[FFmpeg-trac] #9289(avcodec:new): ffmpeg decode aac crashed in get_bits function

FFmpeg trac at avcodec.org
Tue Jun 15 13:54:22 EEST 2021


#9289: ffmpeg decode aac crashed in get_bits function
------------------------------------+-----------------------------------
             Reporter:  hyhmaffia   |                    Owner:  (none)
                 Type:  defect      |                   Status:  new
             Priority:  normal      |                Component:  avcodec
              Version:  git-master  |               Resolution:
             Keywords:  crash       |               Blocked By:
             Blocking:              |  Reproduced by developer:  0
Analyzed by developer:  0           |
------------------------------------+-----------------------------------
Comment (by mkver):

 1. The get_bits() functions are allowed to overread a bit: The buffer has
 to be padded. That's why we demand input packets to have at least
 AV_INPUT_BUFFER_PADDING_SIZE bytes of padding.
 2. The information you offered is very insufficient: You did not even
 provide a backtrace which is immensely helpful to check where the
 GetBitContext that is used in this call uses a buffer that ought to be
 padded. You also did not really mention your method of finding this. If
 you don't provide this information I just have to presume that you sent an
 unpadded packet to the decoder in which case the overread were neither
 surprising nor a bug; instead it would be a result of an API violation.
-- 
Ticket URL: <https://trac.ffmpeg.org/ticket/9289#comment:6>
FFmpeg <https://ffmpeg.org>
FFmpeg issue tracker


More information about the FFmpeg-trac mailing list