Mplayer crashed by Invalid read

[ethiodad@…]

Mplayer crashed when trying to play a .mp3 file specified below.

​http://www.cs.berkeley.edu/~ethiodad/sakilgh_short2.mp3

Here is the report from Valgrind. Also, following the Valgrind report, gdb report is shown.

I confirm that this bug is reproducable in mplayer version dev-SVN-r27249-4.1.2.

==27779== Memcheck, a memory error detector.
==27779== Copyright (C) 2002-2007, and GNU GPL'd, by Julian Seward et al.
==27779== Using LibVEX rev 1854, a library for dynamic binary translation.
==27779== Copyright (C) 2004-2007, and GNU GPL'd, by OpenWorks LLP.
==27779== Using valgrind-3.3.1, a dynamic binary instrumentation framework.
==27779== Copyright (C) 2000-2007, and GNU GPL'd, by Julian Seward et al.
==27779== For more details, rerun with: -v
==27779==
MPlayer dev-SVN-r27249-4.1.2 (C) 2000-2008 MPlayer Team
CPU: Intel(R) Core(TM)2 CPU 6600 @ 2.40GHz (Family: 6, Model: 15, Stepping: 6)
CPUflags: MMX: 1 MMX2: 1 3DNow: 0 3DNow2: 0 SSE: 1 SSE2: 1
Compiled for x86 CPU with extensions: MMX MMX2 SSE SSE2

Playing sakilgh_short2.mp3.
Audio file file format detected.
==========================================================================
Opening audio decoder: [mp3lib] MPEG layer-2, layer-3
mpg123: Can't rewind stream by 1464 bits!
AUDIO: 44100 Hz, 2 ch, s16le, 192.0 kbit/13.61% (ratio: 24000->176400)
Selected audio codec: [mp3] afm: mp3lib (mp3lib MPEG layer-2, layer-3)
==========================================================================
AO: [oss] 44100Hz 2ch s16le (2 bytes per sample)
Video: no video
Starting playback...
mpg123: Can't rewind stream by 437 bits!
mpg123: Can't rewind stream by 27 bits!
mpg123: Can't rewind stream by 42 bits!
big_values too large!
Blocktype == 0 and window-switching == 1 not allowed.
mpg123: Can't rewind stream by 4 bits!
mpg123: Can't rewind stream by 90 bits!
mpg123: Can't rewind stream by 7 bits!
mpg123: Can't rewind stream by 42 bits!
mpg123: Can't rewind stream by 450 bits!
mpg123: Can't rewind stream by 9 bits!
mpg123: Can't rewind stream by 83 bits!
mpg123: Can't rewind stream by 31 bits!
mpg123: Can't rewind stream by 187 bits!
mpg123: Can't rewind stream by 9 bits!
mpg123: Can't rewind stream by 2 bits!
mpg123: Can't rewind stream by 422 bits!
mpg123: Can't rewind stream by 29 bits!
mpg123: Can't rewind stream by 1055 bits!
mpg123: Can't rewind stream by 237 bits!
mpg123: Can't rewind stream by 27 bits!
mpg123: Can't rewind stream by 51 bits!
mpg123: Can't rewind stream by 39 bits!
big_values too large!
big_values too large!
big_values too large!
Blocktype == 0 and window-switching == 1 not allowed.
mpg123: Can't rewind stream by 174 bits!
mpg123: Can't rewind stream by 16 bits!
big_values too large!
mpg123: Can't rewind stream by 1160 bits!
mpg123: Can't rewind stream by 177 bits!
mpg123: Can't rewind stream by 3 bits!
mpg123: Can't rewind stream by 24 bits!
big_values too large!
big_values too large!
mpg123: Can't rewind stream by 1513 bits!
mpg123: Can't rewind stream by 69 bits!
mpg123: Can't rewind stream by 981 bits!
mpg123: Can't rewind stream by 43 bits!
mpg123: Can't rewind stream by 11 bits!
mpg123: Can't rewind stream by 25 bits!
mpg123: Can't rewind stream by 356 bits!
mpg123: Can't rewind stream by 21 bits!
mpg123: Can't rewind stream by 155 bits!
Blocktype == 0 and window-switching == 1 not allowed.
mpg123: Can't rewind stream by 77 bits!
mpg123: Can't rewind stream by 11 bits!
mpg123: Can't rewind stream by 13 bits!
mpg123: Can't rewind stream by 16 bits!
mpg123: Can't rewind stream by 153 bits!
mpg123: Can't rewind stream by 887 bits!
mpg123: Can't rewind stream by 20 bits!
mpg123: Can't rewind stream by 2 bits!
big_values too large!
big_values too large!
mpg123: Can't rewind stream by 2560 bits!
mpg123: Can't rewind stream by 31 bits!
mpg123: Can't rewind stream by 21 bits!
mpg123: Can't rewind stream by 3 bits!
mpg123: Can't rewind stream by 22 bits!
mpg123: Can't rewind stream by 29 bits!
mpg123: Can't rewind stream by 47 bits!
big_values too large!
mpg123: Can't rewind stream by 294 bits!
mpg123: Can't rewind stream by 45 bits!
mpg123: Can't rewind stream by 407 bits!
mpg123: Can't rewind stream by 39 bits!
mpg123: Can't rewind stream by 13 bits!
mpg123: Can't rewind stream by 987 bits!
big_values too large!
Blocktype == 0 and window-switching == 1 not allowed.
mpg123: Can't rewind stream by 50 bits!
big_values too large!
mpg123: Can't rewind stream by 651 bits!
mpg123: Can't rewind stream by 41 bits!
mpg123: Can't rewind stream by 76 bits!
mpg123: Can't rewind stream by 1018 bits!
mpg123: Can't rewind stream by 8 bits!
mpg123: Can't rewind stream by 98 bits!
mpg123: Can't rewind stream by 29 bits!
big_values too large!
big_values too large!
big_values too large!
mpg123: Can't rewind stream by 2389 bits!
big_values too large!
mpg123: Can't rewind stream by 715 bits!
big_values too large!
Blocktype == 0 and window-switching == 1 not allowed.
mpg123: Can't rewind stream by 48 bits!
mpg123: Can't rewind stream by 16 bits!
mpg123: Can't rewind stream by 54 bits!
mpg123: Can't rewind stream by 384 bits!
mpg123: Can't rewind stream by 83 bits!
mpg123: Can't rewind stream by 18 bits!
mpg123: Can't rewind stream by 12 bits!
big_values too large!
mpg123: Can't rewind stream by 856 bits!
mpg123: Can't rewind stream by 940 bits!
mpg123: Can't rewind stream by 22 bits!
mpg123: Can't rewind stream by 101 bits!
mpg123: Can't rewind stream by 15 bits!
mpg123: Can't rewind stream by 150 bits!
mpg123: Can't rewind stream by 31 bits!
mpg123: Can't rewind stream by 27 bits!
==27779== Syscall param write(buf) points to uninitialised byte(s)
==27779== Stack hash: 2550802113
==27779== at 0x4000792: (within /lib/ld-2.3.6.so)
==27779== Address 0x431249e is 9,574 bytes inside a block of size 65,536 alloc'd
==27779== Stack hash: 2167162419
==27779== at 0x401D898: malloc (vg_replace_malloc.c:207)
==27779== by 0x401D9DC: realloc (vg_replace_malloc.c:429)
==27779== by 0x80DAB5E: decode_audio (dec_audio.c:401)
==27779== by 0x80784E9: main (mplayer.c:2044)
mpg123: Can't rewind stream by 552 bits!
mpg123: Can't rewind stream by 533 bits!
big_values too large!
mpg123: Can't rewind stream by 690 bits!
big_values too large!
mpg123: Can't rewind stream by 4 bits!
mpg123: Can't rewind stream by 309 bits!
big_values too large!.0 (30.0) 120.8%
mpg123: Can't rewind stream by 77 bits!
big_values too large!.0 (30.0) 120.3%
big_values too large!
mpg123: Can't rewind stream by 2359 bits!
big_values too large!
mpg123: Can't rewind stream by 2537 bits!
mpg123: Can't rewind stream by 2 bits!
big_values too large!.0 (30.0) 119.9%
mpg123: Can't rewind stream by 628 bits!
mpg123: Can't rewind stream by 337 bits!
mpg123: Can't rewind stream by 83 bits!
mpg123: Can't rewind stream by 55 bits!
mpg123: Can't rewind stream by 1001 bits!
mpg123: Can't rewind stream by 5 bits!
mpg123: Can't rewind stream by 25 bits!
mpg123: Can't rewind stream by 49 bits!
mpg123: Can't rewind stream by 19 bits!
mpg123: Can't rewind stream by 2 bits!
mpg123: Can't rewind stream by 330 bits!
mpg123: Can't rewind stream by 14 bits!
mpg123: Can't rewind stream by 193 bits!
mpg123: Can't rewind stream by 103 bits!
mpg123: Can't rewind stream by 15 bits!
mpg123: Can't rewind stream by 23 bits!
mpg123: Can't rewind stream by 64 bits!
mpg123: Can't rewind stream by 9 bits!
big_values too large!.0 (30.0) 114.7%
mpg123: Can't rewind stream by 11 bits!
mpg123: Can't rewind stream by 21 bits!
mpg123: Can't rewind stream by 18 bits!
mpg123: Can't rewind stream by 35 bits!
mpg123: Can't rewind stream by 533 bits!
mpg123: Can't rewind stream by 423 bits!
mpg123: Can't rewind stream by 263 bits!
mpg123: Can't rewind stream by 68 bits!
mpg123: Can't rewind stream by 405 bits!
mpg123: Can't rewind stream by 29 bits!
mpg123: Can't rewind stream by 29 bits!
mpg123: Can't rewind stream by 165 bits!
big_values too large!.0 (30.0) 110.9%
mpg123: Can't rewind stream by 12 bits!
mpg123: Can't rewind stream by 19 bits!
mpg123: Can't rewind stream by 77 bits!
mpg123: Can't rewind stream by 43 bits!
mpg123: Can't rewind stream by 1 bits!
mpg123: Can't rewind stream by 36 bits!
mpg123: Can't rewind stream by 350 bits!
mpg123: Can't rewind stream by 6 bits!
big_values too large!
mpg123: Can't rewind stream by 473 bits!
mpg123: Can't rewind stream by 40 bits!
mpg123: Can't rewind stream by 290 bits!
mpg123: Can't rewind stream by 1188 bits!
mpg123: Can't rewind stream by 10 bits!
mpg123: Can't rewind stream by 191 bits!
mpg123: Can't rewind stream by 12 bits!
mpg123: Can't rewind stream by 11 bits!
mpg123: Can't rewind stream by 73 bits!
mpg123: Can't rewind stream by 29 bits!
mpg123: Can't rewind stream by 35 bits!
mpg123: Can't rewind stream by 13 bits!
mpg123: Can't rewind stream by 9 bits!
mpg123: Can't rewind stream by 19 bits!
mpg123: Can't rewind stream by 79 bits!
mpg123: Can't rewind stream by 29 bits!
mpg123: Can't rewind stream by 980 bits!
mpg123: Can't rewind stream by 16 bits!
mpg123: Can't rewind stream by 946 bits!
mpg123: Can't rewind stream by 84 bits!
mpg123: Can't rewind stream by 72 bits!
mpg123: Can't rewind stream by 4 bits!
mpg123: Can't rewind stream by 13 bits!
mpg123: Can't rewind stream by 58 bits!
mpg123: Can't rewind stream by 50 bits!
mpg123: Can't rewind stream by 19 bits!
mpg123: Can't rewind stream by 40 bits!
mpg123: Can't rewind stream by 11 bits!
mpg123: Can't rewind stream by 53 bits!
mpg123: Can't rewind stream by 25 bits!
mpg123: Can't rewind stream by 5 bits!
mpg123: Can't rewind stream by 34 bits!
mpg123: Can't rewind stream by 16 bits!
big_values too large!
mpg123: Can't rewind stream by 614 bits!
mpg123: Can't rewind stream by 770 bits!
mpg123: Can't rewind stream by 47 bits!
mpg123: Can't rewind stream by 40 bits!
mpg123: Can't rewind stream by 68 bits!
mpg123: Can't rewind stream by 10 bits!
mpg123: Can't rewind stream by 20 bits!
mpg123: Can't rewind stream by 3 bits!
big_values too large!
Blocktype == 0 and window-switching == 1 not allowed.
mpg123: Can't rewind stream by 78 bits!
mpg123: Can't rewind stream by 491 bits!
mpg123: Can't rewind stream by 14 bits!
mpg123: Can't rewind stream by 13 bits!
mpg123: Can't rewind stream by 10 bits!
mpg123: Can't rewind stream by 44 bits!
mpg123: Can't rewind stream by 128 bits!
mpg123: Can't rewind stream by 4 bits!
mpg123: Can't rewind stream by 37 bits!
mpg123: Can't rewind stream by 11 bits!
mpg123: Can't rewind stream by 6 bits!
mpg123: Can't rewind stream by 45 bits!
mpg123: Can't rewind stream by 526 bits!
mpg123: Can't rewind stream by 106 bits!
mpg123: Can't rewind stream by 16 bits!
mpg123: Can't rewind stream by 70 bits!
mpg123: Can't rewind stream by 27 bits!
mpg123: Can't rewind stream by 371 bits!
mpg123: Can't rewind stream by 28 bits!
mpg123: Can't rewind stream by 44 bits!
mpg123: Can't rewind stream by 67 bits!
mpg123: Can't rewind stream by 15 bits!
mpg123: Can't rewind stream by 31 bits!
mpg123: Can't rewind stream by 85 bits!
Blocktype == 0 and window-switching == 1 not allowed.
mpg123: Can't rewind stream by 161 bits!
mpg123: Can't rewind stream by 205 bits!
mpg123: Can't rewind stream by 439 bits!
big_values too large!
mpg123: Can't rewind stream by 2149 bits!
mpg123: Can't rewind stream by 58 bits!
mpg123: Can't rewind stream by 56 bits!
mpg123: Can't rewind stream by 15 bits!
mpg123: Can't rewind stream by 68 bits!
mpg123: Can't rewind stream by 4 bits!
mpg123: Can't rewind stream by 4 bits!
mpg123: Can't rewind stream by 1030 bits!
mpg123: Can't rewind stream by 8 bits!
mpg123: Can't rewind stream by 77 bits!
mpg123: Can't rewind stream by 346 bits!
mpg123: Can't rewind stream by 91 bits!
mpg123: Can't rewind stream by 51 bits!
mpg123: Can't rewind stream by 2 bits!
mpg123: Can't rewind stream by 10 bits!
mpg123: Can't rewind stream by 1 bits!
mpg123: Can't rewind stream by 22 bits!
big_values too large!.0 (30.0) 106.3%
mpg123: Can't rewind stream by 1233 bits!
mpg123: Can't rewind stream by 778 bits!
mpg123: Can't rewind stream by 27 bits!
mpg123: Can't rewind stream by 13 bits!
mpg123: Can't rewind stream by 89 bits!
mpg123: Can't rewind stream by 42 bits!
mpg123: Can't rewind stream by 7 bits!
mpg123: Can't rewind stream by 41 bits!
mpg123: Can't rewind stream by 22 bits!
mpg123: Can't rewind stream by 27 bits!
mpg123: Can't rewind stream by 10 bits!
mpg123: Can't rewind stream by 36 bits!
mpg123: Can't rewind stream by 7 bits!
mpg123: Can't rewind stream by 88 bits!
mpg123: Can't rewind stream by 44 bits!
mpg123: Can't rewind stream by 15 bits!
mpg123: Can't rewind stream by 45 bits!
mpg123: Can't rewind stream by 32 bits!
mpg123: Can't rewind stream by 11 bits!
mpg123: Can't rewind stream by 591 bits!
mpg123: Can't rewind stream by 2 bits!
mpg123: Can't rewind stream by 17 bits!
mpg123: Can't rewind stream by 21 bits!
mpg123: Can't rewind stream by 38 bits!
mpg123: Can't rewind stream by 62 bits!
big_values too large!.0 (30.0) 105.9%
mpg123: Can't rewind stream by 592 bits!
Blocktype == 0 and window-switching == 1 not allowed.
mpg123: Can't rewind stream by 42 bits!
mpg123: Can't rewind stream by 39 bits!
mpg123: Can't rewind stream by 26 bits!
mpg123: Can't rewind stream by 57 bits!
mpg123: Can't rewind stream by 455 bits!
mpg123: Can't rewind stream by 90 bits!
mpg123: Can't rewind stream by 5 bits!
mpg123: Can't rewind stream by 53 bits!
mpg123: Can't rewind stream by 1874 bits!
mpg123: Can't rewind stream by 16 bits!
mpg123: Can't rewind stream by 31 bits!
mpg123: Can't rewind stream by 7 bits!
mpg123: Can't rewind stream by 65 bits!
mpg123: Can't rewind stream by 18 bits!
mpg123: Can't rewind stream by 40 bits!
mpg123: Can't rewind stream by 38 bits!
mpg123: Can't rewind stream by 6 bits!
mpg123: Can't rewind stream by 8 bits!
mpg123: Can't rewind stream by 14 bits!
mpg123: Can't rewind stream by 42 bits!
mpg123: Can't rewind stream by 30 bits!
mpg123: Can't rewind stream by 97 bits!
big_values too large!.0 (30.0) 106.1%
Blocktype == 0 and window-switching == 1 not allowed.
big_values too large!
mpg123: Can't rewind stream by 3 bits!
mpg123: Can't rewind stream by 21 bits!
mpg123: Can't rewind stream by 17 bits!
mpg123: Can't rewind stream by 20 bits!
mpg123: Can't rewind stream by 162 bits!
mpg123: Can't rewind stream by 10 bits!
mpg123: Can't rewind stream by 22 bits!
mpg123: Can't rewind stream by 24 bits!
mpg123: Can't rewind stream by 500 bits!
mpg123: Can't rewind stream by 18 bits!
mpg123: Can't rewind stream by 1010 bits!
mpg123: Can't rewind stream by 6 bits!
mpg123: Can't rewind stream by 8 bits!
mpg123: Can't rewind stream by 121 bits!
mpg123: Can't rewind stream by 155 bits!
Blocktype == 0 and window-switching == 1 not allowed.
mpg123: Can't rewind stream by 23 bits!
mpg123: Can't rewind stream by 24 bits!
mpg123: Can't rewind stream by 32 bits!
mpg123: Can't rewind stream by 6 bits!
mpg123: Can't rewind stream by 47 bits!
mpg123: Can't rewind stream by 70 bits!
mpg123: Can't rewind stream by 56 bits!
mpg123: Can't rewind stream by 78 bits!
mpg123: Can't rewind stream by 652 bits!
big_values too large!
big_values too large!
mpg123: Can't rewind stream by 329 bits!
mpg123: Can't rewind stream by 15 bits!
mpg123: Can't rewind stream by 16 bits!
mpg123: Can't rewind stream by 19 bits!
big_values too large!.0 (30.0) 105.6%
==27779==
==27779== Invalid read of size 4
==27779== Stack hash: 208377022
==27779== at 0x81E317B: dct36 (dct36.c:169)
==27779== by 0x81E76DD: do_layer3 (layer3.c:1212)
==27779== by 0x81E8DC5: MP3_DecodeFrame (sr1.c:539)
==27779== by 0x80DAA74: decode_audio (dec_audio.c:383)
==27779== by 0x80784E9: main (mplayer.c:2044)
==27779== Address 0x6e452ddc is not stack'd, malloc'd or (recently) free'd

MPlayer interrupted by signal 11 in module: decode_audio

• MPlayer crashed by bad usage of CPU/FPU/RAM. Recompile MPlayer with --enable-debug and make a 'gdb' backtrace and disassembly. Details in DOCS/HTML/en/bugreports_what.html#bugreports_crash.
• MPlayer crashed. This shouldn't happen. It can be a bug in the MPlayer code _or_ in your drivers _or_ in your gcc version. If you think it's MPlayer's fault, please read DOCS/HTML/en/bugreports.html and follow the instructions there. We can't and won't help unless you provide this information when reporting a possible bug.==27779==

==27779== ERROR SUMMARY: 5 errors from 2 contexts (suppressed: 19 from 1)
==27779== malloc/free: in use at exit: 231,983 bytes in 2,190 blocks.
==27779== malloc/free: 5,411 allocs, 3,221 frees, 2,661,069 bytes allocated.
==27779== For counts of detected errors, rerun with: -v
==27779== searching for pointers to 2,190 not-freed blocks.
==27779== checked 3,067,964 bytes.
==27779==
==27779== LEAK SUMMARY:
==27779== definitely lost: 0 bytes in 0 blocks.
==27779== possibly lost: 0 bytes in 0 blocks.
==27779== still reachable: 231,983 bytes in 2,190 blocks.
==27779== suppressed: 0 bytes in 0 blocks.
==27779== Rerun with --leak-check=full to see details of leaked memory.

Here us gdb Report,

(gdb) run -v sakilgh_short2.mp3
Starting program: /home/user/mplayer/mplayer -v sakilgh_short2.mp3
Failed to read a valid object file image from memory.
[Thread debugging using libthread_db enabled]
[New Thread -1210418976 (LWP 28680)]
MPlayer dev-SVN-r27249-4.1.2 (C) 2000-2008 MPlayer Team
CPU: Intel(R) Core(TM)2 Duo CPU T7250 @ 2.00GHz (Family: 6, Model: 15, Stepping: 13)
CPUflags: MMX: 1 MMX2: 1 3DNow: 0 3DNow2: 0 SSE: 1 SSE2: 1
Compiled for x86 CPU with extensions: MMX MMX2 SSE SSE2
get_path('codecs.conf') -> '/home/user/.mplayer/codecs.conf'
Reading /home/user/.mplayer/codecs.conf: Can't open '/home/user/.mplayer/codecs.conf': No such file or directory
Reading /usr/local/etc/mplayer/codecs.conf: Can't open '/usr/local/etc/mplayer/codecs.conf': No such file or directory
Using built-in default codecs.conf.
Configuration: --enable-debug=3
CommandLine: '-v' 'sakilgh_short2.mp3'
get_path('font/font.desc') -> '/home/user/.mplayer/font/font.desc'
font: can't open file: /home/user/.mplayer/font/font.desc
font: can't open file: /usr/local/share/mplayer/font/font.desc
Using MMX (with tiny bit MMX2) Optimized OnScreenDisplay
Using nanosleep() timing
get_path('input.conf') -> '/home/user/.mplayer/input.conf'
Can't open input config file /home/user/.mplayer/input.conf: No such file or directory
Can't open input config file /usr/local/etc/mplayer/input.conf: No such file or directory
Falling back on default (hardcoded) input config
get_path('sakilgh_short2.mp3.conf') -> '/home/user/.mplayer/sakilgh_short2.mp3.conf'

Playing sakilgh_short2.mp3.
get_path('sub/') -> '/home/user/.mplayer/sub/'
[file] File size is 720353 bytes
STREAM: [file] sakilgh_short2.mp3
STREAM: Description: File
STREAM: Author: Albeu
STREAM: Comment: based on the code from ??? (probably Arpi)
LAVF_check: MPEG audio
Checking for YUV4MPEG2
ASF_check: not ASF guid!
Checking for NuppelVideo
Checking for REAL
Checking for SMJPEG
Searching demuxer type for filename sakilgh_short2.mp3 ext: .mp3
Trying demuxer 17 based on filename extension
==> Found audio stream: 0
demux_audio: seeking from 0xAFD64 to start pos 0x0
demux_audio: audio data 0x0 - 0xAFDE1
Audio file file format detected.
==========================================================================
Opening audio decoder: [mp3lib] MPEG layer-2, layer-3
dec_audio: Allocating 4608 + 65536 = 70144 bytes for output buffer.
mp3lib: using SSE optimized decore!
MP3lib: init layer2&3 finished, tables done
mpg123: Can't rewind stream by 1464 bits!
MPEG 1.0, Layer III, 44100 Hz 192 kbit Joint-Stereo, BPF: 627
Channels: 2, copyright: No, original: Yes, CRC: No, emphasis: 0
AUDIO: 44100 Hz, 2 ch, s16le, 192.0 kbit/13.61% (ratio: 24000->176400)
Selected audio codec: [mp3] afm: mp3lib (mp3lib MPEG layer-2, layer-3)
==========================================================================
Building audio filter chain for 44100Hz/2ch/s16le -> 0Hz/0ch/??...
[libaf] Adding filter dummy
[dummy] Was reinitialized: 44100Hz/2ch/s16le
[dummy] Was reinitialized: 44100Hz/2ch/s16le
Trying every known audio driver...
ao2: 44100 Hz 2 chans s16le
audio_setup: using '/dev/dsp' dsp device
audio_setup: using '/dev/mixer' mixer device
audio_setup: using 'pcm' mixer device
audio_setup: sample format: s16le (requested: s16le)
audio_setup: using 2 channels (requested: 2)
audio_setup: using 44100 Hz samplerate (requested: 44100)
audio_setup: frags: 8/8 (8192 bytes/frag) free: 65536
AO: [oss] 44100Hz 2ch s16le (2 bytes per sample)
AO: Description: OSS/ioctl audio output
AO: Author: A'rpi
Building audio filter chain for 44100Hz/2ch/s16le -> 44100Hz/2ch/s16le...
[dummy] Was reinitialized: 44100Hz/2ch/s16le
[dummy] Was reinitialized: 44100Hz/2ch/s16le
Video: no video
Freeing 0 unused video chunks.
Starting playback...
mpg123: Can't rewind stream by 437 bits!
mpg123: Can't rewind stream by 27 bits!
mpg123: Can't rewind stream by 42 bits!
big_values too large!
Blocktype == 0 and window-switching == 1 not allowed.
mpg123: Can't rewind stream by 4 bits!
mpg123: Can't rewind stream by 90 bits!
Increasing filtered audio buffer size from 0 to 65536
mpg123: Can't rewind stream by 7 bits!
mpg123: Can't rewind stream by 42 bits!
mpg123: Can't rewind stream by 450 bits!
mpg123: Can't rewind stream by 9 bits!
mpg123: Can't rewind stream by 83 bits!
mpg123: Can't rewind stream by 31 bits!
mpg123: Can't rewind stream by 187 bits!
mpg123: Can't rewind stream by 9 bits!
mpg123: Can't rewind stream by 2 bits!
mpg123: Can't rewind stream by 422 bits!
mpg123: Can't rewind stream by 29 bits!
mpg123: Can't rewind stream by 1055 bits!
mpg123: Can't rewind stream by 237 bits!
mpg123: Can't rewind stream by 27 bits!
mpg123: Can't rewind stream by 51 bits!
mpg123: Can't rewind stream by 39 bits!
big_values too large!.0 (30.0) 5.5%
big_values too large!
mpg123: Can't rewind stream by 1010 bits!
mpg123: Can't rewind stream by 6 bits!
mpg123: Can't rewind stream by 8 bits!
mpg123: Can't rewind stream by 121 bits!
mpg123: Can't rewind stream by 155 bits!
Blocktype == 0 and window-switching == 1 not allowed.
mpg123: Can't rewind stream by 23 bits!
mpg123: Can't rewind stream by 24 bits!
mpg123: Can't rewind stream by 32 bits!
mpg123: Can't rewind stream by 6 bits!
mpg123: Can't rewind stream by 47 bits!
mpg123: Can't rewind stream by 70 bits!
mpg123: Can't rewind stream by 56 bits!
mpg123: Can't rewind stream by 78 bits!
mpg123: Can't rewind stream by 652 bits!
big_values too large!.0 (30.0) 1.8%
big_values too large!
mpg123: Can't rewind stream by 329 bits!
mpg123: Can't rewind stream by 15 bits!
mpg123: Can't rewind stream by 16 bits!
mpg123: Can't rewind stream by 19 bits!
big_values too large!.0 (30.0) 1.7%

Program received signal SIGSEGV, Segmentation fault.
[Switching to Thread -1210418976 (LWP 28680)]
0x081e317b in dct36 (inbuf=0xbf926630, o1=0x8719680, o2=0x8718480,

wintab=0x6e452d70, tsbuf=0xbf925430) at mp3lib/dct36.c:169

(gdb) bt
#0 0x081e317b in dct36 (inbuf=0xbf926630, o1=0x8719680, o2=0x8718480,

wintab=0x6e452d70, tsbuf=0xbf925430) at mp3lib/dct36.c:169

#1 0x081e76de in do_layer3 (fr=0x871c7c0, single=-1) at mp3lib/layer3.c:1212
#2 0x081e8dc6 in MP3_DecodeFrame (hova=0x89a98b6 "8���������\232���",

single=-1) at mp3lib/sr1.c:539

#3 0x080daa75 in decode_audio (sh_audio=0x89a7be0, minlen=8192)

at libmpcodecs/dec_audio.c:383

#4 0x080784ea in main (argc=3, argv=0xbf929af4) at mplayer.c:2044
(gdb) dissas $pc-32 $pc+32
Undefined command: "dissas". Try "help".
(gdb) disass $pc-32 $pc+32
Dump of assembler code from 0x81e315b to 0x81e319b:
0x081e315b <dct36+891>: sbb $0xb2,%al
0x081e315d <dct36+893>: cwtl
0x081e315e <dct36+894>: or %bl,%cl
0x081e3160 <dct36+896>: inc %ebp
0x081e3161 <dct36+897>: test $0xd8,%al
0x081e3163 <dct36+899>: les (bad),%ebx
0x081e3164 <dct36+900>: fmuls 0x898b208
0x081e316a <dct36+906>: fxch %st(4)
0x081e316c <dct36+908>: fsubrs 0xffffffa8(%ebp)
0x081e316f <dct36+911>: fmuls 0x898b218
0x081e3175 <dct36+917>: flds 0xffffffe0(%ebp)
0x081e3178 <dct36+920>: fadds 0xffffffbc(%ebp)
0x081e317b <dct36+923>: flds 0x6c(%edx)
0x081e317e <dct36+926>: fmul %st(1),%st
0x081e3180 <dct36+928>: fstps 0x24(%ecx)
0x081e3183 <dct36+931>: fmuls 0x68(%edx)
0x081e3186 <dct36+934>: fstps 0x20(%ecx)
0x081e3189 <dct36+937>: flds 0xffffffe0(%ebp)
0x081e318c <dct36+940>: fsubs 0xffffffbc(%ebp)
0x081e318f <dct36+943>: flds 0x20(%edx)
0x081e3192 <dct36+946>: fmul %st(1),%st
0x081e3194 <dct36+948>: fadds 0x20(%esi)
---Type <return> to continue, or q <return> to quit---
0x081e3197 <dct36+951>: fstps 0x400(%ebx)
(gdb) info all-registers
eax 0xbf926630 -1080924624
ecx 0x8718480 141657216
edx 0x6e452d70 1850027376
ebx 0xbf925430 -1080929232
esp 0xbf92527c 0xbf92527c
ebp 0xbf925318 0xbf925318
esi 0x8719680 141661824
edi 0x8718480 141657216
eip 0x81e317b 0x81e317b <dct36+923>
eflags 0x10292 [ AF SF IF RF ]
cs 0x73 115
ss 0x7b 123
ds 0x7b 123
es 0x7b 123
fs 0x0 0
gs 0x33 51
st0 -0.0565320439636707305908203125 (raw 0xbffae78e250000000000)
st1 -0.03701250107481026953328549257415947 (raw 0xbffa979a6b9a8d359cd1)
st2 -0.06126520198251128590527514461427927 (raw 0xbffafaf1386e5d100000)
st3 -0.041880873629424719695180101552978158 (raw 0xbffaab8b47690f840000)
---Type <return> to continue, or q <return> to quit---
st4 0.010195893614270233577139869451944065 (raw 0x3ff8a70cad681d429310)
st5 0.044627690603440027225826906148720141 (raw 0x3ffab6cb867a345a4ada)
st6 -nan(0x96902f6096902f6) (raw 0xffff096902f6096902f6)
st7 0.866025388240814208984375 (raw 0x3ffeddb3d70000000000)
fctrl 0x37f 895
fstat 0x5021 20513
ftag 0xf 15
fiseg 0x73 115
fioff 0x81e3178 136196472
foseg 0x7b 123
fooff 0xbf9252d4 -1080929580
fop 0x45 69
xmm0 {v4_float = {0x0, 0x0, 0x0, 0x0}, v2_double = {0x0, 0x0},

v16_int8 = {0x0 <repeats 16 times>}, v8_int16 = {0x0, 0x0, 0x0, 0x0, 0x0,

0x0, 0x0, 0x0}, v4_int32 = {0x0, 0x0, 0x0, 0x0}, v2_int64 = {0x0, 0x0},

uint128 = 0x00000000000000000000000000000000}

xmm1 {v4_float = {0x0, 0x0, 0x0, 0x0}, v2_double = {0x0, 0x0},

v16_int8 = {0x0 <repeats 16 times>}, v8_int16 = {0x0, 0x0, 0x0, 0x0, 0x0,

0x0, 0x0, 0x0}, v4_int32 = {0x0, 0x0, 0x0, 0x0}, v2_int64 = {0x0, 0x0},

uint128 = 0x00000000000000000000000000000000}

xmm2 {v4_float = {0x0, 0x0, 0x0, 0x0}, v2_double = {0x0, 0x0},

v16_int8 = {0x0 <repeats 16 times>}, v8_int16 = {0x0, 0x0, 0x0, 0x0, 0x0,

0x0, 0x0, 0x0}, v4_int32 = {0x0, 0x0, 0x0, 0x0}, v2_int64 = {0x0, 0x0},

uint128 = 0x00000000000000000000000000000000}

xmm3 {v4_float = {0x0, 0x0, 0x0, 0x0}, v2_double = {0x0, 0x0},

v16_int8 = {0x0 <repeats 16 times>}, v8_int16 = {0x0, 0x0, 0x0, 0x0, 0x0,

0x0, 0x0, 0x0}, v4_int32 = {0x0, 0x0, 0x0, 0x0}, v2_int64 = {0x0, 0x0},

uint128 = 0x00000000000000000000000000000000}

xmm4 {v4_float = {0x0, 0x0, 0x0, 0x0}, v2_double = {0x0, 0x0},

v16_int8 = {0x0 <repeats 16 times>}, v8_int16 = {0x0, 0x0, 0x0, 0x0, 0x0,

0x0, 0x0, 0x0}, v4_int32 = {0x0, 0x0, 0x0, 0x0}, v2_int64 = {0x0, 0x0},

uint128 = 0x00000000000000000000000000000000}

xmm5 {v4_float = {0x0, 0x0, 0x0, 0x0}, v2_double = {0x0, 0x0},

v16_int8 = {0x0 <repeats 16 times>}, v8_int16 = {0x0, 0x0, 0x0, 0x0, 0x0,

0x0, 0x0, 0x0}, v4_int32 = {0x0, 0x0, 0x0, 0x0}, v2_int64 = {0x0, 0x0},

uint128 = 0x00000000000000000000000000000000}

xmm6 {v4_float = {0x0, 0x0, 0x0, 0x0}, v2_double = {0x0, 0x0},

v16_int8 = {0x0 <repeats 16 times>}, v8_int16 = {0x0, 0x0, 0x0, 0x0, 0x0,

0x0, 0x0, 0x0}, v4_int32 = {0x0, 0x0, 0x0, 0x0}, v2_int64 = {0x0, 0x0},

uint128 = 0x00000000000000000000000000000000}

xmm7 {v4_float = {0x0, 0x0, 0x0, 0x0}, v2_double = {0x0, 0x0},

v16_int8 = {0x0 <repeats 16 times>}, v8_int16 = {0x0, 0x0, 0x0, 0x0, 0x0,

0x0, 0x0, 0x0}, v4_int32 = {0x0, 0x0, 0x0, 0x0}, v2_int64 = {0x0, 0x0},

uint128 = 0x00000000000000000000000000000000}

mxcsr 0x1f80 [ IM DM ZM OM UM PM ]
mm0 {uint64 = 0xfaf1386e5d100000, v2_int32 = {0x5d100000,

0xfaf1386e}, v4_int16 = {0x0, 0x5d10, 0x386e, 0xfaf1}, v8_int8 = {0x0,
0x0, 0x10, 0x5d, 0x6e, 0x38, 0xf1, 0xfa}}

mm1 {uint64 = 0xab8b47690f840000, v2_int32 = {0xf840000,

0xab8b4769}, v4_int16 = {0x0, 0xf84, 0x4769, 0xab8b}, v8_int8 = {0x0,
0x0, 0x84, 0xf, 0x69, 0x47, 0x8b, 0xab}}

mm2 {uint64 = 0xa70cad681d429310, v2_int32 = {0x1d429310,

0xa70cad68}, v4_int16 = {0x9310, 0x1d42, 0xad68, 0xa70c}, v8_int8 = {
0x10, 0x93, 0x42, 0x1d, 0x68, 0xad, 0xc, 0xa7}}

mm3 {uint64 = 0xb6cb867a345a4ada, v2_int32 = {0x345a4ada,

0xb6cb867a}, v4_int16 = {0x4ada, 0x345a, 0x867a, 0xb6cb}, v8_int8 = {
0xda, 0x4a, 0x5a, 0x34, 0x7a, 0x86, 0xcb, 0xb6}}

mm4 {uint64 = 0x96902f6096902f6, v2_int32 = {0x96902f6,

0x96902f6}, v4_int16 = {0x2f6, 0x969, 0x2f6, 0x969}, v8_int8 = {0xf6,
0x2, 0x69, 0x9, 0xf6, 0x2, 0x69, 0x9}}

mm5 {uint64 = 0xddb3d70000000000, v2_int32 = {0x0, 0xddb3d700},

v4_int16 = {0x0, 0x0, 0xd700, 0xddb3}, v8_int8 = {0x0, 0x0, 0x0, 0x0, 0x0,

0xd7, 0xb3, 0xdd}}

mm6 {uint64 = 0xe78e250000000000, v2_int32 = {0x0, 0xe78e2500},

v4_int16 = {0x0, 0x0, 0x2500, 0xe78e}, v8_int8 = {0x0, 0x0, 0x0, 0x0, 0x0,

0x25, 0x8e, 0xe7}}

mm7 {uint64 = 0x979a6b9a8d359cd1, v2_int32 = {0x8d359cd1,

0x0, 0x10, 0x5d, 0x6e, 0x38, 0xf1, 0xfa}}

mm1 {uint64 = 0xab8b47690f840000, v2_int32 = {0xf840000,

0xab8b4769}, v4_int16 = {0x0, 0xf84, 0x4769, 0xab8b}, v8_int8 = {0x0,
0x0, 0x84, 0xf, 0x69, 0x47, 0x8b, 0xab}}

mm2 {uint64 = 0xa70cad681d429310, v2_int32 = {0x1d429310,

0xa70cad68}, v4_int16 = {0x9310, 0x1d42, 0xad68, 0xa70c}, v8_int8 = {
0x10, 0x93, 0x42, 0x1d, 0x68, 0xad, 0xc, 0xa7}}

mm3 {uint64 = 0xb6cb867a345a4ada, v2_int32 = {0x345a4ada,

0xb6cb867a}, v4_int16 = {0x4ada, 0x345a, 0x867a, 0xb6cb}, v8_int8 = {
0xda, 0x4a, 0x5a, 0x34, 0x7a, 0x86, 0xcb, 0xb6}}

mm4 {uint64 = 0x96902f6096902f6, v2_int32 = {0x96902f6,

0x96902f6}, v4_int16 = {0x2f6, 0x969, 0x2f6, 0x969}, v8_int8 = {0xf6,
0x2, 0x69, 0x9, 0xf6, 0x2, 0x69, 0x9}}

mm5 {uint64 = 0xddb3d70000000000, v2_int32 = {0x0, 0xddb3d700},

v4_int16 = {0x0, 0x0, 0xd700, 0xddb3}, v8_int8 = {0x0, 0x0, 0x0, 0x0, 0x0,

0xd7, 0xb3, 0xdd}}

mm6 {uint64 = 0xe78e250000000000, v2_int32 = {0x0, 0xe78e2500},

v4_int16 = {0x0, 0x0, 0x2500, 0xe78e}, v8_int8 = {0x0, 0x0, 0x0, 0x0, 0x0,

0x25, 0x8e, 0xe7}}

mm7 {uint64 = 0x979a6b9a8d359cd1, v2_int32 = {0x8d359cd1,
---Type <return> to continue, or q <return> to quit---

0x979a6b9a}, v4_int16 = {0x9cd1, 0x8d35, 0x6b9a, 0x979a}, v8_int8 = {
0xd1, 0x9c, 0x35, 0x8d, 0x9a, 0x6b, 0x9a, 0x97}}

This bug was found doing a research for the SUPERB-TRUST 2008.

[ethiodad@…]

Actually I found out there is a bug that was reported recently which looks like the same as bug 1150. this bug is ​http://bugzilla.mplayerhq.hu/show_bug.cgi?id=1121 ; but it was not a crash and it was on mplayer version r27184.