[FFmpeg-trac] #8184(undetermined:new): signed integer overflow in libavformat/swfenc.c

FFmpeg trac at avcodec.org
Fri Sep 20 13:23:03 EEST 2019


#8184: signed integer overflow in libavformat/swfenc.c
-------------------------------------+-------------------------------------
             Reporter:  Suhwan       |                     Type:  defect
               Status:  new          |                 Priority:  normal
            Component:               |                  Version:  git-
  undetermined                       |  master
             Keywords:  ubsan        |               Blocked By:
             Blocking:               |  Reproduced by developer:  0
Analyzed by developer:  0            |
-------------------------------------+-------------------------------------
 Summary of the bug:
 There's a signed integer overflow in libavformat/swfenc.c:259:25
 {{{
 libavformat/swfenc.c:259:25: runtime error: signed integer overflow:
 30000299 * 256 cannot be represented in type 'int'
 SUMMARY: UndefinedBehaviorSanitizer: undefined-behavior
 libavformat/swfenc.c:259:25 in
 }}}
 How to reproduce:
 {{{
 % ./ffmpeg_g -stream_loop 1 -y -i 320x240.ogg -loglevel 99 -map 0 -c:v:99
 g726le -c:v:18 adpcm_swf -disposition:s:19 roqvideo -disposition:s:21 v410
 -vframes 105 -aframes 108 -ac 17 -b:v 62k tmp.swf

 ffmpeg version N-94982-gea673a0edb Copyright (c) 2000-2019 the FFmpeg
 developers
   built with clang version 6.0.0-1ubuntu2 (tags/RELEASE_600/final)
   configuration: --cc=clang --cxx=clang++ --ld=clang --enable-debug
 --toolchain=clang-usan
 }}}
 Patches should be submitted to the ffmpeg-devel mailing list and not this
 bug tracker.

--
Ticket URL: <https://trac.ffmpeg.org/ticket/8184>
FFmpeg <https://ffmpeg.org>
FFmpeg issue tracker


More information about the FFmpeg-trac mailing list