[FFmpeg-trac] #4587(avcodec:new): ouf-of-boundry memory access in cabac(H264)
FFmpeg
trac at avcodec.org
Tue Jun 2 10:53:28 CEST 2015
#4587: ouf-of-boundry memory access in cabac(H264)
---------------------------------+---------------------------------------
Reporter: rakexue | Type: defect
Status: new | Priority: normal
Component: avcodec | Version: unspecified
Keywords: H264 | Blocked By:
Blocking: | Reproduced by developer: 0
Analyzed by developer: 0 |
---------------------------------+---------------------------------------
The specific h264 file decoding causes some random SIGBUS on arm Android.
CallStack shows the crash in get_cabac_inline(ARM).
Turn off UNCHECKED_BITSTREAM_READER, then find that
get_cabac_inline(plain C ) -> refill2 occasionally accesses the last two
bytes just after the boundry(CABACContext.bytestream_end[0] and
CABACContext.bytestream_end[1]).
--
Ticket URL: <https://trac.ffmpeg.org/ticket/4587>
FFmpeg <https://ffmpeg.org>
FFmpeg issue tracker
More information about the FFmpeg-trac
mailing list