NULL Pointer Dereference in gpac/gpac
Valid
Reported on
Dec 21st 2021
Description
A null pointer dereference was discovered in BD_CheckSFTimeOffset(). The vulnerability causes a segmentation fault and application crash.
Version:
./MP4Box -version
MP4Box - GPAC version 1.1.0-DEV-revUNKNOWN_REV
(c) 2000-2021 Telecom Paris distributed under LGPL v2.1+ - http://gpac.io
Please cite our work in your research:
GPAC Filters: https://doi.org/10.1145/3339825.3394929
GPAC: https://doi.org/10.1145/1291233.1291452
GPAC Configuration: --prefix=/root/disk2/fuzzing/gpac/test
Features: GPAC_CONFIG_LINUX GPAC_64_BITS GPAC_HAS_IPV6 GPAC_HAS_SOCK_UN GPAC_MINIMAL_ODF GPAC_HAS_QJS GPAC_HAS_JPEG GPAC_HAS_PNG GPAC_HAS_LINUX_DVB GPAC_DISABLE_3D
System information Ubuntu 20.04 focal, AMD EPYC 7742 64-Core @ 16x 2.25GHz
command:
./MP4Box -bt ./poc
https://drive.google.com/file/d/1kvwUIoZaufoprtsuJkMHshmhvtVkFxKM/view?usp=sharing
Result
lsr_read_anim_values_ex.part-lsr_read_animateTransform/id:000439,si g:11,src:004575+004803,op:splice,rep:2
./MP4Box -bt ./poc
[iso file] Box "stsz" (start 629) has 1368 extra bytes
[iso file] Unknown box type tRpy in parent hinf
[iso file] extra box maxr found in hinf, deleting
[iso file] extra box maxr found in hinf, deleting
[iso file] Unknown box type 80rak in parent moov
[iso file] Incomplete box mdat - start 11495 size 853086
[iso file] Incomplete file while reading for dump - aborting parsing
[iso file] Box "stsz" (start 629) has 1368 extra bytes
[iso file] Unknown box type tRpy in parent hinf
[iso file] extra box maxr found in hinf, deleting
[iso file] extra box maxr found in hinf, deleting
[iso file] Unknown box type 80rak in parent moov
[iso file] Incomplete box mdat - start 11495 size 853086
[iso file] Incomplete file while reading for dump - aborting parsing
MPEG-4 BIFS Scene Parsing
[1] 2390785 segmentation fault ./MP4Box -bt ./poc
gdb
Program received signal SIGSEGV, Segmentation fault.
__strcasecmp_l_avx () at ../sysdeps/x86_64/multiarch/strcmp-sse42.S:270
270 ../sysdeps/x86_64/multiarch/strcmp-sse42.S: No such file or directory.
LEGEND: STACK | HEAP | CODE | DATA | RWX | RODATA
──────────────────────────────────────────────────────────────────────────────────────────────────[ REGISTERS ]──────────────────────────────────────────────────────────────────────────────────────────────────
RAX 0x0
RBX 0x5555555dcbc0 ◂— 0x0
RCX 0x7
RDX 0xffff
RDI 0x0
RSI 0x7ffff7dfd330 ◂— 0x73006e6572646c69 /* 'ildren' */
R8 0x0
R9 0x0
R10 0x7ffff77590a5 ◂— 'gf_bs_read_double'
R11 0x7ffff77f1f90 (gf_bs_read_double) ◂— endbr64
R12 0x0
R13 0x5555555e1010 —▸ 0x5555555e1070 ◂— 0x100000067 /* 'g' */
R14 0x5555555e10f0 ◂— '""""""""'
R15 0x0
RBP 0x7ffffffe0a40 ◂— 0x200000002
RSP 0x7ffffffe0988 —▸ 0x7ffff790df01 (BD_CheckSFTimeOffset+49) ◂— test eax, eax
RIP 0x7ffff76c3117 (__strcasecmp_l_avx+211) ◂— vmovdqa xmm2, xmmword ptr [rdi]
──────────────────────────────────────────────[ DISASM ]──────────────────────────────────────────────
► 0x7ffff76c3117 <__strcasecmp_l_avx+211> vmovdqa xmm2, xmmword ptr [rdi]
0x7ffff76c311b <__strcasecmp_l_avx+215> vmovdqa xmm1, xmmword ptr [rsi]
0x7ffff76c311f <__strcasecmp_l_avx+219> lea r9, [rax + 0xf]
0x7ffff76c3123 <__strcasecmp_l_avx+223> sub r9, rcx
0x7ffff76c3126 <__strcasecmp_l_avx+226> lea r10, [rip + 0x393d3]
0x7ffff76c312d <__strcasecmp_l_avx+233> movsxd r9, dword ptr [r10 + r9*4]
0x7ffff76c3131 <__strcasecmp_l_avx+237> vpcmpeqb xmm0, xmm0, xmm1
0x7ffff76c3135 <__strcasecmp_l_avx+241> lea r10, [r10 + r9]
0x7ffff76c3139 <__strcasecmp_l_avx+245> jmp r10
0x7ffff76c313d <__strcasecmp_l_avx+249> nop dword ptr [rax]
0x7ffff76c3140 <__strcasecmp_l_avx+252> vmovdqa xmm1, xmmword ptr [rsi]
──────────────────────────────────────────────[ STACK ]───────────────────────────────────────────────
00:0000│ rsp 0x7ffffffe0988 —▸ 0x7ffff790df01 (BD_CheckSFTimeOffset+49) ◂— test eax, eax
01:0008│ 0x7ffffffe0990 —▸ 0x5555555dcbc0 ◂— 0x0
02:0010│ 0x7ffffffe0998 —▸ 0x5555555d1540 ◂— 0x0
03:0018│ 0x7ffffffe09a0 —▸ 0x7ffffffe0a40 ◂— 0x200000002
04:0020│ 0x7ffffffe09a8 —▸ 0x7ffff790f015 (gf_bifs_dec_sf_field+2133) ◂— mov eax, dword ptr [rbx]
05:0028│ 0x7ffffffe09b0 —▸ 0x5555555e1030 ◂— 0x2222 /* '""' */
06:0030│ 0x7ffffffe09b8 ◂— 0x22 /* '"' */
07:0038│ 0x7ffffffe09c0 ◂— 0x2222 /* '""' */
────────────────────────────────────────────[ BACKTRACE ]─────────────────────────────────────────────
► f 0 0x7ffff76c3117 __strcasecmp_l_avx+211
f 1 0x7ffff790df01 BD_CheckSFTimeOffset+49
f 2 0x7ffff790f015 gf_bifs_dec_sf_field+2133
f 3 0x7ffff790f7a0 BD_DecMFFieldVec+656
f 4 0x7ffff790f8eb gf_bifs_dec_field.part+155
f 5 0x7ffff790fac7 gf_bifs_dec_node_list+279
f 6 0x7ffff790e306 gf_bifs_dec_node+678
f 7 0x7ffff790f694 BD_DecMFFieldVec+388
──────────────────────────────────────────────────────────────────────────────────────────────────────
pwndbg> bt
#0 __strcasecmp_l_avx () at ../sysdeps/x86_64/multiarch/strcmp-sse42.S:270
#1 0x00007ffff790df01 in BD_CheckSFTimeOffset () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#2 0x00007ffff790f015 in gf_bifs_dec_sf_field () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#3 0x00007ffff790f7a0 in BD_DecMFFieldVec () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#4 0x00007ffff790f8eb in gf_bifs_dec_field.part () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#5 0x00007ffff790fac7 in gf_bifs_dec_node_list () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#6 0x00007ffff790e306 in gf_bifs_dec_node () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#7 0x00007ffff790f694 in BD_DecMFFieldVec () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#8 0x00007ffff790f8eb in gf_bifs_dec_field.part () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#9 0x00007ffff790fac7 in gf_bifs_dec_node_list () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#10 0x00007ffff790e306 in gf_bifs_dec_node () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#11 0x00007ffff790f694 in BD_DecMFFieldVec () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#12 0x00007ffff790f8eb in gf_bifs_dec_field.part () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#13 0x00007ffff790fac7 in gf_bifs_dec_node_list () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#14 0x00007ffff790e306 in gf_bifs_dec_node () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#15 0x00007ffff790f694 in BD_DecMFFieldVec () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#16 0x00007ffff790f8eb in gf_bifs_dec_field.part () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#17 0x00007ffff790fac7 in gf_bifs_dec_node_list () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#18 0x00007ffff790e306 in gf_bifs_dec_node () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#19 0x00007ffff790f694 in BD_DecMFFieldVec () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#20 0x00007ffff790f8eb in gf_bifs_dec_field.part () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#21 0x00007ffff790fac7 in gf_bifs_dec_node_list () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#22 0x00007ffff790e306 in gf_bifs_dec_node () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#23 0x00007ffff790f694 in BD_DecMFFieldVec () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#24 0x00007ffff790f8eb in gf_bifs_dec_field.part () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#25 0x00007ffff790fac7 in gf_bifs_dec_node_list () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#26 0x00007ffff790e306 in gf_bifs_dec_node () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#27 0x00007ffff790f694 in BD_DecMFFieldVec () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#28 0x00007ffff790f8eb in gf_bifs_dec_field.part () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#29 0x00007ffff790fac7 in gf_bifs_dec_node_list () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#30 0x00007ffff790e306 in gf_bifs_dec_node () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#31 0x00007ffff790f694 in BD_DecMFFieldVec () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#32 0x00007ffff790f8eb in gf_bifs_dec_field.part () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#33 0x00007ffff790fac7 in gf_bifs_dec_node_list () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#34 0x00007ffff790e306 in gf_bifs_dec_node () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#35 0x00007ffff790f694 in BD_DecMFFieldVec () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#36 0x00007ffff790f8eb in gf_bifs_dec_field.part () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#37 0x00007ffff790fac7 in gf_bifs_dec_node_list () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#38 0x00007ffff790e306 in gf_bifs_dec_node () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#39 0x00007ffff790f694 in BD_DecMFFieldVec () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#40 0x00007ffff790f8eb in gf_bifs_dec_field.part () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#41 0x00007ffff790fac7 in gf_bifs_dec_node_list () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#42 0x00007ffff790e306 in gf_bifs_dec_node () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#43 0x00007ffff790f694 in BD_DecMFFieldVec () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#44 0x00007ffff790f8eb in gf_bifs_dec_field.part () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#45 0x00007ffff790fac7 in gf_bifs_dec_node_list () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#46 0x00007ffff790e306 in gf_bifs_dec_node () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#47 0x00007ffff790f694 in BD_DecMFFieldVec () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#48 0x00007ffff790f8eb in gf_bifs_dec_field.part () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#49 0x00007ffff790fac7 in gf_bifs_dec_node_list () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#50 0x00007ffff790e306 in gf_bifs_dec_node () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#51 0x00007ffff790f694 in BD_DecMFFieldVec () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#52 0x00007ffff790f8eb in gf_bifs_dec_field.part () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#53 0x00007ffff790fac7 in gf_bifs_dec_node_list () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#54 0x00007ffff790e306 in gf_bifs_dec_node () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#55 0x00007ffff790f694 in BD_DecMFFieldVec () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#56 0x00007ffff790f8eb in gf_bifs_dec_field.part () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#57 0x00007ffff790fac7 in gf_bifs_dec_node_list () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#58 0x00007ffff790e306 in gf_bifs_dec_node () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#59 0x00007ffff790f694 in BD_DecMFFieldVec () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#60 0x00007ffff790f8eb in gf_bifs_dec_field.part () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#61 0x00007ffff790fac7 in gf_bifs_dec_node_list () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#62 0x00007ffff790e306 in gf_bifs_dec_node () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#63 0x00007ffff790f694 in BD_DecMFFieldVec () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#64 0x00007ffff790f8eb in gf_bifs_dec_field.part () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#65 0x00007ffff790fac7 in gf_bifs_dec_node_list () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#66 0x00007ffff790e306 in gf_bifs_dec_node () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#67 0x00007ffff790f694 in BD_DecMFFieldVec () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#68 0x00007ffff790f8eb in gf_bifs_dec_field.part () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#69 0x00007ffff790fac7 in gf_bifs_dec_node_list () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#70 0x00007ffff790e306 in gf_bifs_dec_node () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#71 0x00007ffff790f694 in BD_DecMFFieldVec () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#72 0x00007ffff790f8eb in gf_bifs_dec_field.part () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#73 0x00007ffff790fac7 in gf_bifs_dec_node_list () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#74 0x00007ffff790e306 in gf_bifs_dec_node () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#75 0x00007ffff790f694 in BD_DecMFFieldVec () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#76 0x00007ffff790f8eb in gf_bifs_dec_field.part () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#77 0x00007ffff790fac7 in gf_bifs_dec_node_list () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#78 0x00007ffff790e306 in gf_bifs_dec_node () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#79 0x00007ffff790f694 in BD_DecMFFieldVec () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#80 0x00007ffff790f8eb in gf_bifs_dec_field.part () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#81 0x00007ffff790fac7 in gf_bifs_dec_node_list () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#82 0x00007ffff790e306 in gf_bifs_dec_node () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#83 0x00007ffff790f694 in BD_DecMFFieldVec () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#84 0x00007ffff790f8eb in gf_bifs_dec_field.part () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#85 0x00007ffff790fac7 in gf_bifs_dec_node_list () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#86 0x00007ffff790e306 in gf_bifs_dec_node () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#87 0x00007ffff790f694 in BD_DecMFFieldVec () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#88 0x00007ffff790f8eb in gf_bifs_dec_field.part () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#89 0x00007ffff790fac7 in gf_bifs_dec_node_list () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#90 0x00007ffff790e306 in gf_bifs_dec_node () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#91 0x00007ffff790f694 in BD_DecMFFieldVec () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#92 0x00007ffff790f8eb in gf_bifs_dec_field.part () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#93 0x00007ffff790fac7 in gf_bifs_dec_node_list () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#94 0x00007ffff790e306 in gf_bifs_dec_node () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#95 0x00007ffff790f694 in BD_DecMFFieldVec () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#96 0x00007ffff790f8eb in gf_bifs_dec_field.part () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#97 0x00007ffff790fac7 in gf_bifs_dec_node_list () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#98 0x00007ffff790e306 in gf_bifs_dec_node () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#99 0x00007ffff790f694 in BD_DecMFFieldVec () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#100 0x00007ffff790f8eb in gf_bifs_dec_field.part () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#101 0x00007ffff790fac7 in gf_bifs_dec_node_list () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#102 0x00007ffff790e306 in gf_bifs_dec_node () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#103 0x00007ffff790f694 in BD_DecMFFieldVec () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#104 0x00007ffff790f8eb in gf_bifs_dec_field.part () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#105 0x00007ffff790fac7 in gf_bifs_dec_node_list () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#106 0x00007ffff790e306 in gf_bifs_dec_node () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#107 0x00007ffff790f694 in BD_DecMFFieldVec () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#108 0x00007ffff790f8eb in gf_bifs_dec_field.part () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#109 0x00007ffff790fac7 in gf_bifs_dec_node_list () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#110 0x00007ffff790e306 in gf_bifs_dec_node () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#111 0x00007ffff790f694 in BD_DecMFFieldVec () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#112 0x00007ffff790f8eb in gf_bifs_dec_field.part () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#113 0x00007ffff790fac7 in gf_bifs_dec_node_list () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#114 0x00007ffff790e306 in gf_bifs_dec_node () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#115 0x00007ffff790f694 in BD_DecMFFieldVec () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#116 0x00007ffff790f8eb in gf_bifs_dec_field.part () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#117 0x00007ffff790fac7 in gf_bifs_dec_node_list () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#118 0x00007ffff790e306 in gf_bifs_dec_node () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#119 0x00007ffff790f694 in BD_DecMFFieldVec () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#120 0x00007ffff790f8eb in gf_bifs_dec_field.part () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#121 0x00007ffff790fac7 in gf_bifs_dec_node_list () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#122 0x00007ffff790e306 in gf_bifs_dec_node () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#123 0x00007ffff790f694 in BD_DecMFFieldVec () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#124 0x00007ffff790f8eb in gf_bifs_dec_field.part () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#125 0x00007ffff790fac7 in gf_bifs_dec_node_list () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#126 0x00007ffff790e306 in gf_bifs_dec_node () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#127 0x00007ffff790f694 in BD_DecMFFieldVec () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#128 0x00007ffff790f8eb in gf_bifs_dec_field.part () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#129 0x00007ffff790fac7 in gf_bifs_dec_node_list () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#130 0x00007ffff790e306 in gf_bifs_dec_node () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#131 0x00007ffff790f694 in BD_DecMFFieldVec () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#132 0x00007ffff790f8eb in gf_bifs_dec_field.part () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#133 0x00007ffff790fac7 in gf_bifs_dec_node_list () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#134 0x00007ffff790e306 in gf_bifs_dec_node () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#135 0x00007ffff790f694 in BD_DecMFFieldVec () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#136 0x00007ffff790f8eb in gf_bifs_dec_field.part () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#137 0x00007ffff790fac7 in gf_bifs_dec_node_list () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#138 0x00007ffff790e306 in gf_bifs_dec_node () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#139 0x00007ffff790f694 in BD_DecMFFieldVec () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#140 0x00007ffff790f8eb in gf_bifs_dec_field.part () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#141 0x00007ffff790fac7 in gf_bifs_dec_node_list () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#142 0x00007ffff790e306 in gf_bifs_dec_node () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#143 0x00007ffff790f694 in BD_DecMFFieldVec () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#144 0x00007ffff790f8eb in gf_bifs_dec_field.part () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#145 0x00007ffff790fac7 in gf_bifs_dec_node_list () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#146 0x00007ffff790e306 in gf_bifs_dec_node () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#147 0x00007ffff790f694 in BD_DecMFFieldVec () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#148 0x00007ffff790f8eb in gf_bifs_dec_field.part () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#149 0x00007ffff790fac7 in gf_bifs_dec_node_list () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#150 0x00007ffff790e306 in gf_bifs_dec_node () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#151 0x00007ffff790f694 in BD_DecMFFieldVec () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#152 0x00007ffff790f8eb in gf_bifs_dec_field.part () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#153 0x00007ffff790fac7 in gf_bifs_dec_node_list () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#154 0x00007ffff790e306 in gf_bifs_dec_node () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#155 0x00007ffff790f694 in BD_DecMFFieldVec () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#156 0x00007ffff790f8eb in gf_bifs_dec_field.part () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#157 0x00007ffff790fac7 in gf_bifs_dec_node_list () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#158 0x00007ffff790e306 in gf_bifs_dec_node () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#159 0x00007ffff790f694 in BD_DecMFFieldVec () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#160 0x00007ffff790f8eb in gf_bifs_dec_field.part () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#161 0x00007ffff790fac7 in gf_bifs_dec_node_list () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#162 0x00007ffff790e306 in gf_bifs_dec_node () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#163 0x00007ffff790f694 in BD_DecMFFieldVec () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#164 0x00007ffff790f8eb in gf_bifs_dec_field.part () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#165 0x00007ffff790fac7 in gf_bifs_dec_node_list () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#166 0x00007ffff790e306 in gf_bifs_dec_node () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#167 0x00007ffff790f694 in BD_DecMFFieldVec () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#168 0x00007ffff790f8eb in gf_bifs_dec_field.part () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#169 0x00007ffff790fac7 in gf_bifs_dec_node_list () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#170 0x00007ffff790e306 in gf_bifs_dec_node () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#171 0x00007ffff790f694 in BD_DecMFFieldVec () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#172 0x00007ffff790f8eb in gf_bifs_dec_field.part () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#173 0x00007ffff790fac7 in gf_bifs_dec_node_list () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#174 0x00007ffff790e306 in gf_bifs_dec_node () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#175 0x00007ffff790f694 in BD_DecMFFieldVec () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#176 0x00007ffff790f8eb in gf_bifs_dec_field.part () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#177 0x00007ffff790fac7 in gf_bifs_dec_node_list () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#178 0x00007ffff790e306 in gf_bifs_dec_node () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#179 0x00007ffff790f694 in BD_DecMFFieldVec () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#180 0x00007ffff790f8eb in gf_bifs_dec_field.part () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#181 0x00007ffff790fac7 in gf_bifs_dec_node_list () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#182 0x00007ffff790e306 in gf_bifs_dec_node () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#183 0x00007ffff790f694 in BD_DecMFFieldVec () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#184 0x00007ffff790f8eb in gf_bifs_dec_field.part () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#185 0x00007ffff790fac7 in gf_bifs_dec_node_list () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#186 0x00007ffff790e306 in gf_bifs_dec_node () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#187 0x00007ffff790f694 in BD_DecMFFieldVec () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#188 0x00007ffff790f8eb in gf_bifs_dec_field.part () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#189 0x00007ffff790fac7 in gf_bifs_dec_node_list () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#190 0x00007ffff790e306 in gf_bifs_dec_node () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#191 0x00007ffff790f694 in BD_DecMFFieldVec () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#192 0x00007ffff790f8eb in gf_bifs_dec_field.part () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#193 0x00007ffff790fac7 in gf_bifs_dec_node_list () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#194 0x00007ffff790e306 in gf_bifs_dec_node () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#195 0x00007ffff790f694 in BD_DecMFFieldVec () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#196 0x00007ffff790f8eb in gf_bifs_dec_field.part () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#197 0x00007ffff790fac7 in gf_bifs_dec_node_list () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#198 0x00007ffff790e306 in gf_bifs_dec_node () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#199 0x00007ffff790f694 in BD_DecMFFieldVec () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#200 0x00007ffff790f8eb in gf_bifs_dec_field.part () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#201 0x00007ffff790fac7 in gf_bifs_dec_node_list () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#202 0x00007ffff790e306 in gf_bifs_dec_node () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#203 0x00007ffff790f694 in BD_DecMFFieldVec () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#204 0x00007ffff790f8eb in gf_bifs_dec_field.part () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#205 0x00007ffff790fac7 in gf_bifs_dec_node_list () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#206 0x00007ffff790e306 in gf_bifs_dec_node () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#207 0x00007ffff790f694 in BD_DecMFFieldVec () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#208 0x00007ffff790f8eb in gf_bifs_dec_field.part () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#209 0x00007ffff790fac7 in gf_bifs_dec_node_list () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#210 0x00007ffff790e306 in gf_bifs_dec_node () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#211 0x00007ffff790f694 in BD_DecMFFieldVec () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#212 0x00007ffff790f8eb in gf_bifs_dec_field.part () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#213 0x00007ffff790fac7 in gf_bifs_dec_node_list () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#214 0x00007ffff790e306 in gf_bifs_dec_node () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#215 0x00007ffff790f694 in BD_DecMFFieldVec () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#216 0x00007ffff790f8eb in gf_bifs_dec_field.part () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#217 0x00007ffff790fac7 in gf_bifs_dec_node_list () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#218 0x00007ffff790e306 in gf_bifs_dec_node () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#219 0x00007ffff790f694 in BD_DecMFFieldVec () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#220 0x00007ffff790f8eb in gf_bifs_dec_field.part () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#221 0x00007ffff790fac7 in gf_bifs_dec_node_list () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#222 0x00007ffff790e306 in gf_bifs_dec_node () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#223 0x00007ffff790f694 in BD_DecMFFieldVec () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#224 0x00007ffff790f8eb in gf_bifs_dec_field.part () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#225 0x00007ffff790fac7 in gf_bifs_dec_node_list () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#226 0x00007ffff790e306 in gf_bifs_dec_node () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#227 0x00007ffff790f694 in BD_DecMFFieldVec () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#228 0x00007ffff790f8eb in gf_bifs_dec_field.part () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#229 0x00007ffff790fac7 in gf_bifs_dec_node_list () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#230 0x00007ffff790e306 in gf_bifs_dec_node () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#231 0x00007ffff790f694 in BD_DecMFFieldVec () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#232 0x00007ffff790f8eb in gf_bifs_dec_field.part () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#233 0x00007ffff790fac7 in gf_bifs_dec_node_list () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#234 0x00007ffff790e306 in gf_bifs_dec_node () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#235 0x00007ffff790f694 in BD_DecMFFieldVec () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#236 0x00007ffff790f8eb in gf_bifs_dec_field.part () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#237 0x00007ffff790fac7 in gf_bifs_dec_node_list () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#238 0x00007ffff790e306 in gf_bifs_dec_node () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#239 0x00007ffff790f354 in BD_DecMFFieldList () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#240 0x00007ffff790f944 in gf_bifs_dec_field.part () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#241 0x00007ffff790fac7 in gf_bifs_dec_node_list () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#242 0x00007ffff790e306 in gf_bifs_dec_node () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#243 0x00007ffff79068b0 in BD_DecSceneReplace () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#244 0x00007ffff791513e in BM_SceneReplace () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#245 0x00007ffff7915303 in BM_ParseCommand () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#246 0x00007ffff7915633 in gf_bifs_decode_command_list () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#247 0x00007ffff7aa20c1 in gf_sm_load_run_isom () from /root/disk2/fuzzing/gpac/test/lib/libgpac.so.10
#248 0x00005555555844a8 in dump_isom_scene ()
#249 0x000055555557b42c in mp4boxMain ()
#250 0x00007ffff75620b3 in __libc_start_main (main=0x55555556c420 <main>, argc=3, argv=0x7fffffffe218, init=<optimized out>, fini=<optimized out>, rtld_fini=<optimized out>, stack_end=0x7fffffffe208) at ../csu/libc-start.c:308
#251 0x000055555556c45e in _start ()
We are processing your report and will contact the
gpac
team within 24 hours.
a year ago
We created a
GitHub Issue
asking the maintainers to create a
SECURITY.md
a year ago
We have opened a
pull request
with a
SECURITY.md for
gpac
to merge.
a year ago
We have contacted a member of the
gpac
team and are waiting to hear back
a year ago
We have sent a
follow up to the
gpac
team.
We will try again in 7 days.
a year ago
We have sent a
second
follow up to the
gpac
team.
We will try again in 10 days.
a year ago
to join this conversation