Segmentation Fault caused by MP4Box -lsr

2022-03-1700:24:57

lyonnhk

www.huntr.dev

0.001 Low

EPSS

Percentile

41.7%

JSON

Version:

MP4Box -version
MP4Box - GPAC version 2.1-DEV-rev48-gf6d6225a9-master
(c) 2000-2022 Telecom Paris distributed under LGPL v2.1+ - http://gpac.io/
 MINI build (encoders, decoders, audio and video output disabled)

Please cite our work in your research:
 GPAC Filters: https://doi.org/10.1145/3339825.3394929
 GPAC: https://doi.org/10.1145/1291233.1291452

GPAC Configuration: --static-bin
Features: GPAC_CONFIG_LINUX GPAC_64_BITS GPAC_HAS_SOCK_UN GPAC_MINIMAL_ODF GPAC_HAS_QJS GPAC_HAS_OPENSVC  GPAC_DISABLE_3D

Command:
MP4Box -lsr poc1

Result:
Segmentation fault

poc1.zip

bt:

[iso file] Unknown box type FF00ak in parent moov
[iso file] Unknown box type t0E18 in parent trak
[iso file] extra box maxr found in hinf, deleting
[iso file] Unknown box type 80rak in parent moov
[iso file] Incomplete box mdat - start 11495 size 803729
[iso file] Incomplete file while reading for dump - aborting parsing
[iso file] Unknown box type FF00ak in parent moov
[iso file] Unknown box type t0E18 in parent trak
[iso file] extra box maxr found in hinf, deleting
[iso file] Unknown box type 80rak in parent moov
[iso file] Incomplete box mdat - start 11495 size 803729
[iso file] Incomplete file while reading for dump - aborting parsing
MPEG-4 BIFS Scene Parsing
[ODF] Reading bifs config: shift in sizes (not supported)
[BIFS] Node Group not allowed as field/child of NDT type 37
Scene loaded - dumping 1 systems streams           

Program received signal SIGSEGV, Segmentation fault.
gf_dump_vrml_simple_field (sdump=sdump@entry=0x5555558873e0, parent=&lt;optimized out&gt;, field=...) at scene_manager/scene_dump.c:759
759			gf_dump_vrml_node(sdump, *(GF_Node **)field.far_ptr, 0, NULL);

   0x00007ffff71d1e1a &lt;+346&gt;:	add    %rbp,%r8
   0x00007ffff71d1e1d &lt;+349&gt;:	movzbl (%r8),%eax
   0x00007ffff71d1e21 &lt;+353&gt;:	add    $0x1,%al
   0x00007ffff71d1e23 &lt;+355&gt;:	jb     0x7ffff71d23b5 &lt;gf_dump_vrml_simple_field+1781&gt;
   0x00007ffff71d1e29 &lt;+361&gt;:	add    %r14d,%eax
   0x00007ffff71d1e2c &lt;+364&gt;:	xor    %ecx,%ecx
   0x00007ffff71d1e2e &lt;+366&gt;:	xor    %edx,%edx
   0x00007ffff71d1e30 &lt;+368&gt;:	mov    %r12,%rdi
   0x00007ffff71d1e33 &lt;+371&gt;:	mov    %al,(%r8)
   0x00007ffff71d1e36 &lt;+374&gt;:	movl   $0x516d,%fs:(%rbx)
=&gt; 0x00007ffff71d1e3d &lt;+381&gt;:	mov    0x0(%r13),%rsi
   0x00007ffff71d1e41 &lt;+385&gt;:	callq  0x7ffff71cd170 &lt;gf_dump_vrml_node&gt;
   0x00007ffff71d1e46 &lt;+390&gt;:	mov    %fs:(%rbx),%r8d
   0x00007ffff71d1e4a &lt;+394&gt;:	xor    $0x2a76,%r8d
   0x00007ffff71d1e51 &lt;+401&gt;:	add    %rbp,%r8
   0x00007ffff71d1e54 &lt;+404&gt;:	xor    %r12d,%r12d
   0x00007ffff71d1e57 &lt;+407&gt;:	movzbl (%r8),%ebp
   0x00007ffff71d1e5b &lt;+411&gt;:	add    $0x1,%bpl
   0x00007ffff71d1e5f &lt;+415&gt;:	jb     0x7ffff71d237f &lt;gf_dump_vrml_simple_field+1727&gt;
   0x00007ffff71d1e65 &lt;+421&gt;:	add    %r12d,%ebp
   0x00007ffff71d1e68 &lt;+424&gt;:	mov    %bpl,(%r8)

Stack level 0, frame at 0x7fffffff6f30:
 rip = 0x7ffff71d1e3d in gf_dump_vrml_simple_field (scene_manager/scene_dump.c:759); saved rip = 0x7ffff71d27aa
 called by frame at 0x7fffffff6fc0
 source language c.
 Arglist at 0x7fffffff6eb8, args: sdump=sdump@entry=0x5555558873e0, parent=&lt;optimized out&gt;, field=...
 Locals at 0x7fffffff6eb8, Previous frame's sp is 0x7fffffff6f30
 Saved registers:
  rbx at 0x7fffffff6ef8, rbp at 0x7fffffff6f00, r12 at 0x7fffffff6f08, r13 at 0x7fffffff6f10, r14 at 0x7fffffff6f18, r15 at 0x7fffffff6f20, rip at 0x7fffffff6f28


(gdb) where
#0  gf_dump_vrml_simple_field (sdump=sdump@entry=0x5555558873e0, parent=&lt;optimized out&gt;, field=...) at scene_manager/scene_dump.c:759
#1  0x00007ffff71d27aa in DumpMultipleIndexedReplace (sdump=sdump@entry=0x5555558873e0, com=&lt;optimized out&gt;, com=&lt;optimized out&gt;) at scene_manager/scene_dump.c:1731
#2  0x00007ffff71c7ace in gf_sm_dump_command_list
    (sdump=sdump@entry=0x5555558873e0, comList=&lt;optimized out&gt;, indent=indent@entry=1, skip_first_replace=skip_first_replace@entry=GF_TRUE) at scene_manager/scene_dump.c:2958
#3  0x00007ffff71db286 in gf_sm_dump
    (ctx=ctx@entry=0x55555587e660, rad_name=rad_name@entry=0x555555832de0 &lt;outfile&gt; "poc1", is_final_name=is_final_name@entry=GF_FALSE, dump_mode=dump_mode@entry=GF_SM_DUMP_LASER) at scene_manager/scene_dump.c:3575
#4  0x00005555555b9e20 in dump_isom_scene
    (file=&lt;optimized out&gt;, inName=&lt;optimized out&gt;, is_final_name=&lt;optimized out&gt;, dump_mode=&lt;optimized out&gt;, do_log=&lt;optimized out&gt;, no_odf_conv=&lt;optimized out&gt;)
    at filedump.c:217
#5  0x000055555559ae41 in mp4boxMain (argc=&lt;optimized out&gt;, argv=&lt;optimized out&gt;) at main.c:6146
#6  0x00007ffff65d60b3 in __libc_start_main (main=
    0x55555556e920 &lt;main&gt;, argc=3, argv=0x7fffffffe068, init=&lt;optimized out&gt;, fini=&lt;optimized out&gt;, rtld_fini=&lt;optimized out&gt;, stack_end=0x7fffffffe058)
    at ../csu/libc-start.c:308
#7  0x000055555556eb2e in _start () at main.c:6601

0.001 Low

EPSS

Percentile

41.7%

JSON

Related for 851942A4-1D64-4553-8FDC-9FCCD167864B