New submission from Anatoly <[email protected]>: There is a crash of ffmpeg.exe in Windows with attached file if lowres > 0. In Linux valgrind report the following: valgrind --track-origins=yes ./ffmpeg_g -lowres 1 -y -i ~/tmp/4.mp4 -f rawvideo /dev/null ==25821== Memcheck, a memory error detector ==25821== Copyright (C) 2002-2010, and GNU GPL'd, by Julian Seward et al. ==25821== Using Valgrind-3.6.0.SVN-Debian and LibVEX; rerun with -h for copyright info ==25821== Command: ./ffmpeg_g -lowres 1 -y -i /home/alien/tmp/4.mp4 -f rawvideo /dev/null ==25821== FFmpeg version git-deb1e31, Copyright (c) 2000-2010 the FFmpeg developers built on Dec 14 2010 01:41:51 with gcc 4.4.5 configuration: libavutil 50.34. 0 / 50.34. 0 libavcore 0.16. 0 / 0.16. 0 libavcodec 52.99. 1 / 52.99. 1 libavformat 52.88. 0 / 52.88. 0 libavdevice 52. 2. 2 / 52. 2. 2 libavfilter 1.69. 0 / 1.69. 0 libswscale 0.12. 0 / 0.12. 0 [m4v @ 0x614aa30] Estimating duration from bitrate, this may be inaccurate Input #0, m4v, from '/home/alien/tmp/4.mp4': Duration: N/A, bitrate: N/A Stream #0.0: Video: mpeg4, yuv420p, 704x576 [PAR 1:1 DAR 11:9], 1k tbr, 1200k tbn, 1k tbc [buffer @ 0x6ad0730] w:704 h:576 pixfmt:yuv420p [scale @ 0x6ad0d50] w:704 h:576 fmt:yuv420p -> w:352 h:288 fmt:yuv420p flags:0xa0000004 Output #0, rawvideo, to '/dev/null': Metadata: encoder : Lavf52.88.0 Stream #0.0: Video: rawvideo, yuv420p, 352x288 [PAR 1:1 DAR 11:9], q=2-31, 200 kb/s, 90k tbn, 1k tbc Stream mapping: Stream #0.0 -> #0.0 Press [q] to stop encoding ==25821== Invalid read of size 1 ==25821== at 0x4C25F98: memcpy (mc_replace_strmem.c:497) ==25821== by 0x8FDBB6: av_image_copy (imgutils.c:230) ==25821== by 0x446BE5: request_frame (vsrc_buffer.c:125) ==25821== by 0x43705F: get_filtered_video_frame (cmdutils.c:826) ==25821== by 0x431101: output_packet (ffmpeg.c:1645) ==25821== by 0x433F47: T.658 (ffmpeg.c:2648) ==25821== by 0x434EA2: main (ffmpeg.c:4358) ==25821== Address 0x6cb0b6f is 1 bytes before a block of size 25,360 alloc'd ==25821== at 0x4C236B6: memalign (vg_replace_malloc.c:581) ==25821== by 0x4C2370F: posix_memalign (vg_replace_malloc.c:709) ==25821== by 0x905EC7: av_malloc (mem.c:83) ==25821== by 0x744A18: avcodec_default_get_buffer (utils.c:320) ==25821== by 0x677295: ff_alloc_picture (mpegvideo.c:230) ==25821== by 0x677B03: MPV_frame_start (mpegvideo.c:962) ==25821== by 0x5B8695: ff_h263_decode_frame (h263dec.c:627) ==25821== by 0x743F5F: avcodec_decode_video2 (utils.c:626) ==25821== by 0x432171: output_packet (ffmpeg.c:1547) ==25821== by 0x433F47: T.658 (ffmpeg.c:2648) ==25821== by 0x434EA2: main (ffmpeg.c:4358) ==25821== ==25821== Invalid read of size 1 ==25821== at 0x4C25FA1: memcpy (mc_replace_strmem.c:497) ==25821== by 0x8FDBB6: av_image_copy (imgutils.c:230) ==25821== by 0x446BE5: request_frame (vsrc_buffer.c:125) ==25821== by 0x43705F: get_filtered_video_frame (cmdutils.c:826) ==25821== by 0x431101: output_packet (ffmpeg.c:1645) ==25821== by 0x433F47: T.658 (ffmpeg.c:2648) ==25821== by 0x434EA2: main (ffmpeg.c:4358) ==25821== Address 0x6cb0b6e is 2 bytes before a block of size 25,360 alloc'd ==25821== at 0x4C236B6: memalign (vg_replace_malloc.c:581) ==25821== by 0x4C2370F: posix_memalign (vg_replace_malloc.c:709) ==25821== by 0x905EC7: av_malloc (mem.c:83) ==25821== by 0x744A18: avcodec_default_get_buffer (utils.c:320) ==25821== by 0x677295: ff_alloc_picture (mpegvideo.c:230) ==25821== by 0x677B03: MPV_frame_start (mpegvideo.c:962) ==25821== by 0x5B8695: ff_h263_decode_frame (h263dec.c:627) ==25821== by 0x743F5F: avcodec_decode_video2 (utils.c:626) ==25821== by 0x432171: output_packet (ffmpeg.c:1547) ==25821== by 0x433F47: T.658 (ffmpeg.c:2648) ==25821== by 0x434EA2: main (ffmpeg.c:4358) ==25821== ==25821== Invalid read of size 1 ==25821== at 0x4C25FAC: memcpy (mc_replace_strmem.c:497) ==25821== by 0x8FDBB6: av_image_copy (imgutils.c:230) ==25821== by 0x446BE5: request_frame (vsrc_buffer.c:125) ==25821== by 0x43705F: get_filtered_video_frame (cmdutils.c:826) ==25821== by 0x431101: output_packet (ffmpeg.c:1645) ==25821== by 0x433F47: T.658 (ffmpeg.c:2648) ==25821== by 0x434EA2: main (ffmpeg.c:4358) ==25821== Address 0x6cb0b6d is 3 bytes before a block of size 25,360 alloc'd ==25821== at 0x4C236B6: memalign (vg_replace_malloc.c:581) ==25821== by 0x4C2370F: posix_memalign (vg_replace_malloc.c:709) ==25821== by 0x905EC7: av_malloc (mem.c:83) ==25821== by 0x744A18: avcodec_default_get_buffer (utils.c:320) ==25821== by 0x677295: ff_alloc_picture (mpegvideo.c:230) ==25821== by 0x677B03: MPV_frame_start (mpegvideo.c:962) ==25821== by 0x5B8695: ff_h263_decode_frame (h263dec.c:627) ==25821== by 0x743F5F: avcodec_decode_video2 (utils.c:626) ==25821== by 0x432171: output_packet (ffmpeg.c:1547) ==25821== by 0x433F47: T.658 (ffmpeg.c:2648) ==25821== by 0x434EA2: main (ffmpeg.c:4358) ==25821== ==25821== Invalid read of size 1 ==25821== at 0x4C25FB7: memcpy (mc_replace_strmem.c:497) ==25821== by 0x8FDBB6: av_image_copy (imgutils.c:230) ==25821== by 0x446BE5: request_frame (vsrc_buffer.c:125) ==25821== by 0x43705F: get_filtered_video_frame (cmdutils.c:826) ==25821== by 0x431101: output_packet (ffmpeg.c:1645) ==25821== by 0x433F47: T.658 (ffmpeg.c:2648) ==25821== by 0x434EA2: main (ffmpeg.c:4358) ==25821== Address 0x6cb0b6c is 4 bytes before a block of size 25,360 alloc'd ==25821== at 0x4C236B6: memalign (vg_replace_malloc.c:581) ==25821== by 0x4C2370F: posix_memalign (vg_replace_malloc.c:709) ==25821== by 0x905EC7: av_malloc (mem.c:83) ==25821== by 0x744A18: avcodec_default_get_buffer (utils.c:320) ==25821== by 0x677295: ff_alloc_picture (mpegvideo.c:230) ==25821== by 0x677B03: MPV_frame_start (mpegvideo.c:962) ==25821== by 0x5B8695: ff_h263_decode_frame (h263dec.c:627) ==25821== by 0x743F5F: avcodec_decode_video2 (utils.c:626) ==25821== by 0x432171: output_packet (ffmpeg.c:1547) ==25821== by 0x433F47: T.658 (ffmpeg.c:2648) ==25821== by 0x434EA2: main (ffmpeg.c:4358) File '4.mp4' not attached - you can download it from https://roundup.ffmpeg.org/file1222.
---------- files: 4.mp4 messages: 12942 priority: normal status: new substatus: new title: MPEG4 decoder crash in Windows with lowres > 0 topic: avcodec type: bug ________________________________________________ FFmpeg issue tracker <[email protected]> <https://roundup.ffmpeg.org/issue2421> ________________________________________________
