Opened 6 years ago

Closed 6 years ago

Last modified 6 years ago

#2087 closed defect (fixed)

mov_text crash

Reported by: ami_stuff Owned by: ubitux
Priority: important Component: avcodec
Version: git-master Keywords: crash SIGSEGV mov_text mkv
Cc: Blocked By:
Blocking: Reproduced by developer: yes
Analyzed by developer: no

Description

http://www.datafilehost.com/download-3f2fadb8.html

also reproducible here with git head

(gdb) r -scodec mov_text -i 702121h264-TTA.mkvtest82.mkv -an -vn out.mkv
Starting program: d:\mingw\msys\1.0\ffmpeg-head-da8242e\ffmpeg_g.exe -scodec mov
_text -i 702121h264-TTA.mkvtest82.mkv -an -vn out.mkv
[New Thread 184.0x500]
ffmpeg version 1.0.git-da8242e Copyright (c) 2000-2012 the FFmpeg developers
  built on Nov 20 2012 13:54:35 with gcc 4.6.1 (GCC)
  configuration: --disable-sse --disable-ffprobe --enable-gpl
  libavutil      52.  8.100 / 52.  8.100
  libavcodec     54. 73.100 / 54. 73.100
  libavformat    54. 37.100 / 54. 37.100
  libavdevice    54.  3.100 / 54.  3.100
  libavfilter     3. 23.101 /  3. 23.101
  libswscale      2.  1.102 /  2.  1.102
  libswresample   0. 17.100 /  0. 17.100
  libpostproc    52.  2.100 / 52.  2.100
[tta @ 048b6cd8] CRC error
[tta @ 048b6cd8] Seek table missing or too small
[h264 @ 048b0dd8] concealing 846 DC, 846 AC, 846 MV errors in I frame
Input #0, matroska,webm, from '702121h264-TTA.mkvtest82.mkv':
  Metadata:
    creation_time   : 2006-12-23 15:47:16
  Duration: 00:24:10.95, start: 0.000000, bitrate: 17 kb/s
    Stream #0:0: Video: h264 (High), yuv420p, 848x480, SAR 1:1 DAR 53:30, 23.98
fps, 23.98 tbr, 1k tbn, 59.94 tbc (default)
    Stream #0:1: Audio: tta, 48000 Hz, stereo, s16 (default)
    Stream #0:2: Subtitle: mov_text (default)
    Stream #0:3: Subtitle: mov_text
Output #0, matroska, to 'out.mkv':
  Metadata:
    encoder         : Lavf54.37.100
    Stream #0:0: Subtitle: ssa (default)
Stream mapping:
  Stream #0:2 -> #0:0 (mov_text -> ass)
Press [q] to stop, [?] for help

Program received signal SIGSEGV, Segmentation fault.
text_to_ass (text_end=0x4b0dfea <Address 0x4b0dfea out of bounds>,
    text=0x4b0b000 <Address 0x4b0b000 out of bounds>, buf=0x22f200)
    at libavcodec/movtextdec.c:32
32              switch (*text) {
(gdb) bt
#0  text_to_ass (text_end=0x4b0dfea <Address 0x4b0dfea out of bounds>,
    text=0x4b0b000 <Address 0x4b0b000 out of bounds>, buf=0x22f200)
    at libavcodec/movtextdec.c:32
#1  mov_text_decode_frame (avctx=0x48bcdb8, data=0x22f958,
    got_sub_ptr=0x22f9fc, avpkt=0x22f658) at libavcodec/movtextdec.c:98
#2  0x00563f23 in avcodec_decode_subtitle2 (avctx=0x48bcdb8, sub=0x22f958,
    got_sub_ptr=0x22f9fc, avpkt=0x22f890) at libavcodec/utils.c:1885
#3  0x0040f83d in transcode_subtitles (got_output=<optimized out>,
    pkt=<optimized out>, ist=<optimized out>) at ffmpeg.c:1663
#4  output_packet (ist=0x48bdd78, pkt=0x22fb48) at ffmpeg.c:1784
#5  0x004116b4 in process_input (file_index=<optimized out>) at ffmpeg.c:2828
#6  0x00b30c8e in transcode_step () at ffmpeg.c:2924
#7  transcode () at ffmpeg.c:2976
#8  main (argc=2070000, argv=<optimized out>) at ffmpeg.c:3160
(gdb)

Change History (3)

comment:1 Changed 6 years ago by ubitux

  • Keywords mov_text mkv added
  • Owner set to ubitux
  • Reproduced by developer set
  • Status changed from new to open

comment:2 Changed 6 years ago by ubitux

  • Resolution set to fixed
  • Status changed from open to closed

Fixed in 7d66bc792.

comment:3 Changed 6 years ago by cehoyos

  • Component changed from undetermined to avcodec
  • Keywords crash SIGSEGV added
  • Priority changed from normal to important
  • Version changed from unspecified to git-master
Note: See TracTickets for help on using tickets.