Bug#672123: libmpg123-0: glibc heap corruption when cueing backwards in MP3 in mplayer
Package: libmpg123-0 Version: 1.14.0-1 Severity: normal Hi glibc detected heap corruption while skipping backwards in mplayer about 63% of the way into this MP3: http://soundcloud.com/astrangelyisolatedplace/isolatedmix-13-solar- fields/download The stack trace suggests the bug may be in libmpg123, although it is of course difficult to know what actually corrupted the memory: Position: 63 % *** glibc detected *** mplayer: free(): invalid next size (normal): 0x02c3e7c0 *** === Backtrace: = /lib/x86_64-linux-gnu/libc.so.6(+0x75b46)[0x7ff7df812b46] /lib/x86_64-linux-gnu/libc.so.6(cfree+0x6c)[0x7ff7df81787c] /usr/lib/x86_64-linux-gnu/libmpg123.so.0(+0x7cd1)[0x7ff7e57eacd1] /usr/lib/x86_64-linux-gnu/libmpg123.so.0(+0x15dc7)[0x7ff7e57f8dc7] /usr/lib/x86_64-linux-gnu/libmpg123.so.0(+0x160bf)[0x7ff7e57f90bf] /usr/lib/x86_64-linux-gnu/libmpg123.so.0(mpg123_decode+0x160)[0x7ff7e57f9600] mplayer[0x66ded5] mplayer[0x66e438] mplayer(mp_decode_audio+0x1fa)[0x5595fa] mplayer(main+0x26ba)[0x4bf11a] /lib/x86_64-linux-gnu/libc.so.6(__libc_start_main+0xfd)[0x7ff7df7bbead] mplayer[0x4c187d] === Memory map: 0040-01076000 r-xp fd:00 795285 /usr/bin/mplayer1 01275000-012a8000 rw-p 00c75000 fd:00 795285 /usr/bin/mplayer1 012a8000-018c4000 rw-p 00:00 0 02bac000-02cdb000 rw-p 00:00 0 [heap] 7ff7d000-7ff7d0021000 rw-p 00:00 0 7ff7d0021000-7ff7d400 ---p 00:00 0 7ff7d7053000-7ff7d705e000 r-xp fd:00 396086 /lib/x86_64-linux-gnu/libnss_files-2.13.so 7ff7d705e000-7ff7d725d000 ---p b000 fd:00 396086 /lib/x86_64-linux-gnu/libnss_files-2.13.so 7ff7d725d000-7ff7d725e000 r--p a000 fd:00 396086 /lib/x86_64-linux-gnu/libnss_files-2.13.so 7ff7d725e000-7ff7d725f000 rw-p b000 fd:00 396086 /lib/x86_64-linux-gnu/libnss_files-2.13.so 7ff7d725f000-7ff7d7269000 r-xp fd:00 396077 /lib/x86_64-linux-gnu/libnss_nis-2.13.so 7ff7d7269000-7ff7d7468000 ---p a000 fd:00 396077 /lib/x86_64-linux-gnu/libnss_nis-2.13.so 7ff7d7468000-7ff7d7469000 r--p 9000 fd:00 396077 /lib/x86_64-linux-gnu/libnss_nis-2.13.so 7ff7d7469000-7ff7d746a000 rw-p a000 fd:00 396077 /lib/x86_64-linux-gnu/libnss_nis-2.13.so 7ff7d746a000-7ff7d7471000 r-xp fd:00 394838 /lib/x86_64-linux-gnu/libnss_compat-2.13.so 7ff7d7471000-7ff7d767 ---p 7000 fd:00 394838 /lib/x86_64-linux-gnu/libnss_compat-2.13.so 7ff7d767-7ff7d7671000 r--p 6000 fd:00 394838 /lib/x86_64-linux-gnu/libnss_compat-2.13.so 7ff7d7671000-7ff7d7672000 rw-p 7000 fd:00 394838 /lib/x86_64-linux-gnu/libnss_compat-2.13.so 7ff7d7672000-7ff7d77e9000 r--p fd:00 789213 /usr/lib/locale/locale-archive 7ff7d77e9000-7ff7d7834000 r-xp fd:00 800344 /usr/lib/x86_64-linux-gnu/libFLAC.so.8.2.0 7ff7d7834000-7ff7d7a33000 ---p 0004b000 fd:00 800344 /usr/lib/x86_64-linux-gnu/libFLAC.so.8.2.0 7ff7d7a33000-7ff7d7a34000 r--p 0004a000 fd:00 800344 /usr/lib/x86_64-linux-gnu/libFLAC.so.8.2.0 7ff7d7a34000-7ff7d7a35000 rw-p 0004b000 fd:00 800344 /usr/lib/x86_64-linux-gnu/libFLAC.so.8.2.0 7ff7d7a35000-7ff7d7a43000 r-xp fd:00 788943 /usr/lib/x86_64-linux-gnu/libXi.so.6.1.0 7ff7d7a43000-7ff7d7c43000 ---p e000 fd:00 788943 /usr/lib/x86_64-linux-gnu/libXi.so.6.1.0 7ff7d7c43000-7ff7d7c44000 rw-p e000 fd:00 788943 /usr/lib/x86_64-linux-gnu/libXi.so.6.1.0 7ff7d7c44000-7ff7d7c48000 r-xp fd:00 394017 /lib/x86_64-linux-gnu/libuuid.so.1.3.0 7ff7d7c48000-7ff7d7e47000 ---p 4000 fd:00 394017 /lib/x86_64-linux-gnu/libuuid.so.1.3.0 7ff7d7e47000-7ff7d7e48000 r--p 3000 fd:00 394017 /lib/x86_64-linux-gnu/libuuid.so.1.3.0 7ff7d7e48000-7ff7d7e49000 rw-p 4000 fd:00 394017 /lib/x86_64-linux-gnu/libuuid.so.1.3.0 7ff7d7e49000-7ff7d7e4e000 r-xp fd:00 796839 /usr/lib/x86_64-linux-gnu/libasyncns.so.0.3.1 7ff7d7e4e000-7ff7d804d000 ---p 5000 fd:00 796839 /usr/lib/x86_64-linux-gnu/libasyncns.so.0.3.1 7ff7d804d000-7ff7d804e000 rw-p 4000 fd:00 796839 /usr/lib/x86_64-linux-gnu/libasyncns.so.0.3.1 7ff7d804e000-7ff7d80af000 r-xp fd:00 792879 /usr/lib/x86_64-linux-gnu/libsndfile.so.1.0.25 7ff7d80af000-7ff7d82ae000 ---p 00061000 fd:00 792879 /usr/lib/x86_64-linux-gnu/libsndfile.so.1.0.25 7ff7d82ae000-7ff7d82b r--p 0006 fd:00 792879 /usr/lib/x86_64-linux-gnu/libsndfile.so.1.0.25 7ff7d82b-7ff7d82b1000 rw-p 00062000 fd:00 792879 /usr/lib/x86_64-linux-gnu/libsndfile.so.1.0.25 7ff7d82b1000-7ff7d82b5000 rw-p 00:00 0 7ff7d82b5000-7ff7d82be000 r-xp fd:00 393970 /lib/x86_64-linux-gnu/libwrap.so.0.7.6 7ff7d82be000-7ff7d84bd000 ---p 9000 fd:00 393970 /lib/x86_64-linux-gnu/libwrap.so.0.7.6 7ff7d84bd000-7ff7d84be000 r--p 8000 fd:00 393970 /lib/x86_64-linux-gnu/libwrap.so.0.7.6 7ff7d84be000-7ff7d84bf000 rw-p 9000 fd:00 393970 /lib/x86_64-linux-gnu/libwrap.so.0.7.6 7ff7d84bf000-7ff7d84c rw-p 00:00 0 7ff7d84c-7ff7d84c5000 r-xp fd:00 787643
Bug#672123: libmpg123-0: glibc heap corruption when cueing backwards in MP3 in mplayer
Am Tue, 8 May 2012 11:28:44 -0600 (MDT) schrieb Paul Walmsley p...@booyaka.com: Package: libmpg123-0 Version: 1.14.0-1 Severity: normal The stack trace suggests the bug may be in libmpg123, although it is of course difficult to know what actually corrupted the memory: This is most likely the exact bug I already encountered and fixed with mpg123-1.14.1 . Hopefully upgrading to that one will fix it. Alrighty then, Thomas (mpg123 upstream) signature.asc Description: PGP signature
