[MPlayer-dev-eng] [BUG][PATCH][RESEND] Another small bug in libmpeg2 0.4.0b usage
Sascha Sommer
saschasommer at freenet.de
Wed Sep 15 14:14:48 CEST 2004
On Tuesday 31 August 2004 04:11, Shachar Raindel wrote:
> Hi,
> I have sent this as part of the thread related to libmpeg2 problems,
> but since everybody seems to skip it, I resend it with some more
> attention drawing headers.
>
>
> After hunting this bug, I runned mplayer under valgrind, and found
> another hidden bug in the libmpeg2 code (vd_libmpeg2.c). This bug is
> triggered when libmpeg2 is fed with a large amount of bogus data,
> causing it to to return while we try to feed it from the pending data
> buffer, causing us to realloc the pending data buffer, and than try to
> move the memory inside it, which might cause segmantation fault,
> especially if glibc has freed the area. I attach a patch which should
> fix this bug as well.
This patch does not apply to the current vd_libmpeg2.c. Could
you please check if the problem still exists with current cvs?
Sascha
More information about the MPlayer-dev-eng
mailing list