Opened 4 months ago

Closed 2 months ago

Last modified 7 weeks ago

#7981 closed defect (fixed)

null pointer passed as argument at libavcodec/frame_thread_encoder.c:213:20

Reported by: Suhwan Owned by:
Priority: important Component: avcodec
Version: git-master Keywords: ubsan
Cc: Blocked By:
Blocking: Reproduced by developer: no
Analyzed by developer: no

Description

Summary of the bug:
There are 2 null pointer passed as argument at libavcodec/frame_thread_encoder.c:213:45 and a division by zero at libavformat/rawenc.c:70:50.

How to reproduce:

Run the following cmd:
% ffmpeg_g  -t 0 -stream_loop 20 -y -r 49 -i tmp.avi -map 0 -c:v v408 -c:s:8 pcm_s8 -disposition:a cinepak -disposition:v:109 ffv1 -aframes 38 -ar 48000 -b:v 627 tmp_.adx

ffmpeg version: N-94137-g89b96900fa Copyright (c) 2000-2019 the FFmpeg developers

built with clang version 9.0.0 (https://github.com/llvm/llvm-project.git 442a120567a4bc6c59bc754f9edabfb770086f36).

Patches should be submitted to the ffmpeg-devel mailing list and not this bug tracker.

Attachments (2)

tmp.avi (282.5 KB) - added by Suhwan 4 months ago.
gdb_log_7981 (15.6 KB) - added by Suhwan 4 months ago.

Download all attachments as: .zip

Change History (5)

Changed 4 months ago by Suhwan

Changed 4 months ago by Suhwan

comment:1 Changed 4 months ago by cehoyos

  • Component changed from undetermined to avcodec
  • Keywords ubsan added; Null Pointer passed Division by Zero ASAN FFMpeg avformat removed

Patch sent.

comment:2 Changed 2 months ago by cehoyos

  • Resolution set to fixed
  • Status changed from new to closed

comment:3 Changed 7 weeks ago by kamasubb

Please confirm if version 4.0.0 of ffmpeg is affected by the above described vulnerability?

Note: See TracTickets for help on using tickets.