[FFmpeg-trac] #8845(avcodec:new): A stack-buffer-overflow in FFmpeg JIT code
FFmpeg
trac at avcodec.org
Tue Aug 18 00:31:34 EEST 2020
#8845: A stack-buffer-overflow in FFmpeg JIT code
------------------------------------+-----------------------------------
Reporter: seviezhou | Owner:
Type: defect | Status: new
Priority: important | Component: avcodec
Version: git-master | Resolution:
Keywords: aac | Blocked By:
Blocking: | Reproduced by developer: 0
Analyzed by developer: 0 |
------------------------------------+-----------------------------------
Changes (by cehoyos):
* keywords: asan => aac
* priority: normal => important
* component: ffmpeg => avcodec
Comment:
valgrind shows a possible issue:
{{{
==17778== Invalid read of size 8
==17778== at 0x4767E9: che_configure (aacdec_template.c:133)
==17778== by 0x4767E9: output_configure.cold (aacdec_template.c:543)
==17778== by 0xE889EC: aac_decode_frame_int.isra.0
(aacdec_template.c:3312)
==17778== by 0xE8935C: aac_decode_frame (aacdec_template.c:3457)
==17778== by 0x8B119F: decode_simple_internal (decode.c:342)
==17778== by 0x8B119F: decode_simple_receive_frame (decode.c:538)
==17778== by 0x8B119F: decode_receive_frame_internal (decode.c:556)
==17778== by 0x8B1E4F: avcodec_send_packet (decode.c:614)
==17778== by 0x4B85AC: decode (ffmpeg.c:2217)
==17778== by 0x4B85AC: decode_audio (ffmpeg.c:2274)
==17778== by 0x4B85AC: process_input_packet (ffmpeg.c:2596)
==17778== by 0x4BB31A: process_input (ffmpeg.c:4493)
==17778== by 0x4BB31A: transcode_step (ffmpeg.c:4613)
==17778== by 0x4BB31A: transcode (ffmpeg.c:4667)
==17778== by 0x49838D: main (ffmpeg.c:4872)
}}}
--
Ticket URL: <https://trac.ffmpeg.org/ticket/8845#comment:1>
FFmpeg <https://ffmpeg.org>
FFmpeg issue tracker
More information about the FFmpeg-trac
mailing list