[libav-bugs] [Bug 380] New: double free in option handling

bugzilla-daemon at aruru.libav.org bugzilla-daemon at aruru.libav.org
Wed Oct 17 09:29:02 CEST 2012


http://bugzilla.libav.org/show_bug.cgi?id=380

           Summary: double free in option handling
           Product: Libav
           Version: 0.8
          Platform: All
        OS/Version: Linux
            Status: NEW
          Severity: enhancement
          Priority: Normal
         Component: general
        AssignedTo: bugzilla at libav.org
        ReportedBy: siretart at tauware.de


bug forwarded from http://bugs.debian.org/690726


Package: libav-tools
Version: 6:0.8.3-7

When I am running avconv with two-pass option and libxvid codec, avconv
segfaults.

I ran the command the following commands:
gdb --args avconv -i test.avi -f avi -vcodec libxvid -pass 1 -y /dev/null
valgrind --log-file=valgrind.txt avconv -i test.avi -f avi -vcodec libxvid
-pass 1 -y /dev/null


Valgrind trace: 

http://bugs.debian.org/cgi-bin/bugreport.cgi?msg=5;filename=valgrind.txt;att=1;bug=690726

Gbd Backtrace:

http://bugs.debian.org/cgi-bin/bugreport.cgi?msg=5;filename=gdb.txt;att=2;bug=690726


Program received signal SIGABRT, Aborted.
0x00007ffff5989475 in *__GI_raise (sig=<optimized out>) at
../nptl/sysdeps/unix/sysv/linux/raise.c:64
64      ../nptl/sysdeps/unix/sysv/linux/raise.c: No such file or directory.
(gdb) backtrace 
#0  0x00007ffff5989475 in *__GI_raise (sig=<optimized out>) at
../nptl/sysdeps/unix/sysv/linux/raise.c:64
#1  0x00007ffff598c6f0 in *__GI_abort () at abort.c:92
#2  0x00007ffff59c332b in __libc_message (do_abort=<optimized out>,
fmt=<optimized out>) at ../sysdeps/unix/sysv/linux/libc_fatal.c:189
#3  0x00007ffff59ccb76 in malloc_printerr (action=3, str=0x7ffff5aa06eb
"corrupted double-linked list", ptr=<optimized out>)
    at malloc.c:6283
#4  0x00007ffff59ce60c in _int_free (av=0x7ffff5cd9e60, p=0x630180) at
malloc.c:4973
#5  0x00007ffff59d18ac in *__GI___libc_free (mem=<optimized out>) at
malloc.c:3738
#6  0x00007ffff618a34c in av_freep (arg=0x646f88) at
/build/libav-2WNWdL/libav-0.8.3/libavutil/mem.c:150
#7  0x00007ffff618a9cc in av_opt_free (obj=obj at entry=0x646e40) at
/build/libav-2WNWdL/libav-0.8.3/libavutil/opt.c:721
#8  0x00007ffff6864cec in avcodec_close (avctx=0x646e40) at
/build/libav-2WNWdL/libav-0.8.3/libavcodec/utils.c:1309
#9  0x000000000040767c in transcode (nb_input_files=-1, input_files=0x644d70,
nb_output_files=1, output_files=0x648ca0)
    at /build/libav-2WNWdL/libav-0.8.3/avconv.c:2811
#10 main (argc=<optimized out>, argv=<optimized out>) at
/build/libav-2WNWdL/libav-0.8.3/avconv.c:4534
(gdb) quit
A debugging session is active.

-- 
Configure bugmail: http://bugzilla.libav.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching all bug changes.


More information about the libav-bugs mailing list