Opened 16 months ago

Closed 16 months ago

Last modified 16 months ago

#9122 closed defect (fixed)

fpe on vpk seek

Reported by: bird Owned by:
Priority: important Component: avformat
Version: git-master Keywords: vpk crash fpe
Cc: Blocked By:
Blocking: Reproduced by developer: no
Analyzed by developer: no

Description

Summary of the bug:
There is a floating pointer exception when extracting frames from the video.
How to reproduce:

$ ./ffmpeg_g -ss 0 -i ./3 -s 320x240 -y -f image2 output.jpeg
ffmpeg version N-101261-g78d5e1c653 Copyright (c) 2000-2021 the FFmpeg developers
  built with clang version 6.0.0-1ubuntu2 (tags/RELEASE_600/final)
  configuration: --prefix=/home/bird/ffmpeg_build_new --pkg-config-flags=--static --extra-cflags='-I/home/bird/ffmpeg_build_new/include -fno-omit-frame-pointer -g -fsanitize=address' --extra-cxxflags='-fno-omit-frame-pointer -g -fsanitize=address' --extra-ldflags='-L/home/bird/ffmpeg_build_new/lib -fsanitize=address' --extra-libs='-lpthread -lm' --bindir=/home/bird/bin_new --enable-gpl --enable-gnutls --enable-libass --enable-libfdk-aac --enable-libfreetype --enable-libmp3lame --enable-libopus --enable-libvpx --enable-libx264 --enable-libx265 --enable-nonfree --cc=clang --cxx=clang++ --enable-debug
  libavutil      56. 66.100 / 56. 66.100
  libavcodec     58.125.100 / 58.125.100
  libavformat    58. 68.100 / 58. 68.100
  libavdevice    58. 12.100 / 58. 12.100
  libavfilter     7.107.100 /  7.107.100
  libswscale      5.  8.100 /  5.  8.100
  libswresample   3.  8.100 /  3.  8.100
  libpostproc    55.  8.100 / 55.  8.100
[NULL @ 0x619000000f80] Too many or invalid channels: 979726457
[vpk @ 0x61b000000080] Failed to open codec in avformat_find_stream_info
[NULL @ 0x619000000f80] Too many or invalid channels: 979726457
[vpk @ 0x61b000000080] Failed to open codec in avformat_find_stream_info
[vpk @ 0x61b000000080] Could not find codec parameters for stream 0 (Audio: adpcm_psx, 1412265070 Hz, 979726457 channels): unspecified sample format
Consider increasing the value for the 'analyzeduration' (0) and 'probesize' (5000000) options
AddressSanitizer:DEADLYSIGNAL
=================================================================
==15502==ERROR: AddressSanitizer: FPE on unknown address 0x00000116ed50 (pc 0x00000116ed50 bp 0x0c2200000067 sp 0x7fffb98e8600 T0)
    #0 0x116ed4f in vpk_read_seek /disk1/fuzzing/ffmpeg_latest/libavformat/vpk.c:124:15
    #1 0x1142360 in seek_frame_internal /disk1/fuzzing/ffmpeg_latest/libavformat/utils.c:2449:15
    #2 0x1142360 in av_seek_frame /disk1/fuzzing/ffmpeg_latest/libavformat/utils.c:2481
    #3 0x11439ff in avformat_seek_file /disk1/fuzzing/ffmpeg_latest/libavformat/utils.c:2533:19
    #4 0x51dd2d in open_input_file /disk1/fuzzing/ffmpeg_latest/fftools/ffmpeg_opt.c:1252:15
    #5 0x51c42a in open_files /disk1/fuzzing/ffmpeg_latest/fftools/ffmpeg_opt.c:3335:15
    #6 0x51be55 in ffmpeg_parse_options /disk1/fuzzing/ffmpeg_latest/fftools/ffmpeg_opt.c:3375:11
    #7 0x55ba9f in main /disk1/fuzzing/ffmpeg_latest/fftools/ffmpeg.c:4964:11
    #8 0x7fcc09366bf6 in __libc_start_main /build/glibc-S9d2JN/glibc-2.27/csu/../csu/libc-start.c:310
    #9 0x423609 in _start (/disk1/fuzzing/ffmpeg_latest/ffmpeg_g+0x423609)

AddressSanitizer can not provide additional info.
SUMMARY: AddressSanitizer: FPE /disk1/fuzzing/ffmpeg_latest/libavformat/vpk.c:124:15 in vpk_read_seek

Attachments (1)

3 (47 bytes ) - added by bird 16 months ago.

Download all attachments as: .zip

Change History (4)

by bird, 16 months ago

Attachment: 3 added

comment:1 by Elon Musk, 16 months ago

Resolution: fixed
Status: newclosed

comment:2 by Carl Eugen Hoyos, 16 months ago

Component: ffmpegavformat
Keywords: vpk crash fpe added
Priority: normalimportant

comment:3 by Carl Eugen Hoyos, 16 months ago

Summary: floating pointer exception when extracting frames from the videofpe on vpk seek
Note: See TracTickets for help on using tickets.