Context Navigation

#8154 closed defect (fixed)

signed integer overflow in fftools/ffmpeg_opt.c

Reported by:	Suhwan	Owned by:
Priority:	normal	Component:	ffmpeg
Version:	git-master	Keywords:	ubsan
Cc:		Blocked By:
Blocking:		Reproduced by developer:	no
Analyzed by developer:	no

Description

Summary of the bug:
There is a signed integer overflow in fftools/ffmpeg_opt.c

fftools/ffmpeg_opt.c:2778:44: runtime error: signed integer overflow: 30000299 * 1000 cannot be represented in type 'int'

How to reproduce:

% ./ffmpeg_g -loglevel 99 -y -r 45 -i audio-overhang.ogv -target dv -map 0 -c copy -c: v:59 dvbsub -disposition: a:9 xwd -disposition: a:66 targa -vframes 98 -ab 815k -strict 2 output/tmp.xbin

ffmpeg version N-94887-ge55018ee11 (git master)
built on ubuntu 18.04 with clang-6 and UBSAN option.

Attachments (2)

gdb-ffmpeg_opt (19.9 KB ) - added by Suhwan 5 years ago.
audio-overhang.ogv (44.4 KB ) - added by Suhwan 5 years ago.: poc

Download all attachments as: .zip

Change History (4)

by Suhwan, 5 years ago

Attachment:	gdb-ffmpeg_opt added

by Suhwan, 5 years ago

Attachment:	audio-overhang.ogv added

poc

comment:1 by mkver, 5 years ago

Component:	undetermined → ffmpeg

Fixed in 2b1fcba8ddcb7d29299ea28403fb597640a7288b.

comment:2 by mkver, 5 years ago

Resolution:	→ fixed
Status:	new → closed

Note: See TracTickets for help on using tickets.

Download in other formats: