[libav-bugs] [Bug 89] New: Overreads in rv34 decoder

bugzilla-daemon at aruru.libav.org bugzilla-daemon at aruru.libav.org
Wed Nov 23 18:48:03 CET 2011


http://bugzilla.libav.org/show_bug.cgi?id=89

           Summary: Overreads in rv34 decoder
           Product: Libav
           Version: git HEAD
          Platform: PC
        OS/Version: Linux
            Status: NEW
          Severity: major
          Priority: Normal
         Component: libavcodec
        AssignedTo: bugzilla at libav.org
        ReportedBy: rsbultje at gmail.com


Created attachment 46
  --> http://bugzilla.libav.org/attachment.cgi?id=46
file to trigger bug

==71696== Invalid read of size 4
==71696==    at 0x1003F91A9: rv30_decode_mb_info (in ./avconv)
==71696==    by 0x107EB1E33: ???
==71696==    by 0x156: ???
==71696==    by 0x107E7E65F: ???
==71696==    by 0x10040402E: rv34_decode_mb_header (in ./avconv)
==71696==    by 0x100000001: ??? (in ./avconv)
==71696==  Address 0x107da1ac6 is 774 bytes inside a block of size 777 alloc'd
==71696==    at 0x100E96EC1: memalign (vg_replace_malloc.c:581)
==71696==    by 0x100E96F58: posix_memalign (vg_replace_malloc.c:709)
==71696==    by 0x1005E35A9: av_malloc (in ./avconv)
==71696==    by 0x107C78D5F: ???


Found by Aneesh Dogra as part of GCI:
http://www.google-melange.com/gci/task/view/google/gci2011/7120337

-- 
Configure bugmail: http://bugzilla.libav.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching all bug changes.


More information about the libav-bugs mailing list