Description: libarchive is a multi-format archive and compression library. The complete ASan output of the issue: # bsdtar -t -f $FILE ==13144==ERROR: AddressSanitizer: heap-buffer-overflow on address 0x631000038800 at pc 0x7fb1c808f650 bp 0x7ffdd1b40990 sp 0x7ffdd1b40988 READ of size 1 at 0x631000038800 … Continue reading libarchive: heap-based buffer overflow in xml_data (archive_read_support_format_xar.c)