[FFmpeg-trac] #10176(undetermined:new): wavarc: deadlock with fuzzed file

FFmpeg trac at avcodec.org
Tue Feb 7 15:14:18 EET 2023 

#10176: wavarc: deadlock with fuzzed file
-------------------------------------+-------------------------------------
             Reporter:  ami_stuff    |                     Type:  defect
               Status:  new          |                 Priority:  normal
            Component:               |                  Version:
  undetermined                       |  unspecified
             Keywords:               |               Blocked By:
             Blocking:               |  Reproduced by developer:  0
Analyzed by developer:  0            |
-------------------------------------+-------------------------------------
 {{{
 (gdb) r -i deadlock.wa
 Starting program: ffmpeg_g -i deadlock.wa
 [Thread debugging using libthread_db enabled]
 Using host libthread_db library "/lib/x86_64-linux-gnu/libthread_db.so.1".
 ffmpeg version N-109763-g3b3a321fed Copyright (c) 2000-2023 the FFmpeg
 developers
   built with gcc 9 (Ubuntu 9.4.0-1ubuntu1~20.04.1)
   configuration:
   libavutil      57. 44.100 / 57. 44.100
   libavcodec     59. 63.100 / 59. 63.100
   libavformat    59. 38.100 / 59. 38.100
   libavdevice    59.  8.101 / 59.  8.101
   libavfilter     8. 56.100 /  8. 56.100
   libswscale      6.  8.112 /  6.  8.112
   libswresample   4.  9.100 /  4.  9.100
 [wavarc @ 0x55555715a640] get_buffer() failed
     Last message repeated 1 times
 Program received signal SIGINT, Interrupt.
 0x00007ffff76e6836 in __posix_memalign
 (memptr=memptr at entry=0x7fffffffd390,
     alignment=alignment at entry=64, size=24) at malloc.c:5359
 5359    malloc.c
 (gdb) bt
 #0  0x00007ffff76e6836 in __posix_memalign (
     memptr=memptr at entry=0x7fffffffd390, alignment=alignment at entry=64,
 size=24)
     at malloc.c:5359
 #1  0x00005555564c93e5 in av_malloc (size=size at entry=24) at
 libavutil/mem.c:105
 #2  0x00005555564c95ae in av_mallocz (size=size at entry=24)
     at libavutil/mem.c:266
 #3  0x00005555564b5d92 in av_buffer_ref (buf=0x55555716be40)
     at libavutil/buffer.c:105
 #4  0x0000555555b4c0df in av_packet_ref (dst=0x55555715b300,
     src=src at entry=0x7fffffffd480) at libavcodec/avpacket.c:450
 #5  0x0000555555bc8602 in avcodec_send_packet (
     avctx=avctx at entry=0x55555715a640, avpkt=avpkt at entry=0x7fffffffd480)
     at libavcodec/decode.c:623
 #6  0x00005555559c4d93 in try_decode_frame (s=s at entry=0x555557159400,
     st=st at entry=0x55555715a180, avpkt=avpkt at entry=0x55555716cac8,
     options=<optimized out>) at libavformat/demux.c:2054
 #7  0x00005555559ca029 in avformat_find_stream_info (ic=0x555557159400,
     options=0x55555715ad80) at libavformat/demux.c:2747
 #8  0x00005555556f54e1 in ifile_open (o=o at entry=0x7fffffffd850,
     filename=<optimized out>) at fftools/ffmpeg_demux.c:985
 #9  0x0000555555706b92 in open_files (
     inout=inout at entry=0x5555565c0461 "input",
     open_file=0x5555556f48e0 <ifile_open>, l=<optimized out>,
     l=<optimized out>) at fftools/ffmpeg_opt.c:1244
 --Type <RET> for more, q to quit, c to continue without paging--
 #10 0x000055555570802f in ffmpeg_parse_options (argc=<optimized out>,
     argv=<optimized out>) at fftools/ffmpeg_opt.c:1283
 #11 0x00005555556f094a in main (argc=3, argv=0x7fffffffdfb8)
     at fftools/ffmpeg.c:4156
 }}}
-- 
Ticket URL: <https://trac.ffmpeg.org/ticket/10176>
FFmpeg <https://ffmpeg.org>
FFmpeg issue tracker

More information about the FFmpeg-trac mailing list