[FFmpeg-trac] #1498(avcodec:open): h264 crash 2

FFmpeg trac at avcodec.org
Sun Jul 1 20:02:17 CEST 2012


#1498: h264 crash 2
------------------------------------+-----------------------------------
             Reporter:  ami_stuff   |                    Owner:
                 Type:  defect      |                   Status:  open
             Priority:  important   |                Component:  avcodec
              Version:  git-master  |               Resolution:
             Keywords:  h264        |               Blocked By:
             Blocking:              |  Reproduced by developer:  1
Analyzed by developer:  0           |
------------------------------------+-----------------------------------

Comment (by cehoyos):

 I attached the 32bit valgrind output, the sample cannot be cut
 significantly.
 {{{
 ==12409== Invalid read of size 2
 ==12409==    at 0x871DE6E: ff_er_frame_end (error_resilience.c:441)
 ==12409==  Address 0x7CF8330 is 16 bytes inside a block of size 6,400
 free'd
 ==12409==    at 0x402243F: free (in
 /usr/lib/valgrind/x86-linux/vgpreload_memcheck.so)
 ==12409==    by 0x8812DE1: av_freep (mem.c:180)
 ==12409==
 ==12409== Invalid read of size 2
 ==12409==    at 0x871DE7D: ff_er_frame_end (error_resilience.c:442)
 ==12409==  Address 0x7CF8332 is 18 bytes inside a block of size 6,400
 free'd
 ==12409==    at 0x402243F: free (in
 /usr/lib/valgrind/x86-linux/vgpreload_memcheck.so)
 ==12409==    by 0x8812DE1: av_freep (mem.c:180)
 ==12409==
 ==12409== Invalid read of size 1
 ==12409==    at 0x871DE9A: ff_er_frame_end (error_resilience.c:443)
 ==12409==  Address 0x4A04140 is 0 bytes inside a block of size 420 free'd
 ==12409==    at 0x402243F: free (in
 /usr/lib/valgrind/x86-linux/vgpreload_memcheck.so)
 ==12409==    by 0x8812DE1: av_freep (mem.c:180)
 ==12409==
 ==12409== Invalid read of size 8
 ==12409==    at 0x8697C4A: ??? (h264_chromamc.asm:441)
 ==12409==  Address 0x5736CE0 is not stack'd, malloc'd or (recently) free'd
 ==12409==
 ==12409== Invalid read of size 8
 ==12409==    at 0x8697C35: ??? (h264_chromamc.asm:441)
 ==12409==  Address 0x5736D20 is not stack'd, malloc'd or (recently) free'd
 ==12409==
 ==12409== Invalid read of size 8
 ==12409==    at 0x8697C38: ??? (h264_chromamc.asm:441)
 ==12409==  Address 0x5736D60 is not stack'd, malloc'd or (recently) free'd
 ==12409==
 ==12409== Invalid read of size 8
 ==12409==    at 0x8697C47: ??? (h264_chromamc.asm:441)
 ==12409==  Address 0x5736DA0 is not stack'd, malloc'd or (recently) free'd
 ==12409==
 ==12409== Invalid read of size 8
 ==12409==    at 0x86745BC: put_h264_qpel16_mc00_sse2 (dsputil_mmx.c:464)
 ==12409==  Address 0x5736CC0 is 0 bytes after a block of size 86,944
 alloc'd
 ==12409==    at 0x4021A50: memalign (in
 /usr/lib/valgrind/x86-linux/vgpreload_memcheck.so)
 ==12409==    by 0x4021AAA: posix_memalign (in
 /usr/lib/valgrind/x86-linux/vgpreload_memcheck.so)
 ==12409==    by 0x8812FAF: av_malloc (mem.c:95)
 ==12409==
 ==12409== Invalid read of size 8
 ==12409==    at 0x86745AE: put_h264_qpel16_mc00_sse2 (dsputil_mmx.c:464)
 ==12409==  Address 0x5736D40 is not stack'd, malloc'd or (recently) free'd
 ==12409==
 ==12409== Invalid read of size 8
 ==12409==    at 0x86745B2: put_h264_qpel16_mc00_sse2 (dsputil_mmx.c:464)
 ==12409==  Address 0x5736DC0 is not stack'd, malloc'd or (recently) free'd
 ==12409==
 ==12409== Invalid read of size 8
 ==12409==    at 0x86745B7: put_h264_qpel16_mc00_sse2 (dsputil_mmx.c:464)
 ==12409==  Address 0x5736E40 is not stack'd, malloc'd or (recently) free'd
 }}}

-- 
Ticket URL: <https://ffmpeg.org/trac/ffmpeg/ticket/1498#comment:3>
FFmpeg <http://ffmpeg.org>
FFmpeg issue tracker


More information about the FFmpeg-trac mailing list