Opened 4 months ago

Closed 2 months ago

Last modified 7 weeks ago

#7982 closed defect (fixed)

Invalid left shift encoding r10k

Reported by: Suhwan Owned by:
Priority: important Component: avcodec
Version: git-master Keywords: r10k ubsan
Cc: Blocked By:
Blocking: Reproduced by developer: yes
Analyzed by developer: no

Description

Summary of the bug:
There's two null pointer passed as argument at libavcodec/frame_thread_encoder.c:213:20: and undefined behaviour at libavcodec/r210enc.c:69:28. (left shift of 522 by 22)

How to reproduce:

Run following cmd:
% ffmpeg_g  -t 3 -y -i tmp.avi -map 0 -c:s:1 h263p -c:v r10k -disposition:a r10k -disposition:s adpcm_adx -vframes 64 -aframes 81 tmp_.adx

ffmpeg version N-94142-g3b2082c663 Copyright (c) 2000-2019 the FFmpeg developers

built with clang version 9.0.0 (https://github.com/llvm/llvm-project.git 442a120567a4bc6c59bc754f9edabfb770086f36)

Patches should be submitted to the ffmpeg-devel mailing list and not this bug tracker.

Attachments (2)

tmp.avi (282.5 KB) - added by Suhwan 4 months ago.
gdb_log_7982 (14.8 KB) - added by Suhwan 4 months ago.

Download all attachments as: .zip

Change History (5)

Changed 4 months ago by Suhwan

Changed 4 months ago by Suhwan

comment:1 Changed 4 months ago by cehoyos

  • Component changed from undetermined to avcodec
  • Keywords r10k ubsan added; crash r210enc removed
  • Reproduced by developer set
  • Status changed from new to open
  • Summary changed from null pointer passed at frame_thread_encoder.c:213 and undefined behaviour at r210enc.c to Invalid left shift encoding r10k

Patch sent.

comment:2 Changed 2 months ago by cehoyos

  • Resolution set to fixed
  • Status changed from open to closed

comment:3 Changed 7 weeks ago by kamasubb

Please confirm if version 4.0.0 of ffmpeg is affected by the above described vulnerability?

Note: See TracTickets for help on using tickets.