Conditional jump or move depends on uninitialised value in ff_h264_find_frame_end

Bug #432489 reported by Guillaume Desmottes
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
GStreamer
Fix Released
Medium
gstreamer0.10-ffmpeg (Ubuntu)
Undecided
Unassigned

Bug Description

Binary package hint: gstreamer0.10-ffmpeg

Got this error when valgrinding an audio/video call in Empathy:

==6603== Thread 19:

==6603== Conditional jump or move depends on uninitialised value(s)

==6603== at 0x3626673D: ff_h264_find_frame_end (h264_parser.c:54)

==6603== by 0x36266979: h264_parse (h264_parser.c:248)

==6603== by 0x360A26CB: av_parser_parse (parser.c:160)

==6603== by 0x35ACECCC: gst_ffmpegdec_chain (gstffmpegdec.c:2498)

==6603== by 0x6E8506C: gst_pad_chain_data_unchecked (gstpad.c:4042)

==6603== by 0x6E85B3D: gst_pad_push_data (gstpad.c:4271)

==6603== by 0x2B34A09C: gst_rtp_h264_depay_process (gstrtph264depay.c:622)

==6603== by 0x22F9D65E: (within /usr/lib/libgstrtp-0.10.so.0.18.0)

==6603== by 0x6E8506C: gst_pad_chain_data_unchecked (gstpad.c:4042)

==6603== by 0x6E85B3D: gst_pad_push_data (gstpad.c:4271)

==6603== by 0x6E8506C: gst_pad_chain_data_unchecked (gstpad.c:4042)

==6603== by 0x6E85B3D: gst_pad_push_data (gstpad.c:4271)

==6603== by 0xC43AB71: gst_base_transform_chain (gstbasetransform.c:2081)

==6603== by 0x6E8506C: gst_pad_chain_data_unchecked (gstpad.c:4042)

==6603== by 0x6E85B3D: gst_pad_push_data (gstpad.c:4271)

==6603== by 0x235D817E: gst_valve_chain (gstvalve.c:214)

==6603== by 0x6E8506C: gst_pad_chain_data_unchecked (gstpad.c:4042)

==6603== by 0x6E85B3D: gst_pad_push_data (gstpad.c:4271)

==6603== by 0x6E8506C: gst_pad_chain_data_unchecked (gstpad.c:4042)

==6603== by 0x6E85B3D: gst_pad_push_data (gstpad.c:4271)

==6603==

==6603== Invalid read of size 8

==6603== at 0x3626672B: ff_h264_find_frame_end (h264_parser.c:54)

==6603== by 0x36266979: h264_parse (h264_parser.c:248)

==6603== by 0x360A26CB: av_parser_parse (parser.c:160)

==6603== by 0x35ACECCC: gst_ffmpegdec_chain (gstffmpegdec.c:2498)

==6603== by 0x6E8506C: gst_pad_chain_data_unchecked (gstpad.c:4042)

==6603== by 0x6E85B3D: gst_pad_push_data (gstpad.c:4271)

==6603== by 0x22F9D672: (within /usr/lib/libgstrtp-0.10.so.0.18.0)

==6603== by 0x6E8506C: gst_pad_chain_data_unchecked (gstpad.c:4042)

==6603== by 0x6E85B3D: gst_pad_push_data (gstpad.c:4271)

==6603== by 0x6E8506C: gst_pad_chain_data_unchecked (gstpad.c:4042)

==6603== by 0x6E85B3D: gst_pad_push_data (gstpad.c:4271)

==6603== by 0xC43AB71: gst_base_transform_chain (gstbasetransform.c:2081)

==6603== by 0x6E8506C: gst_pad_chain_data_unchecked (gstpad.c:4042)

==6603== by 0x6E85B3D: gst_pad_push_data (gstpad.c:4271)

==6603== by 0x235D817E: gst_valve_chain (gstvalve.c:214)

==6603== by 0x6E8506C: gst_pad_chain_data_unchecked (gstpad.c:4042)

==6603== by 0x6E85B3D: gst_pad_push_data (gstpad.c:4271)

==6603== by 0x6E8506C: gst_pad_chain_data_unchecked (gstpad.c:4042)

==6603== by 0x6E85B3D: gst_pad_push_data (gstpad.c:4271)

==6603== by 0x6E8506C: gst_pad_chain_data_unchecked (gstpad.c:4042)

==6603== Address 0x170842b0 is 0 bytes inside a block of size 6 alloc'd

==6603== at 0x4C268FE: malloc (vg_replace_malloc.c:207)

==6603== by 0xB4C8382: g_malloc (gmem.c:131)

==6603== by 0x6E587A6: gst_buffer_new_and_alloc (gstbuffer.c:308)

==6603== by 0x2B34A01A: gst_rtp_h264_depay_process (gstrtph264depay.c:604)

==6603== by 0x22F9D65E: (within /usr/lib/libgstrtp-0.10.so.0.18.0)

==6603== by 0x6E8506C: gst_pad_chain_data_unchecked (gstpad.c:4042)

==6603== by 0x6E85B3D: gst_pad_push_data (gstpad.c:4271)

==6603== by 0x6E8506C: gst_pad_chain_data_unchecked (gstpad.c:4042)

==6603== by 0x6E85B3D: gst_pad_push_data (gstpad.c:4271)

==6603== by 0xC43AB71: gst_base_transform_chain (gstbasetransform.c:2081)

==6603== by 0x6E8506C: gst_pad_chain_data_unchecked (gstpad.c:4042)

==6603== by 0x6E85B3D: gst_pad_push_data (gstpad.c:4271)

==6603== by 0x235D817E: gst_valve_chain (gstvalve.c:214)

==6603== by 0x6E8506C: gst_pad_chain_data_unchecked (gstpad.c:4042)

==6603== by 0x6E85B3D: gst_pad_push_data (gstpad.c:4271)

==6603== by 0x6E8506C: gst_pad_chain_data_unchecked (gstpad.c:4042)

==6603== by 0x6E85B3D: gst_pad_push_data (gstpad.c:4271)

==6603== by 0x6E8506C: gst_pad_chain_data_unchecked (gstpad.c:4042)

==6603== by 0x6E85B3D: gst_pad_push_data (gstpad.c:4271)

==6603== by 0x231B4FE3: gst_rtp_jitter_buffer_loop (gstrtpjitterbuffer.c:1655)

==6603==

==6603== Invalid read of size 1

==6603== at 0x4C27508: memcpy (mc_replace_strmem.c:402)

==6603== by 0x360A23B6: ff_combine_frame (string3.h:52)

==6603== by 0x36266994: h264_parse (h264_parser.c:250)

==6603== by 0x360A26CB: av_parser_parse (parser.c:160)

==6603== by 0x35ACECCC: gst_ffmpegdec_chain (gstffmpegdec.c:2498)

==6603== by 0x6E8506C: gst_pad_chain_data_unchecked (gstpad.c:4042)

==6603== by 0x6E85B3D: gst_pad_push_data (gstpad.c:4271)

==6603== by 0x22F9D672: (within /usr/lib/libgstrtp-0.10.so.0.18.0)

==6603== by 0x6E8506C: gst_pad_chain_data_unchecked (gstpad.c:4042)

==6603== by 0x6E85B3D: gst_pad_push_data (gstpad.c:4271)

==6603== by 0x6E8506C: gst_pad_chain_data_unchecked (gstpad.c:4042)

==6603== by 0x6E85B3D: gst_pad_push_data (gstpad.c:4271)

==6603== by 0xC43AB71: gst_base_transform_chain (gstbasetransform.c:2081)

==6603== by 0x6E8506C: gst_pad_chain_data_unchecked (gstpad.c:4042)

==6603== by 0x6E85B3D: gst_pad_push_data (gstpad.c:4271)

==6603== by 0x235D817E: gst_valve_chain (gstvalve.c:214)

==6603== by 0x6E8506C: gst_pad_chain_data_unchecked (gstpad.c:4042)

==6603== by 0x6E85B3D: gst_pad_push_data (gstpad.c:4271)

==6603== by 0x6E8506C: gst_pad_chain_data_unchecked (gstpad.c:4042)

==6603== by 0x6E85B3D: gst_pad_push_data (gstpad.c:4271)

==6603== Address 0x17bcd327 is 1 bytes after a block of size 6 alloc'd

==6603== at 0x4C268FE: malloc (vg_replace_malloc.c:207)

==6603== by 0xB4C8382: g_malloc (gmem.c:131)

==6603== by 0x6E587A6: gst_buffer_new_and_alloc (gstbuffer.c:308)

==6603== by 0x2B34A01A: gst_rtp_h264_depay_process (gstrtph264depay.c:604)

==6603== by 0x22F9D65E: (within /usr/lib/libgstrtp-0.10.so.0.18.0)

==6603== by 0x6E8506C: gst_pad_chain_data_unchecked (gstpad.c:4042)

==6603== by 0x6E85B3D: gst_pad_push_data (gstpad.c:4271)

==6603== by 0x6E8506C: gst_pad_chain_data_unchecked (gstpad.c:4042)

==6603== by 0x6E85B3D: gst_pad_push_data (gstpad.c:4271)

==6603== by 0xC43AB71: gst_base_transform_chain (gstbasetransform.c:2081)

==6603== by 0x6E8506C: gst_pad_chain_data_unchecked (gstpad.c:4042)

==6603== by 0x6E85B3D: gst_pad_push_data (gstpad.c:4271)

==6603== by 0x235D817E: gst_valve_chain (gstvalve.c:214)

==6603== by 0x6E8506C: gst_pad_chain_data_unchecked (gstpad.c:4042)

==6603== by 0x6E85B3D: gst_pad_push_data (gstpad.c:4271)

==6603== by 0x6E8506C: gst_pad_chain_data_unchecked (gstpad.c:4042)

==6603== by 0x6E85B3D: gst_pad_push_data (gstpad.c:4271)

==6603== by 0x6E8506C: gst_pad_chain_data_unchecked (gstpad.c:4042)

==6603== by 0x6E85B3D: gst_pad_push_data (gstpad.c:4271)

==6603== by 0x231B4FE3: gst_rtp_jitter_buffer_loop (gstrtpjitterbuffer.c:1655)

ProblemType: Bug
Architecture: amd64
Date: Fri Sep 18 14:36:43 2009
DistroRelease: Ubuntu 9.10
Package: gstreamer0.10-ffmpeg 0.10.8.2-1
ProcEnviron:
 PATH=(custom, user)
 LANG=fr_FR.UTF-8
 SHELL=/bin/bash
ProcVersionSignature: Ubuntu 2.6.31-10.32-generic
SourcePackage: gstreamer0.10-ffmpeg
Uname: Linux 2.6.31-10-generic x86_64

Revision history for this message
Guillaume Desmottes (cassidy) wrote :
Changed in gstreamer:
status: Unknown → New
Changed in gstreamer:
importance: Unknown → Medium
Changed in gstreamer:
status: New → Confirmed
Changed in gstreamer:
status: Confirmed → Fix Released
To post a comment you must log in.
This report contains Public information  Edit
Everyone can see this information.

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.