Closed Bug 760814 Opened 12 years ago Closed 12 years ago

Opus crash illegal instruction [@ncwrs_urow]

Tracking

()

Status:

VERIFIED FIXED

Tracking Flags:

Tracking

Status

firefox-esr10

---

unaffected

People

(Reporter: posidron, Unassigned)

References

Details

(Keywords: crash, sec-high, testcase, Whiteboard: [asan])

Attachments

(2 files)

testcase 12 years ago Christoph Diehl [:posidron] 148.81 KB, audio/ogg		Details
callstack 12 years ago Christoph Diehl [:posidron] 17.83 KB, text/plain		Details

Christoph Diehl [:posidron]

Reporter

Description

•

12 years ago

Attached audio testcase — Details

Original sample is: shinjuku.uncoupled.opus


828260352[1446dfe80]: 1446ffa80 Decoding Media Headers
828260352[1446dfe80]: Opus stream header:
828260352[1446dfe80]:  channels: 2
828260352[1446dfe80]:   preskip: 356
828260352[1446dfe80]:  original: 44100 Hz
828260352[1446dfe80]:      gain: 0,00 dB
828260352[1446dfe80]: Channel Mapping:
828260352[1446dfe80]:    family: 1
828260352[1446dfe80]:   streams: 2
828260352[1446dfe80]: WARNING: Invalid Opus packet.: file /Users/cdiehl/Code/Mozilla/mc-asan/content/media/ogg/nsOggCodecState.cpp, line 1015
WARNING: Invalid Opus packet.: file /Users/cdiehl/Code/Mozilla/mc-asan/content/media/ogg/nsOggCodecState.cpp, line 1015
828260352[1446dfe80]: WARNING: Invalid Opus packet.: file /Users/cdiehl/Code/Mozilla/mc-asan/content/media/ogg/nsOggCodecState.cpp, line 1015
WARNING: Invalid Opus packet.: file /Users/cdiehl/Code/Mozilla/mc-asan/content/media/ogg/nsOggCodecState.cpp, line 1015
828260352[1446dfe80]: WARNING: Invalid Opus packet.: file /Users/cdiehl/Code/Mozilla/mc-asan/content/media/ogg/nsOggCodecState.cpp, line 1015
WARNING: Invalid Opus packet.: file /Users/cdiehl/Code/Mozilla/mc-asan/content/media/ogg/nsOggCodecState.cpp, line 1015
828260352[1446dfe80]: WARNING: Invalid Opus packet.: file /Users/cdiehl/Code/Mozilla/mc-asan/content/media/ogg/nsOggCodecState.cpp, line 1015
WARNING: Invalid Opus packet.: file /Users/cdiehl/Code/Mozilla/mc-asan/content/media/ogg/nsOggCodecState.cpp, line 1015
828260352[1446dfe80]: Opus decoder init, to skip 356
828260352[1446dfe80]: Got Ogg duration from seeking to end 9380875
828260352[1446dfe80]: Opus decoder skipping 356 frames
828260352[1446dfe80]: Opus decoder pushing 604 frames
828260352[1446dfe80]: 1446ffa80 Media start time is 50000
828260352[1446dfe80]: 1446ffa80 Media goes from 50000 to 9380875 (duration 9330875) seekable=1
828260352[1446dfe80]: 1446ffa80 Changed state from DECODING_METADATA to DECODING
828260352[1446dfe80]: 1446ffa80 Start DecodeLoop()
828260352[1446dfe80]: Opus decoder pushing 960 frames
828260352[1446dfe80]: Opus decoder pushing 960 frames
828260352[1446dfe80]: Opus decoder pushing 960 frames
828260352[1446dfe80]: Opus decoder pushing 960 frames
828260352[1446dfe80]: Opus decoder pushing 960 frames
828260352[1446dfe80]: Opus decoder pushing 960 frames
828260352[1446dfe80]: Opus decoder pushing 960 frames
828260352[1446dfe80]: Opus decoder pushing 960 frames
828260352[1446dfe80]: Opus decoder pushing 960 frames
828260352[1446dfe80]: Opus decoder pushing 960 frames
828260352[1446dfe80]: Opus decoder pushing 960 frames
828260352[1446dfe80]: Opus decoder pushing 960 frames
828260352[1446dfe80]: Opus decoder pushing 960 frames
828260352[1446dfe80]: Opus decoder pushing 960 frames
828260352[1446dfe80]: Opus decoder pushing 960 frames
828260352[1446dfe80]: Opus decoder pushing 960 frames
828260352[1446dfe80]: Opus decoder pushing 960 frames
828260352[1446dfe80]: Opus decoder pushing 960 frames
828260352[1446dfe80]: Opus decoder pushing 960 frames
828260352[1446dfe80]: Opus decoder pushing 960 frames
828260352[1446dfe80]: Opus decoder pushing 960 frames
828260352[1446dfe80]: Opus decoder pushing 960 frames
828260352[1446dfe80]: Opus decoder pushing 960 frames
828260352[1446dfe80]: Opus decoder pushing 960 frames
828260352[1446dfe80]: Opus decoder pushing 960 frames
828260352[1446dfe80]: Opus decoder pushing 960 frames
828260352[1446dfe80]: Opus decoder pushing 960 frames
828260352[1446dfe80]: Opus decoder pushing 960 frames
828260352[1446dfe80]: Opus decoder pushing 960 frames
828260352[1446dfe80]: Opus decoder pushing 960 frames
828260352[1446dfe80]: Opus decoder pushing 960 frames
828260352[1446dfe80]: Opus decoder pushing 960 frames
Illegal instruction: 4

Christoph Diehl [:posidron]

Reporter

Updated

•

12 years ago

Attachment #629478 - Attachment description: audio/ogg → testcase

Attachment #629478 - Attachment mime type: text/plain → audio/ogg

Christoph Diehl [:posidron]

Reporter

Comment 1

•

12 years ago

Attached file callstack — Details

Christoph Diehl [:posidron]

Reporter

Comment 2

•

12 years ago

Fixed by provided patch in bug 750231

Status: NEW → RESOLVED

Closed: 12 years ago

Resolution: --- → FIXED

Christoph Diehl [:posidron]

Reporter

Updated

•

12 years ago

Status: RESOLVED → VERIFIED

Alex Keybl [:akeybl]

Updated

•

12 years ago

status-firefox-esr10: --- → unaffected

BMO Automation

Updated

•

9 years ago

Group: core-security → core-security-release

Daniel Veditz [:dveditz]

Updated

•

8 years ago

Group: core-security-release

You need to log in before you can comment on or make changes to this bug.

Bugzilla

Quick Search

Opus crash illegal instruction [@ncwrs_urow]

Categories

(Core :: Audio/Video, defect)

Tracking

()

People

(Reporter: posidron, Unassigned)

References

Details

(Keywords: crash, sec-high, testcase, Whiteboard: [asan])

Crash Data

Security

(public)

User Story

Attachments

(2 files)

Description

Updated

Comment 1

Comment 2

Updated

Updated

Updated

Updated

Attachment

General

Description

File Name

Content Type