Opened 11 years ago

Last modified 11 years ago

#1117 new defect

InvalidRead

Reported by: nicholenae@… Owned by: reimar
Priority: normal Component: ao
Version: HEAD Severity: normal
Keywords: Cc: zlai88@…, catchconv-bugreports@…
Blocked By: Blocking:
Reproduced by developer: Analyzed by developer:

Description

To reproduce:
wget http://www.cs.berkeley.edu/~nalvarez/t10.mp3
valgrind mplayer t10.mp3

There were two files which produces the same error, Invalid Read.
The following is the summary where the error was generated in one of the files.

==25364== Stack hash: 84258990
==25364== at 0x81E313B: dct36 (dct36.c:169)
==25364== by 0x81E768D: do_layer3 (layer3.c:1212)
==25364== by 0x81E8D75: MP3_DecodeFrame (sr1.c:539)
==25364== by 0x80DA974: decode_audio (dec_audio.c:383)
==25364== by 0x80782F9: main (mplayer.c:2044)
==25364== Address 0x2e448cbc is not stack'd, malloc'd or (recently) free'

File : t11.mp3
==25760== Stack hash: 84258990
==25760== at 0x81E313B: dct36 (dct36.c:169)
==25760== by 0x81E768D: do_layer3 (layer3.c:1212)
==25760== by 0x81E8D75: MP3_DecodeFrame (sr1.c:539)
==25760== by 0x80DA974: decode_audio (dec_audio.c:383)
==25760== by 0x80782F9: main (mplayer.c:2044)
==25760== Address 0xbe113b0c is not stack'd, malloc'd or (recently) free'd

Change History (2)

comment:1 Changed 11 years ago by nicholenae@…

  • Cc catchconv-bugreports@… added

(In reply to comment #0)

There were two files which produces the same error, Invalid Read and 4 uninitialized.The following is the summary where the error was generated in one of the files.


To reproduce:

wget http://www.cs.berkeley.edu/~nalvarez/t10.mp3

wget http://www.metafuzz.com/testcases/545172-0-4003667562-SyscallParam.tgz
tar xzfv 545172-0-4003667562-SyscallParam?.tgz
valgrind mplayer t10.mp3-bbs

MPlayer dev-SVN-r27139-4.1.2 (C) 2000-2008 MPlayer Team
CPU: Intel(R) Core(TM)2 Duo CPU T7250 @ 2.00GHz (Family: 6, Model: 15, Stepping: 13)
CPUflags: MMX: 1 MMX2: 1 3DNow: 0 3DNow2: 0 SSE: 1 SSE2: 1
Compiled for x86 CPU with extensions: MMX MMX2 SSE SSE2

==25364== Stack hash: 84258990
==25364== at 0x81E313B: dct36 (dct36.c:169)
==25364== by 0x81E768D: do_layer3 (layer3.c:1212)
==25364== by 0x81E8D75: MP3_DecodeFrame (sr1.c:539)
==25364== by 0x80DA974: decode_audio (dec_audio.c:383)
==25364== by 0x80782F9: main (mplayer.c:2044)
==25364== Address 0x2e448cbc is not stack'd, malloc'd or (recently) free'

File : t11.mp3
==25760== Stack hash: 84258990
==25760== at 0x81E313B: dct36 (dct36.c:169)
==25760== by 0x81E768D: do_layer3 (layer3.c:1212)
==25760== by 0x81E8D75: MP3_DecodeFrame (sr1.c:539)
==25760== by 0x80DA974: decode_audio (dec_audio.c:383)
==25760== by 0x80782F9: main (mplayer.c:2044)
==25760== Address 0xbe113b0c is not stack'd, malloc'd or (recently) free'd

comment:2 Changed 11 years ago by reimar

  • Cc zlai88@… added

* Bug 1121 has been marked as a duplicate of this bug. *

Note: See TracTickets for help on using tickets.