Without AddressSanitizer (ASan), the fuzzer cannot detect the bug even if it reached the bug.
afl-fuzz -i input -o output -- ./programBuild target program with AddressSanitizer instrumentation
AFL_USE_ASAN=1 afl-clang-lto -w program.c -o program_asan_instrumentedCatch the bug!
afl-fuzz -i input -o output -- ./program_asan_instrumented
Use AddressSanitizer with gcc or clang
gcc-10 -fsanitize=address -g program.c -o program
clang-14 -g -fsanitize=address -w program.c -o program