[Bug 794290] New: rtponviftimestamp: race condition in buffer handling leading to memory corruption

[GStreamer (GNOME Bugzilla)]

https://bugzilla.gnome.org/show_bug.cgi?id=794290

            Bug ID: 794290
           Summary: rtponviftimestamp: race condition in buffer handling
                    leading to memory corruption
    Classification: Platform
           Product: GStreamer
           Version: git master
                OS: Linux
            Status: NEW
          Severity: normal
          Priority: Normal
         Component: gst-plugins-bad
          Assignee: gstreamer-bugs at lists.freedesktop.org
          Reporter: pavel.modilaynen at axis.com
        QA Contact: gstreamer-bugs at lists.freedesktop.org
     GNOME version: ---

There is a race condition in handling buffer and buffer_list in
rtponviftimestamp.

According to code it is possible that one of threads executes the following
chain:
send_cached_buffer_and_events() -> handle_and_push_buffer () -> gst_pad_push ()

and before self->buffer or self->list will be nullified in 
the same buffer or buffer_list can be attempted to destroy by another thread in 
purge_cached_buffer_and_events () -> gst_buffer_list_unref ()

This is race condition that leads to memory corruption and random crashes.

-- 
You are receiving this mail because:
You are the QA Contact for the bug.
You are the assignee for the bug.