Carl Eugen Hoyos <[email protected]> added the comment:
I can only reproduce the invalid reads on both x86-64 (gcc 4.3.2) and x86-32 (gcc 2.95.3) on OpenSuse. ==6170== Invalid read of size 4 ==6170== at 0x6E1A4A: ff_msmpeg4_decode_block (msmpeg4.c:1624) ==6170== by 0x7BDC49: ff_wmv2_decode_mb (wmv2dec.c:450) ==6170== by 0x6497B0: decode_slice (h263dec.c:222) ==6170== by 0x648EE6: ff_h263_decode_frame (h263dec.c:649) ==6170== by 0x4DDC7A: avcodec_decode_video2 (utils.c:584) ==6170== by 0x40D66E: output_packet (ffmpeg.c:1345) ==6170== by 0x40CC40: av_encode (ffmpeg.c:2306) ==6170== by 0x40A2F3: main (ffmpeg.c:4006) ==6170== Address 0xbad7cd9 is 197,017 bytes inside a block of size 197,020 alloc'd ==6170== at 0x4C23570: memalign (vg_replace_malloc.c:460) ==6170== by 0x4C2362A: posix_memalign (vg_replace_malloc.c:569) ==6170== by 0xABEA64: av_malloc (mem.c:66) ==6170== by 0x4D3620: av_new_packet (avpacket.c:52) ==6170== by 0x44F1F3: asf_read_packet (asfdec.c:947) ==6170== by 0x439241: av_read_packet (utils.c:581) ==6170== by 0x438F49: av_read_frame_internal (utils.c:1001) ==6170== by 0x438946: av_read_frame (utils.c:1124) ==6170== by 0x40C8E8: av_encode (ffmpeg.c:2249) ==6170== by 0x40A2F3: main (ffmpeg.c:4006) ==6170== ==6170== Invalid read of size 4 ==6170== at 0x6E1D0F: ff_msmpeg4_decode_block (msmpeg4.c:1682) ==6170== by 0x7BDC49: ff_wmv2_decode_mb (wmv2dec.c:450) ==6170== by 0x6497B0: decode_slice (h263dec.c:222) ==6170== by 0x648EE6: ff_h263_decode_frame (h263dec.c:649) ==6170== by 0x4DDC7A: avcodec_decode_video2 (utils.c:584) ==6170== by 0x40D66E: output_packet (ffmpeg.c:1345) ==6170== by 0x40CC40: av_encode (ffmpeg.c:2306) ==6170== by 0x40A2F3: main (ffmpeg.c:4006) ==6170== Address 0xbad7cda is 197,018 bytes inside a block of size 197,020 alloc'd ==6170== at 0x4C23570: memalign (vg_replace_malloc.c:460) ==6170== by 0x4C2362A: posix_memalign (vg_replace_malloc.c:569) ==6170== by 0xABEA64: av_malloc (mem.c:66) ==6170== by 0x4D3620: av_new_packet (avpacket.c:52) ==6170== by 0x44F1F3: asf_read_packet (asfdec.c:947) ==6170== by 0x439241: av_read_packet (utils.c:581) ==6170== by 0x438F49: av_read_frame_internal (utils.c:1001) ==6170== by 0x438946: av_read_frame (utils.c:1124) ==6170== by 0x40C8E8: av_encode (ffmpeg.c:2249) ==6170== by 0x40A2F3: main (ffmpeg.c:4006) ==6170== ==6170== Invalid read of size 4 ==6170== at 0x6E1A95: ff_msmpeg4_decode_block (msmpeg4.c:1624) ==6170== by 0x7BDC49: ff_wmv2_decode_mb (wmv2dec.c:450) ==6170== by 0x6497B0: decode_slice (h263dec.c:222) ==6170== by 0x648EE6: ff_h263_decode_frame (h263dec.c:649) ==6170== by 0x4DDC7A: avcodec_decode_video2 (utils.c:584) ==6170== by 0x40D66E: output_packet (ffmpeg.c:1345) ==6170== by 0x40CC40: av_encode (ffmpeg.c:2306) ==6170== by 0x40A2F3: main (ffmpeg.c:4006) ==6170== Address 0xbad7cdb is 197,019 bytes inside a block of size 197,020 alloc'd ==6170== at 0x4C23570: memalign (vg_replace_malloc.c:460) ==6170== by 0x4C2362A: posix_memalign (vg_replace_malloc.c:569) ==6170== by 0xABEA64: av_malloc (mem.c:66) ==6170== by 0x4D3620: av_new_packet (avpacket.c:52) ==6170== by 0x44F1F3: asf_read_packet (asfdec.c:947) ==6170== by 0x439241: av_read_packet (utils.c:581) ==6170== by 0x438F49: av_read_frame_internal (utils.c:1001) ==6170== by 0x438946: av_read_frame (utils.c:1124) ==6170== by 0x40C8E8: av_encode (ffmpeg.c:2249) ==6170== by 0x40A2F3: main (ffmpeg.c:4006) ==6170== ==6170== Invalid read of size 4 ==6170== at 0x7BD514: ff_wmv2_decode_mb (wmv2dec.c:381) ==6170== by 0x6497B0: decode_slice (h263dec.c:222) ==6170== by 0x648EE6: ff_h263_decode_frame (h263dec.c:649) ==6170== by 0x4DDC7A: avcodec_decode_video2 (utils.c:584) ==6170== by 0x40D66E: output_packet (ffmpeg.c:1345) ==6170== by 0x40CC40: av_encode (ffmpeg.c:2306) ==6170== by 0x40A2F3: main (ffmpeg.c:4006) ==6170== Address 0xbad7cde is 2 bytes after a block of size 197,020 alloc'd ==6170== at 0x4C23570: memalign (vg_replace_malloc.c:460) ==6170== by 0x4C2362A: posix_memalign (vg_replace_malloc.c:569) ==6170== by 0xABEA64: av_malloc (mem.c:66) ==6170== by 0x4D3620: av_new_packet (avpacket.c:52) ==6170== by 0x44F1F3: asf_read_packet (asfdec.c:947) ==6170== by 0x439241: av_read_packet (utils.c:581) ==6170== by 0x438F49: av_read_frame_internal (utils.c:1001) ==6170== by 0x438946: av_read_frame (utils.c:1124) ==6170== by 0x40C8E8: av_encode (ffmpeg.c:2249) ==6170== by 0x40A2F3: main (ffmpeg.c:4006) ==6170== ==6170== Invalid read of size 1 ==6170== at 0x7BDB44: ff_wmv2_decode_mb (wmv2dec.c:438) ==6170== by 0x6497B0: decode_slice (h263dec.c:222) ==6170== by 0x648EE6: ff_h263_decode_frame (h263dec.c:649) ==6170== by 0x4DDC7A: avcodec_decode_video2 (utils.c:584) ==6170== by 0x40D66E: output_packet (ffmpeg.c:1345) ==6170== by 0x40CC40: av_encode (ffmpeg.c:2306) ==6170== by 0x40A2F3: main (ffmpeg.c:4006) ==6170== Address 0xbad7cdf is 3 bytes after a block of size 197,020 alloc'd ==6170== at 0x4C23570: memalign (vg_replace_malloc.c:460) ==6170== by 0x4C2362A: posix_memalign (vg_replace_malloc.c:569) ==6170== by 0xABEA64: av_malloc (mem.c:66) ==6170== by 0x4D3620: av_new_packet (avpacket.c:52) ==6170== by 0x44F1F3: asf_read_packet (asfdec.c:947) ==6170== by 0x439241: av_read_packet (utils.c:581) ==6170== by 0x438F49: av_read_frame_internal (utils.c:1001) ==6170== by 0x438946: av_read_frame (utils.c:1124) ==6170== by 0x40C8E8: av_encode (ffmpeg.c:2249) ==6170== by 0x40A2F3: main (ffmpeg.c:4006) ==6170== ==6170== Invalid read of size 1 ==6170== at 0x6E1AE1: ff_msmpeg4_decode_block (msmpeg4.c:1624) ==6170== by 0x7BDC49: ff_wmv2_decode_mb (wmv2dec.c:450) ==6170== by 0x6497B0: decode_slice (h263dec.c:222) ==6170== by 0x648EE6: ff_h263_decode_frame (h263dec.c:649) ==6170== by 0x4DDC7A: avcodec_decode_video2 (utils.c:584) ==6170== by 0x40D66E: output_packet (ffmpeg.c:1345) ==6170== by 0x40CC40: av_encode (ffmpeg.c:2306) ==6170== by 0x40A2F3: main (ffmpeg.c:4006) ==6170== Address 0xbad7ce0 is 4 bytes after a block of size 197,020 alloc'd ==6170== at 0x4C23570: memalign (vg_replace_malloc.c:460) ==6170== by 0x4C2362A: posix_memalign (vg_replace_malloc.c:569) ==6170== by 0xABEA64: av_malloc (mem.c:66) ==6170== by 0x4D3620: av_new_packet (avpacket.c:52) ==6170== by 0x44F1F3: asf_read_packet (asfdec.c:947) ==6170== by 0x439241: av_read_packet (utils.c:581) ==6170== by 0x438F49: av_read_frame_internal (utils.c:1001) ==6170== by 0x438946: av_read_frame (utils.c:1124) ==6170== by 0x40C8E8: av_encode (ffmpeg.c:2249) ==6170== by 0x40A2F3: main (ffmpeg.c:4006) [wmv2 @ 0xa92a350]overreading 22274 bits [wmv2 @ 0xa92a350]concealing 1900 DC, 1900 AC, 1900 MV errors [wmv2 @ 0xa92a350]overreading 21759 bitsB time=41.36 bitrate= -0.0kbits/s [wmv2 @ 0xa92a350]concealing 1900 DC, 1900 AC, 1900 MV errors [wmv2 @ 0xa92a350]overreading 22221 bitsB time=41.80 bitrate= -0.0kbits/s [wmv2 @ 0xa92a350]concealing 1900 DC, 1900 AC, 1900 MV errors [wmv2 @ 0xa92a350]overreading 22099 bitsB time=42.28 bitrate= -0.0kbits/s [wmv2 @ 0xa92a350]concealing 1900 DC, 1900 AC, 1900 MV errors [wmv2 @ 0xa92a350]overreading 22285 bitsB time=42.76 bitrate= -0.0kbits/s [wmv2 @ 0xa92a350]concealing 1900 DC, 1900 AC, 1900 MV errors [wmv2 @ 0xa92a350]overreading 22219 bitsB time=43.24 bitrate= -0.0kbits/s [wmv2 @ 0xa92a350]concealing 1900 DC, 1900 AC, 1900 MV errors [wmv2 @ 0xa92a350]overreading 22103 bitsB time=43.72 bitrate= -0.0kbits/s [wmv2 @ 0xa92a350]concealing 1900 DC, 1900 AC, 1900 MV errors [wmv2 @ 0xa92a350]overreading 22202 bitsB time=44.20 bitrate= -0.0kbits/s [wmv2 @ 0xa92a350]concealing 1900 DC, 1900 AC, 1900 MV errors [wmv2 @ 0xa92a350]overreading 21770 bitsB time=44.68 bitrate= -0.0kbits/s [wmv2 @ 0xa92a350]concealing 1900 DC, 1900 AC, 1900 MV errors ==6170== 57 fps= 24 q=0.0 size= -0kB time=54.28 bitrate= -0.0kbits/s ==6170== Invalid read of size 4 ==6170== at 0x6E1F4B: ff_msmpeg4_decode_block (msmpeg4.c:1800) ==6170== by 0x7BDC49: ff_wmv2_decode_mb (wmv2dec.c:450) ==6170== by 0x6497B0: decode_slice (h263dec.c:222) ==6170== by 0x648EE6: ff_h263_decode_frame (h263dec.c:649) ==6170== by 0x4DDC7A: avcodec_decode_video2 (utils.c:584) ==6170== by 0x40D66E: output_packet (ffmpeg.c:1345) ==6170== by 0x40CC40: av_encode (ffmpeg.c:2306) ==6170== by 0x40A2F3: main (ffmpeg.c:4006) ==6170== Address 0xb6e370f is not stack'd, malloc'd or (recently) free'd ==6170== ==6170== Invalid read of size 4 ==6170== at 0x6E20DF: ff_msmpeg4_decode_block (msmpeg4.c:1624) ==6170== by 0x7BDC49: ff_wmv2_decode_mb (wmv2dec.c:450) ==6170== by 0x6497B0: decode_slice (h263dec.c:222) ==6170== by 0x648EE6: ff_h263_decode_frame (h263dec.c:649) ==6170== by 0x4DDC7A: avcodec_decode_video2 (utils.c:584) ==6170== by 0x40D66E: output_packet (ffmpeg.c:1345) ==6170== by 0x40CC40: av_encode (ffmpeg.c:2306) ==6170== by 0x40A2F3: main (ffmpeg.c:4006) ==6170== Address 0xb6e3776 is not stack'd, malloc'd or (recently) free'd ==6170== ==6170== Invalid read of size 4 ==6170== at 0x6E239B: ff_msmpeg4_decode_block (msmpeg4.c:1624) ==6170== by 0x7BDC49: ff_wmv2_decode_mb (wmv2dec.c:450) ==6170== by 0x6497B0: decode_slice (h263dec.c:222) ==6170== by 0x648EE6: ff_h263_decode_frame (h263dec.c:649) ==6170== by 0x4DDC7A: avcodec_decode_video2 (utils.c:584) ==6170== by 0x40D66E: output_packet (ffmpeg.c:1345) ==6170== by 0x40CC40: av_encode (ffmpeg.c:2306) ==6170== by 0x40A2F3: main (ffmpeg.c:4006) ==6170== Address 0xb6e38aa is not stack'd, malloc'd or (recently) free'd [wmv2 @ 0xa92a350]ac-tex damaged at 34 35 [wmv2 @ 0xa92a350] error while decoding intra block: 34 x 35 (1) [wmv2 @ 0xa92a350]Error at MB: 1819 [wmv2 @ 0xa92a350]concealing 165 DC, 165 AC, 165 MV errors ==6170== 88 fps= 24 q=0.0 size= -0kB time=55.52 bitrate= -0.0kbits/s ==6170== Invalid read of size 4 ==6170== at 0x6E1DA8: ff_msmpeg4_decode_block (msmpeg4.c:1692) ==6170== by 0x7BDC49: ff_wmv2_decode_mb (wmv2dec.c:450) ==6170== by 0x6497B0: decode_slice (h263dec.c:222) ==6170== by 0x648EE6: ff_h263_decode_frame (h263dec.c:649) ==6170== by 0x4DDC7A: avcodec_decode_video2 (utils.c:584) ==6170== by 0x40D66E: output_packet (ffmpeg.c:1345) ==6170== by 0x40CC40: av_encode (ffmpeg.c:2306) ==6170== by 0x40A2F3: main (ffmpeg.c:4006) ==6170== Address 0xb7d36ad is not stack'd, malloc'd or (recently) free'd [wmv2 @ 0xa92a350]ac-tex damaged at 16 37 [wmv2 @ 0xa92a350] error while decoding intra block: 16 x 37 (2) [wmv2 @ 0xa92a350]Error at MB: 1903 [wmv2 @ 0xa92a350]concealing 83 DC, 83 AC, 83 MV errors ==6170== 24 fps= 25 q=0.0 size= -0kB time=108.96 bitrate= -0.0kbits/s ==6170== Invalid read of size 4 ==6170== at 0x7BDDDB: ff_wmv2_decode_mb (wmv2dec.c:381) ==6170== by 0x6497B0: decode_slice (h263dec.c:222) ==6170== by 0x648EE6: ff_h263_decode_frame (h263dec.c:649) ==6170== by 0x4DDC7A: avcodec_decode_video2 (utils.c:584) ==6170== by 0x40D66E: output_packet (ffmpeg.c:1345) ==6170== by 0x40CC40: av_encode (ffmpeg.c:2306) ==6170== by 0x40A2F3: main (ffmpeg.c:4006) ==6170== Address 0xb6bd704 is not stack'd, malloc'd or (recently) free'd ==6170== ==6170== Invalid read of size 4 ==6170== at 0x6E211B: ff_msmpeg4_decode_block (msmpeg4.c:1624) ==6170== by 0x7BDC49: ff_wmv2_decode_mb (wmv2dec.c:450) ==6170== by 0x6497B0: decode_slice (h263dec.c:222) ==6170== by 0x648EE6: ff_h263_decode_frame (h263dec.c:649) ==6170== by 0x4DDC7A: avcodec_decode_video2 (utils.c:584) ==6170== by 0x40D66E: output_packet (ffmpeg.c:1345) ==6170== by 0x40CC40: av_encode (ffmpeg.c:2306) ==6170== by 0x40A2F3: main (ffmpeg.c:4006) ==6170== Address 0xb6bd8bf is not stack'd, malloc'd or (recently) free'd [wmv2 @ 0xa92a350]ac-tex damaged at 25 37 [wmv2 @ 0xa92a350] error while decoding intra block: 25 x 37 (2) [wmv2 @ 0xa92a350]Error at MB: 1912 [wmv2 @ 0xa92a350]concealing 74 DC, 74 AC, 74 MV errors ==6170== 63 fps= 24 q=0.0 size= -0kB time=258.52 bitrate= -0.0kbits/s ==6170== Invalid read of size 4 ==6170== at 0x6E1D0F: ff_msmpeg4_decode_block (msmpeg4.c:1682) ==6170== by 0x7BDAF1: ff_wmv2_decode_mb (wmv2dec.c:428) ==6170== by 0x6497B0: decode_slice (h263dec.c:222) ==6170== by 0x648EE6: ff_h263_decode_frame (h263dec.c:649) ==6170== by 0x4DDC7A: avcodec_decode_video2 (utils.c:584) ==6170== by 0x40D66E: output_packet (ffmpeg.c:1345) ==6170== by 0x40CC40: av_encode (ffmpeg.c:2306) ==6170== by 0x40A2F3: main (ffmpeg.c:4006) ==6170== Address 0xbb95b4e is 197,086 bytes inside a block of size 197,088 alloc'd ==6170== at 0x4C23570: memalign (vg_replace_malloc.c:460) ==6170== by 0x4C2362A: posix_memalign (vg_replace_malloc.c:569) ==6170== by 0xABEA64: av_malloc (mem.c:66) ==6170== by 0x4D3620: av_new_packet (avpacket.c:52) ==6170== by 0x44F1F3: asf_read_packet (asfdec.c:947) ==6170== by 0x439241: av_read_packet (utils.c:581) ==6170== by 0x438F49: av_read_frame_internal (utils.c:1001) ==6170== by 0x438946: av_read_frame (utils.c:1124) ==6170== by 0x40C8E8: av_encode (ffmpeg.c:2249) ==6170== by 0x40A2F3: main (ffmpeg.c:4006) ==6170== ==6170== Invalid read of size 4 ==6170== at 0x7BD49A: ff_wmv2_decode_mb (wmv2dec.c:373) ==6170== by 0x6497B0: decode_slice (h263dec.c:222) ==6170== by 0x648EE6: ff_h263_decode_frame (h263dec.c:649) ==6170== by 0x4DDC7A: avcodec_decode_video2 (utils.c:584) ==6170== by 0x40D66E: output_packet (ffmpeg.c:1345) ==6170== by 0x40CC40: av_encode (ffmpeg.c:2306) ==6170== by 0x40A2F3: main (ffmpeg.c:4006) ==6170== Address 0xbb95b4f is 197,087 bytes inside a block of size 197,088 alloc'd ==6170== at 0x4C23570: memalign (vg_replace_malloc.c:460) ==6170== by 0x4C2362A: posix_memalign (vg_replace_malloc.c:569) ==6170== by 0xABEA64: av_malloc (mem.c:66) ==6170== by 0x4D3620: av_new_packet (avpacket.c:52) ==6170== by 0x44F1F3: asf_read_packet (asfdec.c:947) ==6170== by 0x439241: av_read_packet (utils.c:581) ==6170== by 0x438F49: av_read_frame_internal (utils.c:1001) ==6170== by 0x438946: av_read_frame (utils.c:1124) ==6170== by 0x40C8E8: av_encode (ffmpeg.c:2249) ==6170== by 0x40A2F3: main (ffmpeg.c:4006) ==6170== ==6170== Invalid read of size 4 ==6170== at 0x6E2CE5: ff_msmpeg4_decode_motion (msmpeg4.c:1922) ==6170== by 0x7BD8B9: ff_wmv2_decode_mb (wmv2dec.c:419) ==6170== by 0x6497B0: decode_slice (h263dec.c:222) ==6170== by 0x648EE6: ff_h263_decode_frame (h263dec.c:649) ==6170== by 0x4DDC7A: avcodec_decode_video2 (utils.c:584) ==6170== by 0x40D66E: output_packet (ffmpeg.c:1345) ==6170== by 0x40CC40: av_encode (ffmpeg.c:2306) ==6170== by 0x40A2F3: main (ffmpeg.c:4006) ==6170== Address 0xbb95b50 is 0 bytes after a block of size 197,088 alloc'd ==6170== at 0x4C23570: memalign (vg_replace_malloc.c:460) ==6170== by 0x4C2362A: posix_memalign (vg_replace_malloc.c:569) ==6170== by 0xABEA64: av_malloc (mem.c:66) ==6170== by 0x4D3620: av_new_packet (avpacket.c:52) ==6170== by 0x44F1F3: asf_read_packet (asfdec.c:947) ==6170== by 0x439241: av_read_packet (utils.c:581) ==6170== by 0x438F49: av_read_frame_internal (utils.c:1001) ==6170== by 0x438946: av_read_frame (utils.c:1124) ==6170== by 0x40C8E8: av_encode (ffmpeg.c:2249) ==6170== by 0x40A2F3: main (ffmpeg.c:4006) ==6170== ==6170== Invalid read of size 4 ==6170== at 0x6E2D56: ff_msmpeg4_decode_motion (msmpeg4.c:1929) ==6170== by 0x7BD8B9: ff_wmv2_decode_mb (wmv2dec.c:419) ==6170== by 0x6497B0: decode_slice (h263dec.c:222) ==6170== by 0x648EE6: ff_h263_decode_frame (h263dec.c:649) ==6170== by 0x4DDC7A: avcodec_decode_video2 (utils.c:584) ==6170== by 0x40D66E: output_packet (ffmpeg.c:1345) ==6170== by 0x40CC40: av_encode (ffmpeg.c:2306) ==6170== by 0x40A2F3: main (ffmpeg.c:4006) ==6170== Address 0xbb95b56 is 6 bytes after a block of size 197,088 alloc'd ==6170== at 0x4C23570: memalign (vg_replace_malloc.c:460) ==6170== by 0x4C2362A: posix_memalign (vg_replace_malloc.c:569) ==6170== by 0xABEA64: av_malloc (mem.c:66) ==6170== by 0x4D3620: av_new_packet (avpacket.c:52) ==6170== by 0x44F1F3: asf_read_packet (asfdec.c:947) ==6170== by 0x439241: av_read_packet (utils.c:581) ==6170== by 0x438F49: av_read_frame_internal (utils.c:1001) ==6170== by 0x438946: av_read_frame (utils.c:1124) ==6170== by 0x40C8E8: av_encode (ffmpeg.c:2249) ==6170== by 0x40A2F3: main (ffmpeg.c:4006) ==6170== ==6170== Invalid read of size 4 ==6170== at 0x6E2D79: ff_msmpeg4_decode_motion (msmpeg4.c:1930) ==6170== by 0x7BD8B9: ff_wmv2_decode_mb (wmv2dec.c:419) ==6170== by 0x6497B0: decode_slice (h263dec.c:222) ==6170== by 0x648EE6: ff_h263_decode_frame (h263dec.c:649) ==6170== by 0x4DDC7A: avcodec_decode_video2 (utils.c:584) ==6170== by 0x40D66E: output_packet (ffmpeg.c:1345) ==6170== by 0x40CC40: av_encode (ffmpeg.c:2306) ==6170== by 0x40A2F3: main (ffmpeg.c:4006) ==6170== Address 0xbb95b57 is 7 bytes after a block of size 197,088 alloc'd ==6170== at 0x4C23570: memalign (vg_replace_malloc.c:460) ==6170== by 0x4C2362A: posix_memalign (vg_replace_malloc.c:569) ==6170== by 0xABEA64: av_malloc (mem.c:66) ==6170== by 0x4D3620: av_new_packet (avpacket.c:52) ==6170== by 0x44F1F3: asf_read_packet (asfdec.c:947) ==6170== by 0x439241: av_read_packet (utils.c:581) ==6170== by 0x438F49: av_read_frame_internal (utils.c:1001) ==6170== by 0x438946: av_read_frame (utils.c:1124) ==6170== by 0x40C8E8: av_encode (ffmpeg.c:2249) ==6170== by 0x40A2F3: main (ffmpeg.c:4006) ==6170== ==6170== Invalid read of size 4 ==6170== at 0x7BDC82: ff_wmv2_decode_mb (wmv2dec.c:373) ==6170== by 0x6497B0: decode_slice (h263dec.c:222) ==6170== by 0x648EE6: ff_h263_decode_frame (h263dec.c:649) ==6170== by 0x4DDC7A: avcodec_decode_video2 (utils.c:584) ==6170== by 0x40D66E: output_packet (ffmpeg.c:1345) ==6170== by 0x40CC40: av_encode (ffmpeg.c:2306) ==6170== by 0x40A2F3: main (ffmpeg.c:4006) ==6170== Address 0xbb95b6c is not stack'd, malloc'd or (recently) free'd ==6170== ==6170== Invalid read of size 4 ==6170== at 0x6E2E08: ff_msmpeg4_decode_motion (msmpeg4.c:1922) ==6170== by 0x7BD8B9: ff_wmv2_decode_mb (wmv2dec.c:419) ==6170== by 0x6497B0: decode_slice (h263dec.c:222) ==6170== by 0x648EE6: ff_h263_decode_frame (h263dec.c:649) ==6170== by 0x4DDC7A: avcodec_decode_video2 (utils.c:584) ==6170== by 0x40D66E: output_packet (ffmpeg.c:1345) ==6170== by 0x40CC40: av_encode (ffmpeg.c:2306) ==6170== by 0x40A2F3: main (ffmpeg.c:4006) ==6170== Address 0xbb95b7a is not stack'd, malloc'd or (recently) free'd ---------- priority: important -> normal title: Crash in WMV2 decoding due to corruption -> Invalid reads in WMV2 decoding due to corruption _____________________________________________________ FFmpeg issue tracker <[email protected]> <https://roundup.ffmpeg.org/roundup/ffmpeg/issue1230> _____________________________________________________
