[MPlayer-dev-eng] [PATCH] fix use-after-free in vo_vdpau
Rinat Ibragimov
ibragimovrinat at mail.ru
Tue Oct 15 11:04:35 CEST 2013
Понедельник, 14 октября 2013, 22:01 +02:00 от Alexander Strasser <eclipse7 at gmx.net>:
> Hi,
>
> On 2013-10-14 19:56 +0400, Rinat Ibragimov wrote:
> > Hi, I've faced use-after-free in vo_vdpau.c. The issue may arise when one switches to
> > next video in playlist. Here is a patch that should prevent that.
>
> keeping allocated arrays and associated size fields in sync,
> seems like a good idea to me. Beware I didn't read the code
> closely so there might well be more underlying problems.
>
> Anyone else can reproduce this? (I am not using vo vdpau ATM.)
>
> Did this start occurring just recently?
Sorry, don't have any info about that. I'm developing VDPAU driver
and the issue was first reported as bug of my code:
https://github.com/i-rinat/libvdpau-va-gl/issues/18
It was reported about month ago for mplayer version 2:1.0~rc4.dfsg1+svn34540-1
I can't reproduce exact the same issue on my machine, there SIGSEGV was
at flip_page. But in the process I found an issue I mentioned in the first message.
>
> Alexander
>
---
Rinat
More information about the MPlayer-dev-eng
mailing list