Opened 5 years ago
Closed 4 years ago
#8149 closed defect (fixed)
singed integer overflow in libavformat/avidec.c
Reported by: | Suhwan | Owned by: | |
---|---|---|---|
Priority: | important | Component: | undetermined |
Version: | git-master | Keywords: | ubsan |
Cc: | Blocked By: | ||
Blocking: | Reproduced by developer: | yes | |
Analyzed by developer: | no |
Description
Summary of the bug:
There's a singed integer overflow in libavformat/avidec.c:1536:30
libavformat/avidec.c:1536:30: runtime error: signed integer overflow: 0 - -9223372036854775808 cannot be represented in type 'long' SUMMARY: UndefinedBehaviorSanitizer: undefined-behavior libavformat/avidec.c:1536:30 in
How to reproduce:
% ./ffmpeg_g -t 2 -stream_loop 14 -y -r 58 -i camcorder.avi -target dv -map 0 -vframes 91 -aframes 106 -r 16 -b:v 38k output/tmp.stl ffmpeg version N-94887-ge55018ee11 (git master) built on ... ubuntu 18.04 with clang-6 and UBSAN option.
Attachments (2)
Change History (4)
by , 5 years ago
Attachment: | camcorder.avi added |
---|
by , 5 years ago
Attachment: | gdb-integer-overflow added |
---|
comment:1 by , 4 years ago
Status: | new → open |
---|
comment:2 by , 4 years ago
Reproduced by developer: | set |
---|---|
Resolution: | → fixed |
Status: | open → closed |
Note:
See TracTickets
for help on using tickets.
poc