Comment 5 for bug 1574372

I am also having this problem on Ubuntu 16.04. I was not having this problem in 15.10 so maybe it's a regression. I'm attaching a test case that fails for me on Ubuntu 16.04 with sbsigntool 0.6-0ubuntu10, libssl1.0.0 1.0.2g-1ubuntu4.1.

It's truly random because successive invocations of sbsign with identical parameters may or may not crash. Obviously some undefined behavior. If it fails, I get this error:

warning: overwriting existing signature
Segmentation fault (core dumped)

The warning is in error, because there is NOT an existing signature. This random misidentification is probably part of the problem.