[Swfdec] [Bug 21004] segfault loading www.serjtankian. com in swfdec_buffer_ref at swfdec_buffer.c:269
bugzilla-daemon at freedesktop.org
bugzilla-daemon at freedesktop.org
Wed Apr 1 13:33:18 PDT 2009
http://bugs.freedesktop.org/show_bug.cgi?id=21004
--- Comment #1 from Riccardo Magliocchetti <riccardo at datahost.it> 2009-04-01 13:33:18 PST ---
valgrind output from latest git:
==5344==
==5344== Conditional jump or move depends on uninitialised value(s)
==5344== at 0x128B5B04: swfdec_video_video_provider_get_image
(swfdec_video_video_provider.c:114)
==5344== by 0x128B54DC: swfdec_video_provider_get_image
(swfdec_video_provider.c:89)
==5344== by 0x128B4862: swfdec_video_movie_render (swfdec_video_movie.c:60)
==5344== by 0x1286BDE8: swfdec_movie_render (swfdec_movie.c:822)
==5344== by 0x1286E201: swfdec_movie_do_render (swfdec_movie.c:1244)
==5344== by 0x1286BDE8: swfdec_movie_render (swfdec_movie.c:822)
==5344== by 0x1286E201: swfdec_movie_do_render (swfdec_movie.c:1244)
==5344== by 0x1286BDE8: swfdec_movie_render (swfdec_movie.c:822)
==5344== by 0x1286E201: swfdec_movie_do_render (swfdec_movie.c:1244)
==5344== by 0x1286BDE8: swfdec_movie_render (swfdec_movie.c:822)
==5344== by 0x1287CDE5: swfdec_player_render_with_renderer
(swfdec_player.c:3201)
==5344== by 0x1287D059: swfdec_player_render (swfdec_player.c:3153)
==5344==
==5344== Conditional jump or move depends on uninitialised value(s)
==5344== at 0x1285148C: swfdec_buffer_ref (swfdec_buffer.c:268)
==5344== by 0x12845BF5: swfdec_video_decoder_gst_decode
(swfdec_video_decoder_gst.c:148)
==5344== by 0x128B3475: swfdec_video_decoder_decode
(swfdec_video_decoder.c:195)
==5344== by 0x128B5AEE: swfdec_video_video_provider_get_image
(swfdec_video_video_provider.c:115)
==5344== by 0x128B54DC: swfdec_video_provider_get_image
(swfdec_video_provider.c:89)
==5344== by 0x128B4862: swfdec_video_movie_render (swfdec_video_movie.c:60)
==5344== by 0x1286BDE8: swfdec_movie_render (swfdec_movie.c:822)
==5344== by 0x1286E201: swfdec_movie_do_render (swfdec_movie.c:1244)
==5344== by 0x1286BDE8: swfdec_movie_render (swfdec_movie.c:822)
==5344== by 0x1286E201: swfdec_movie_do_render (swfdec_movie.c:1244)
==5344== by 0x1286BDE8: swfdec_movie_render (swfdec_movie.c:822)
==5344== by 0x1286E201: swfdec_movie_do_render (swfdec_movie.c:1244)
==5344==
==5344== Use of uninitialised value of size 4
==5344== at 0x1285148E: swfdec_buffer_ref (swfdec_buffer.c:269)
==5344== by 0x12845BF5: swfdec_video_decoder_gst_decode
(swfdec_video_decoder_gst.c:148)
==5344== by 0x128B3475: swfdec_video_decoder_decode
(swfdec_video_decoder.c:195)
==5344== by 0x128B5AEE: swfdec_video_video_provider_get_image
(swfdec_video_video_provider.c:115)
==5344== by 0x128B54DC: swfdec_video_provider_get_image
(swfdec_video_provider.c:89)
==5344== by 0x128B4862: swfdec_video_movie_render (swfdec_video_movie.c:60)
==5344== by 0x1286BDE8: swfdec_movie_render (swfdec_movie.c:822)
==5344== by 0x1286E201: swfdec_movie_do_render (swfdec_movie.c:1244)
==5344== by 0x1286BDE8: swfdec_movie_render (swfdec_movie.c:822)
==5344== by 0x1286E201: swfdec_movie_do_render (swfdec_movie.c:1244)
==5344== by 0x1286BDE8: swfdec_movie_render (swfdec_movie.c:822)
==5344== by 0x1286E201: swfdec_movie_do_render (swfdec_movie.c:1244)
==5344==
==5344== Invalid read of size 4
==5344== at 0x1285148E: swfdec_buffer_ref (swfdec_buffer.c:269)
==5344== by 0x12845BF5: swfdec_video_decoder_gst_decode
(swfdec_video_decoder_gst.c:148)
==5344== by 0x128B3475: swfdec_video_decoder_decode
(swfdec_video_decoder.c:195)
==5344== by 0x128B5AEE: swfdec_video_video_provider_get_image
(swfdec_video_video_provider.c:115)
==5344== by 0x128B54DC: swfdec_video_provider_get_image
(swfdec_video_provider.c:89)
==5344== by 0x128B4862: swfdec_video_movie_render (swfdec_video_movie.c:60)
==5344== by 0x1286BDE8: swfdec_movie_render (swfdec_movie.c:822)
==5344== by 0x1286E201: swfdec_movie_do_render (swfdec_movie.c:1244)
==5344== by 0x1286BDE8: swfdec_movie_render (swfdec_movie.c:822)
==5344== by 0x1286E201: swfdec_movie_do_render (swfdec_movie.c:1244)
==5344== by 0x1286BDE8: swfdec_movie_render (swfdec_movie.c:822)
==5344== by 0x1286E201: swfdec_movie_do_render (swfdec_movie.c:1244)
==5344== Address 0x17 is not stack'd, malloc'd or (recently) free'd
==5344==
==5344== Process terminating with default action of signal 11 (SIGSEGV)
==5344== Access not within mapped region at address 0x17
==5344== at 0x1285148E: swfdec_buffer_ref (swfdec_buffer.c:269)
==5344== by 0x12845BF5: swfdec_video_decoder_gst_decode
(swfdec_video_decoder_gst.c:148)
==5344== by 0x128B3475: swfdec_video_decoder_decode
(swfdec_video_decoder.c:195)
==5344== by 0x128B5AEE: swfdec_video_video_provider_get_image
(swfdec_video_video_provider.c:115)
==5344== by 0x128B54DC: swfdec_video_provider_get_image
(swfdec_video_provider.c:89)
==5344== by 0x128B4862: swfdec_video_movie_render (swfdec_video_movie.c:60)
==5344== by 0x1286BDE8: swfdec_movie_render (swfdec_movie.c:822)
==5344== by 0x1286E201: swfdec_movie_do_render (swfdec_movie.c:1244)
==5344== by 0x1286BDE8: swfdec_movie_render (swfdec_movie.c:822)
==5344== by 0x1286E201: swfdec_movie_do_render (swfdec_movie.c:1244)
==5344== by 0x1286BDE8: swfdec_movie_render (swfdec_movie.c:822)
==5344== by 0x1286E201: swfdec_movie_do_render (swfdec_movie.c:1244)
==5344== If you believe this happened as a result of a stack overflow in your
==5344== program's main thread (unlikely but possible), you can try to
increase
==5344== the size of the main thread stack using the --main-stacksize= flag.
==5344== The main thread stack size used in this run was 8388608.
--
Configure bugmail: http://bugs.freedesktop.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the QA contact for the bug.
You are the assignee for the bug.
More information about the Swfdec
mailing list