There is a global buffer overflow vulnerability. #2
Description
=================================================================
==4071==ERROR: AddressSanitizer: global-buffer-overflow on address 0x0000006b8e1f at pc 0x00000040f74c bp 0x7ffea01cbce0 sp 0x7ffea01cbcd0
READ of size 1 at 0x0000006b8e1f thread T0
#0 0x40f74b in is_first src/decl.c:45
#1 0x40f74b in specifier src/decl.c:627
#2 0x414486 in decl_global src/decl.c:1270
#3 0x414486 in main_42 src/decl.c:1418
#4 0x4032f5 in glue src/driver.c:209
#5 0x402793 in main src/driver.c:242
#6 0x7fe3eeda582f in __libc_start_main (/lib/x86_64-linux-gnu/libc.so.6+0x2082f)
#7 0x403108 in _start (/home/ubuntu/mfc_fuzz/zcc/zcc+0x403108)
0x0000006b8e1f is located 1 bytes to the left of global variable 'map_first' defined in 'src/decl.c:17:6' (0x6b8e20) of size 128
0x0000006b8e1f is located 31 bytes to the right of global variable 'g_tk2str' defined in 'src/decl.c:25:7' (0x6b8a00) of size 1024
SUMMARY: AddressSanitizer: global-buffer-overflow src/decl.c:45 is_first
Shadow bytes around the buggy address:
0x0000800cf170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0x0000800cf180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0x0000800cf190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0x0000800cf1a0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0x0000800cf1b0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
=>0x0000800cf1c0: f9 f9 f9[f9]00 00 00 00 00 00 00 00 00 00 00 00
0x0000800cf1d0: 00 00 00 00 f9 f9 f9 f9 04 f9 f9 f9 f9 f9 f9 f9
0x0000800cf1e0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0x0000800cf1f0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0x0000800cf200: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0x0000800cf210: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Shadow byte legend (one shadow byte represents 8 application bytes):
Addressable: 00
Partially addressable: 01 02 03 04 05 06 07
Heap left redzone: fa
Heap right redzone: fb
Freed heap region: fd
Stack left redzone: f1
Stack mid redzone: f2
Stack right redzone: f3
Stack partial redzone: f4
Stack after return: f5
Stack use after scope: f8
Global redzone: f9
Global init order: f6
Poisoned by user: f7
Container overflow: fc
Array cookie: ac
Intra object redzone: bb
ASan internal: fe
==4071==ABORTING