[FFmpeg-devel] Bugreport: PAFF crashes ffplay, more info than older report, appendix
Thu May 3 14:47:16 CEST 2007
the pointer value of "buf" in draw_edges_mmx is exactly "wrap" larger
than the original value of picture->data when the buffer was
allocated -> array out of bounds.
This means a picture is allocated in utils.c,
avcodec_default_get_buffer() and some addresses are put to
when later draw_edges_mmx is called in MPV_frame_end() the address is
suprisingly "wrap" bytes larger (here 752 with the example material).
Why this is and why it happens only with PAFF is a mystery...
More information about the ffmpeg-devel