asan report in _rl_free_undo_list

[Grisha Levit]

echo . >/tmp/hist

cat >/tmp/irc <<EOF
set revert-all-at-newline on
"F" fetch-history
"R" non-incremental-reverse-search-history
"E" end-of-history
"K" kill-region
EOF

HISTFILE=/tmp/hist INPUTRC=/tmp/irc ./bash --norc -in <<<$'FR.\n.EK'

ERROR: AddressSanitizer: heap-use-after-free on address 0x0001062078d0
at pc 0x00010305dd24 bp 0x00016d3703d0 sp 0x00016d3703c8

READ of size 8 at 0x0001062078d0 thread T0
    #0 0x10305dd20 in _rl_free_undo_list undo.c:106
    #1 0x10305df0c in rl_free_undo_list undo.c:122
    #2 0x102f823b0 in readline_internal_teardown readline.c:512
    #3 0x102f81d1c in readline_internal readline.c:740
    #4 0x102f81ae8 in readline readline.c:387

0x0001062078d0 is located 0 bytes inside of 32-byte region
[0x0001062078d0,0x0001062078f0)
freed by thread T0 here:
    #0 0x10385ede4 in wrap_free+0x98
(libclang_rt.asan_osx_dynamic.dylib:arm64e+0x3ede4)
    #1 0x102e2507c in xfree xmalloc.c:144
    #2 0x10306023c in rl_do_undo undo.c:265
    #3 0x10308736c in _rl_revert_previous_lines misc.c:473
    #4 0x103087690 in _rl_revert_all_lines misc.c:503
    #5 0x102f82374 in readline_internal_teardown readline.c:507
    #6 0x102f81d1c in readline_internal readline.c:740
    #7 0x102f81ae8 in readline readline.c:387

previously allocated by thread T0 here:
    #0 0x10385eca8 in wrap_malloc+0x94
(libclang_rt.asan_osx_dynamic.dylib:arm64e+0x3eca8)
    #1 0x102e24f48 in xmalloc xmalloc.c:111
    #2 0x10305d80c in alloc_undo_entry undo.c:75
    #3 0x10305d6fc in rl_add_undo undo.c:92
    #4 0x1030724f0 in rl_insert_text text.c:113
    #5 0x103079978 in _rl_insert_char text.c:903
    #6 0x10307a760 in rl_insert text.c:955
    #7 0x102f85e00 in _rl_dispatch_subseq readline.c:922
    #8 0x102f83a04 in _rl_dispatch readline.c:866
    #9 0x102f83110 in readline_internal_char readline.c:680
    #10 0x102f8d9dc in readline_internal_charloop readline.c:727
    #11 0x102f81d0c in readline_internal readline.c:739
    #12 0x102f81ae8 in readline readline.c:387