Opened 5 years ago

Closed 5 years ago

#803 closed defect (fixed)

zzuf indeo5 avi crashes FFMPEG segfault

Reported by: oanastratulat Owned by:
Priority: important Component: avcodec
Version: git-master Keywords: iv50 crash SIGSEGV
Cc: Blocked By:
Blocking: Reproduced by developer: yes
Analyzed by developer: no

Description

==21242== Memcheck, a memory error detector
==21242== Copyright (C) 2002-2010, and GNU GPL'd, by Julian Seward et al.
==21242== Using Valgrind-3.6.1-Debian and LibVEX; rerun with -h for copyright info
==21242== Command: ffmpeg -i corruptfile -f null -
==21242==
ffmpeg version N-35989-gaa1c590, Copyright (c) 2000-2011 the FFmpeg developers

built on Dec 20 2011 14:30:54 with gcc 4.6.1
configuration:
libavutil 51. 32. 0 / 51. 32. 0
libavcodec 53. 46. 1 / 53. 46. 1
libavformat 53. 27. 0 / 53. 27. 0
libavdevice 53. 4. 0 / 53. 4. 0
libavfilter 2. 53. 0 / 2. 53. 0
libswscale 2. 1. 0 / 2. 1. 0

Input #0, avi, from 'corruptfile':

Duration: 00:00:08.93, start: 0.000000, bitrate: 841 kb/s

Stream #0:0: Video: indeo5 (IV50 / 0x30355649), yuv410p, 240x180, 15 tbr, 15 tbn, 15 tbc
Stream #0:1: Audio: pcm_s16le ([1][0][0][0] / 0x0001), 22050 Hz, 1 channels, s16, 352 kb/s

[buffer @ 0x5915ba0] w:240 h:180 pixfmt:yuv410p tb:1/1000000 sar:0/1 sws_param:
Output #0, null, to 'pipe:':

Metadata:

encoder : Lavf53.27.0
Stream #0:0: Video: rawvideo (YUV9 / 0x39565559), yuv410p, 240x180, q=2-31, 200 kb/s, 90k tbn, 15 tbc
Stream #0:1: Audio: pcm_s16le, 22050 Hz, 1 channels, s16, 352 kb/s

Stream mapping:

Stream #0:0 -> #0:0 (indeo5 -> rawvideo)
Stream #0:1 -> #0:1 (pcm_s16le -> pcm_s16le)

Press [q] to stop, ? for help
[indeo5 @ 0x58a3900] Empty macroblock in an INTRA picture!
[indeo5 @ 0x58a3900] Error while decoding band: 0, plane: 0
Error while decoding stream #0:0
==21242== Conditional jump or move depends on uninitialised value(s)
==21242== at 0x75C430: ??? (in /usr/local/bin/ffmpeg)
==21242== by 0x74D074: ??? (in /usr/local/bin/ffmpeg)
==21242== by 0x88F716: ??? (in /usr/local/bin/ffmpeg)
==21242== by 0x43DF46: ??? (in /usr/local/bin/ffmpeg)
==21242== by 0x442890: ??? (in /usr/local/bin/ffmpeg)
==21242== by 0x43A218: ??? (in /usr/local/bin/ffmpeg)
==21242== by 0x550930C: (below main) (libc-start.c:226)
==21242==
==21242== Invalid read of size 2
==21242== at 0x75C420: ??? (in /usr/local/bin/ffmpeg)
==21242== by 0x74CE52: ??? (in /usr/local/bin/ffmpeg)
==21242== by 0x88F716: ??? (in /usr/local/bin/ffmpeg)
==21242== by 0x43DF46: ??? (in /usr/local/bin/ffmpeg)
==21242== by 0x442890: ??? (in /usr/local/bin/ffmpeg)
==21242== by 0x43A218: ??? (in /usr/local/bin/ffmpeg)
==21242== by 0x550930C: (below main) (libc-start.c:226)
==21242== Address 0x0 is not stack'd, malloc'd or (recently) free'd
==21242==
==21242==
==21242== Process terminating with default action of signal 11 (SIGSEGV)
==21242== Access not within mapped region at address 0x0
==21242== at 0x75C420: ??? (in /usr/local/bin/ffmpeg)
==21242== by 0x74CE52: ??? (in /usr/local/bin/ffmpeg)
==21242== by 0x88F716: ??? (in /usr/local/bin/ffmpeg)
==21242== by 0x43DF46: ??? (in /usr/local/bin/ffmpeg)
==21242== by 0x442890: ??? (in /usr/local/bin/ffmpeg)
==21242== by 0x43A218: ??? (in /usr/local/bin/ffmpeg)
==21242== by 0x550930C: (below main) (libc-start.c:226)
==21242== If you believe this happened as a result of a stack
==21242== overflow in your program's main thread (unlikely but
==21242== possible), you can try to increase the size of the
==21242== main thread stack using the --main-stacksize= flag.
==21242== The main thread stack size used in this run was 8388608.
==21242==
==21242== HEAP SUMMARY:
==21242== in use at exit: 850,161 bytes in 129 blocks
==21242== total heap usage: 264 allocs, 135 frees, 1,295,133 bytes allocated
==21242==
==21242== LEAK SUMMARY:
==21242== definitely lost: 0 bytes in 0 blocks
==21242== indirectly lost: 0 bytes in 0 blocks
==21242== possibly lost: 0 bytes in 0 blocks
==21242== still reachable: 850,161 bytes in 129 blocks
==21242== suppressed: 0 bytes in 0 blocks
==21242== Rerun with --leak-check=full to see details of leaked memory
==21242==
==21242== For counts of detected and suppressed errors, rerun with: -v
==21242== Use --track-origins=yes to see where uninitialised values come from
==21242== ERROR SUMMARY: 43201 errors from 2 contexts (suppressed: 4 from 4)

Attachments (2)

corruptfile (917.2 KB) - added by oanastratulat 5 years ago.
valgrind (4.1 KB) - added by oanastratulat 5 years ago.

Download all attachments as: .zip

Change History (4)

Changed 5 years ago by oanastratulat

Changed 5 years ago by oanastratulat

comment:1 Changed 5 years ago by cehoyos

  • Component changed from FFmpeg to avcodec
  • Keywords iv50 crash SIGSEGV added
  • Reproduced by developer set
  • Status changed from new to open
  • Summary changed from zzuf .avi crashes FFMPEG segfault to zzuf indeo5 avi crashes FFMPEG segfault

comment:2 Changed 5 years ago by michael

  • Resolution set to fixed
  • Status changed from open to closed
Note: See TracTickets for help on using tickets.