Linux TF2 server segfaults on map change after spawning a puppet bot

TF2 srcds v4294355
Sourcemod v1.8.0.6040
Metamod 1.10.7-git961

Reproduction steps:

1. Start/restart server normally with a startup map (no need for players to even join the server)
2. Enter in server console: sv_cheats 1; bot -name SomeBOT -class soldier; sv_cheats 0
3. Enter in server console: changelevel (some other map)
4. Crashes showing in console log: corrupted size vs. prev_size

Repeatability:

• Almost always (> 70% of the time via reproduction steps on my server)
• Crash does not happen without spawning the bot
• Crash does not happen without Sourcemod loaded
• Crash does not happen with only Metamod loaded

Time frame:

• Noticed this on a plugin of mine that spawns bots after the Jungle update. Debugged for weeks to find out the same crash can happen without running any plugins at all.

Crash dump: https://crash.limetech.org/a4w7wssvn6z6
Additional log file: debug.log

Plugins loaded:

• [None] (tested with empty plugins folder)

Extensions loaded:

• bintools.ext.so
• game.tf2.ext.2.tf2.so
• sdkhooks.ext.2.tf2.so
• sdktools.ext.2.tf2.so
• updater.ext.so
• webternet.ext.so