
Registers:
rax=0x0000000000000000 rbx=0x00007ffff79a8c40 rcx=0x00007ffff75fbe97 rdx=0x0000000000000000 
rsi=0x00007fffffffd610 rdi=0x0000000000000002 rbp=0x0000000000000020 rsp=0x00007fffffffd610 
 r8=0x0000000000000000  r9=0x00007fffffffd610 r10=0x0000000000000008 r11=0x0000000000000246 
r12=0x0000000000001000 r13=0x00000000006a77a0 r14=0x0000000000000000 r15=0x00007ffff79a8ca0 
rip=0x00007ffff75fbe97 efl=0x0000000000000246  cs=0x0000000000000033  ss=0x000000000000002b 
 ds=0x0000000000000000  es=0x0000000000000000  fs=0x0000000000000000  gs=0x0000000000000000 
Extra Data:
   Description: Heap error
   Short description: HeapError (10/22)
   Explanation: The target's backtrace indicates that libc has detected a heap error or that the target was executing a heap function when it stopped. This could be due to heap corruption, passing a bad pointer to a heap function such as free(), etc. Since heap errors might include buffer overflows, use-after-free situations, etc. they are generally considered exploitable.
---END SUMMARY---
