Closed Bug 1233606 Opened 9 years ago Closed 9 years ago

FFMPEG: SEGV in [@ff_h264_decode_ref_pic_list_reordering]

Categories

(Core :: Audio/Video: Playback, defect)

defect
Not set
critical

Tracking

()

RESOLVED FIXED
Tracking Status
firefox46 --- affected

People

(Reporter: tsmith, Unassigned)

References

Details

(4 keywords)

Attachments

(2 files)

Attached file call_stack.txt
Found fuzzing ffmpeg commit: c67cf84d7c65fc4894db3133cabbbe0ac0aa1cb0 ffmpeg version N-77342-gc67cf84d Copyright (c) 2000-2015 the FFmpeg developers built with clang version 3.7.0 (tags/RELEASE_370/final) configuration: --cc=clang --cxx=clang++ --disable-logging --disable-ffprobe --disable-ffplay --disable-sdl --disable-ffserver --disable-doc --disable-pthreads --disable-network --disable-d3d11va --disable-dxva2 --disable-vaapi --disable-vda --disable-vdpau --enable-pic --disable-stripping --disable-runtime-cpudetect --disable-postproc --disable-everything --enable-encoder='pcm_s16le,wrapped_avframe' --disable-lzma --enable-protocol='file,pipe' --enable-muxer=null --enable-filter=aresample --enable-demuxer='aac,mp3,h264,ivf' --enable-parser='aac,mpegaudio,h264,vp9,vp8' --enable-decoder='aac,mp3,mp3float,h264,vp9,vp8' --enable-bsf='mp3_header_decompress,h264_mp4toannexb' --disable-optimizations --disable-asm --disable-yasm To reproduce run with command: ./ffmpeg -f h264 -i test_case.264 -f null -
Attached file test_case.264
Fixed in b92b4775a0d07cacfdd2b4be6511f3cb362c977b
Thanks Michael!
Status: NEW → RESOLVED
Closed: 9 years ago
Resolution: --- → FIXED
Group: media-core-security → core-security-release
Group: core-security-release
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Created:
Updated:
Size: