Opened 13 years ago
Closed 10 years ago
#2998 closed defect (invalid)
aac: maybe integer overflow
| Reported by: | ami_stuff | Owned by: | |
|---|---|---|---|
| Priority: | normal | Component: | undetermined |
| Version: | unspecified | Keywords: | |
| Cc: | Blocked By: | ||
| Blocking: | Reproduced by developer: | no | |
| Analyzed by developer: | no |
Description
please run this command:
zzuf -M2000 -c -s8548 -r0.000001:0.6 -S -b9000-25000000 ffmpeg -max_alloc 4000000 -i rv10.rm -f null -
and tell me if it's a bug of ffmpeg (integer overflow or such) or bug of valgrind.
signal 9 doesn't occure at every time (please run zzuf a few times to reproduce this)
I have seen more of similar cases while fuzzing various files.
ffmpeg version 2.0-93439e8 Copyright (c) 2000-2013 the FFmpeg developers
built on Sep 18 2013 23:23:15 with gcc 4.7 (Debian 4.7.2-5)
configuration: --disable-yasm --enable-gpl --disable-ffprobe --disable-ffserver
libavutil 52. 44.100 / 52. 44.100
libavcodec 55. 31.101 / 55. 31.101
libavformat 55. 18.100 / 55. 18.100
libavdevice 55. 3.100 / 55. 3.100
libavfilter 3. 86.101 / 3. 86.101
libswscale 2. 5.100 / 2. 5.100
libswresample 0. 17.103 / 0. 17.103
libpostproc 52. 3.100 / 52. 3.100
Input #0, rm, from 'v2/rv10.rm':
Metadata:
title :
author :
copyright :
comment :
ASMRuleBook : #($Bandwidth >= 0),Stream1Bandwidth = 320000, Stream0Bandwidth = 1024000;
Creation Date : 4/20/2012 16:42:50
Generated By : Helix Producer SDK 13.1 for Windows, Build 13.1.1.3436
Modification Date: 4/20/2012 16:42:50
Duration: 00:00:12.68, start: 0.000000, bitrate: 1315 kb/s
Stream #0:0: Video: rv40 (RV40 / 0x30345652), yuv420p, 320x240, 1024 kb/s, 15 fps, 15 tbr, 1k tbn, 1k tbc
Stream #0:1: Audio: aac (raac / 0x63616172), 44100 Hz, stereo, fltp, 320 kb/s
Output #0, null, to 'pipe:':
Metadata:
title :
author :
copyright :
comment :
ASMRuleBook : #($Bandwidth >= 0),Stream1Bandwidth = 320000, Stream0Bandwidth = 1024000;
Creation Date : 4/20/2012 16:42:50
Generated By : Helix Producer SDK 13.1 for Windows, Build 13.1.1.3436
Modification Date: 4/20/2012 16:42:50
encoder : Lavf55.18.100
Stream #0:0: Video: rawvideo (I420 / 0x30323449), yuv420p, 320x240, q=2-31, 200 kb/s, 90k tbn, 15 tbc
Stream #0:1: Audio: pcm_s16le, 44100 Hz, stereo, s16, 1411 kb/s
Stream mapping:
Stream #0:0 -> #0:0 (rv40 -> rawvideo)
Stream #0:1 -> #0:1 (aac -> pcm_s16le)
Press [q] to stop, [?] for help
[rv40 @ 0x911f800] First slice header is incorrect
[rv40 @ 0x91148a0] Context scratch buffers could not be allocated due to unknown size.
[rv40 @ 0x91148a0] First slice header is incorrect
DTS 1141407872, next:188219 st:1 invalid dropping
PTS 1141407872, next:188219 invalid dropping st:1
[aac @ 0x911b5e0] SSR is not implemented. Update your FFmpeg version to the newest one from Git. If the problem still occurs, it means that your file has a feature which has not been implemented.
[aac @ 0x911b5e0] If you want to help, upload a sample of this file to ftp://upload.ffmpeg.org/MPlayer/incoming/ and contact the ffmpeg-devel mailing list.
Error while decoding stream #0:1: Not yet implemented in FFmpeg, patches welcome
DTS 1141407895, next:188219 st:1 invalid dropping
PTS 1141407895, next:188219 invalid dropping st:1
[aac @ 0x911b5e0] Reserved bit set.
Error while decoding stream #0:1: Invalid data found when processing input
DTS 1141407918, next:188219 st:1 invalid dropping
PTS 1141407918, next:188219 invalid dropping st:1
[aac @ 0x911b5e0] channel element 2.0 is not allocated
Error while decoding stream #0:1: Invalid data found when processing input
DTS 1141407941, next:188219 st:1 invalid dropping
PTS 1141407941, next:188219 invalid dropping st:1
[aac @ 0x911b5e0] channel element 2.14 is not allocated
Error while decoding stream #0:1: Invalid data found when processing input
DTS 1141407964, next:188219 st:1 invalid dropping
PTS 1141407964, next:188219 invalid dropping st:1
[aac @ 0x911b5e0] Reserved bit set.
Error while decoding stream #0:1: Invalid data found when processing input
DTS 1141407987, next:188219 st:1 invalid dropping
PTS 1141407987, next:188219 invalid dropping st:1
[aac @ 0x911b5e0] Sample rate index in program config element does not match the sample rate index configured by the container.
zzuf[s=8548,r=1e-06:0.6]: signal 9 (memory exceeded?)
Attachments (1)
Change History (2)
by , 13 years ago
comment:1 by , 10 years ago
| Resolution: | → invalid |
|---|---|
| Status: | new → closed |
Note:
See TracTickets
for help on using tickets.
