Opened 11 years ago

Closed 9 years ago

#1115 closed defect (duplicate)

Valgrind reports Leak_DefinitelyLost

Reported by: aslani@… Owned by: reimar
Priority: normal Component: demuxer
Version: HEAD Severity: normal
Keywords: Cc: dmolnar@…, catchconv-bugreports@…
Blocked By: Blocking:
Reproduced by developer: Analyzed by developer:

Description

I have an .ogg file where Valgrind reports Leak_Definitely lost.


MPlayer dev-SVN-r27139-4.1.2

My OS:
Debian Etch Linux, Intel(R) Core(TM)2 Duo CPU T7250 @ 2.00GHz

uname -a:
Linux debian 2.6.18-4-486 #1 Mon Mar 26 16:39:10 UTC 2007 i686 GNU/Linux
*

Reproduce as follows:

wget http://www.metafuzz.com/testcases/325305-287-4266887123-Leak_DefinitelyLost.tgz
tar xzf 93659-199-4266887123-Leak_DefinitelyLost.tgz
valgrind mplayer 199-snippet3.ogg
valgrind --leak-check=full mplayer 199-snippet3.ogg >& logg

Here is the output from Valgrind:

[vorbis @ 0x8640290] Invalid code lengths while generating vlcs.
[vorbis @ 0x8640290] Vorbis setup header packet corrupt (codebooks).
[vorbis @ 0x8640290]Setup header corrupt.
.....
.....
..... ( same message repeats few times)
.....
.....
.....
[vorbis @ 0x8640290] Invalid code lengths while generating vlcs.
[vorbis @ 0x8640290] Vorbis setup header packet corrupt (codebooks).
[vorbis @ 0x8640290]Setup header corrupt.
==2001==
==2001== ERROR SUMMARY: 0 errors from 0 contexts (suppressed: 17 from 1)
==2001== malloc/free: in use at exit: 37,393 bytes in 14 blocks.
==2001== malloc/free: 7,162 allocs, 7,148 frees, 78,338,009 bytes allocated.
==2001== For counts of detected errors, rerun with: -v
==2001== searching for pointers to 14 not-freed blocks.
==2001== checked 2,742,936 bytes.
==2001==
==2001== LEAK SUMMARY:
==2001== definitely lost: 4,493 bytes in 3 blocks.
==2001== possibly lost: 0 bytes in 0 blocks.
==2001== still reachable: 32,900 bytes in 11 blocks.
==2001== suppressed: 0 bytes in 0 blocks.
==2001== Rerun with --leak-check=full to see details of leaked memory.

This bug was found using the zzuf fuzzer.
Stack hash: 605119413
This bug was found as part of the SUPERB-TRUST 2008 / metafuzz project;

see

http://metafuzz.com/
http://www.truststc.org/superb/

Change History (3)

comment:1 Changed 11 years ago by catchconv-bugreports@…

  • bug_file_loc changed from http://www.metafuzz.com/testcases/93659-199-4266887123-Leak_DefinitelyLost.tgz to http://www.metafuzz.com/testcases/93659-199-4266887123-Leak_DefinitelyLost.tgz
  • Cc catchconv-bugreports@… added

comment:2 Changed 9 years ago by compn

  • Owner changed from r_togni@… to reimar

comment:3 Changed 9 years ago by reimar

  • Resolution set to duplicate
  • Status changed from new to closed

oggparsevorbis bug, EOF while still parsing headers results in memleak.

Note: See TracTickets for help on using tickets.