Menu

#101 Setting file type to PNG in single-frame mode causes a crash

open
nobody
None
5
2010-03-11
2010-03-11
quadrispro
No

This bug was originally reported to Launchpad, for more information please see:
https://bugs.launchpad.net/ubuntu/+source/xvidcap/+bug/290803

The following is the original report:
-----------------------------------------------------------------------------------------------------------------------------------------
In Ubuntu, setting the file type to PNG (either manually or automatically) in xvidcap causes a crash.

Versions: xvidcap 1.1.6-0.1ubuntu3, libavcodec-unstripped-51 3:0.svn20080206-12ubuntu3+unstripped5.

GDB and dump follows:-

johncc@gort:~$ gdb xvidcap
GNU gdb 6.8-debian
Copyright (C) 2008 Free Software Foundation, Inc.
License GPLv3+: GNU GPL version 3 or later <http://gnu.org/licenses/gpl.html>
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law. Type "show copying"
and "show warranty" for details.
This GDB was configured as "i486-linux-gnu"...
(no debugging symbols found)
(gdb) run
Starting program: /usr/bin/xvidcap
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
[Thread debugging using libthread_db enabled]
[New Thread 0xb6817700 (LWP 19980)]

(xvidcap:19980): Gtk-WARNING **: Theme directory scalable/animations/small/16x16 of theme oxygen has no size field

(xvidcap:19980): Gtk-WARNING **: Theme directory scalable/animations/small/22x22 of theme oxygen has no size field

(xvidcap:19980): Gtk-WARNING **: GtkSpinButton: setting an adjustment with non-zero page size is deprecated

(xvidcap:19980): Gtk-WARNING **: GtkSpinButton: setting an adjustment with non-zero page size is deprecated

(xvidcap:19980): Gtk-WARNING **: GtkSpinButton: setting an adjustment with non-zero page size is deprecated

(xvidcap:19980): Gtk-WARNING **: GtkSpinButton: setting an adjustment with non-zero page size is deprecated

(xvidcap:19980): Gtk-WARNING **: GtkSpinButton: setting an adjustment with non-zero page size is deprecated

(xvidcap:19980): Gtk-WARNING **: GtkSpinButton: setting an adjustment with non-zero page size is deprecated

(xvidcap:19980): Gtk-WARNING **: GtkSpinButton: setting an adjustment with non-zero page size is deprecated

(xvidcap:19980): Gtk-WARNING **: GtkSpinButton: setting an adjustment with non-zero page size is deprecated
[New Thread 0xb5868b90 (LWP 20011)]
*** glibc detected *** /usr/bin/xvidcap: double free or corruption (out): 0x09bd6810 ***
======= Backtrace: =========
/lib/tls/i686/cmov/libc.so.6[0xb6eb03f4]
/lib/tls/i686/cmov/libc.so.6(cfree+0x96)[0xb6eb2456]
/usr/lib/i686/cmov/libavformat.so.52(url_fclose+0x24)[0xb75fa584]
/usr/bin/xvidcap[0x8055149]
/usr/bin/xvidcap(do_record_thread+0x23)[0x805bf03]
/lib/tls/i686/cmov/libpthread.so.0[0xb703950f]
/lib/tls/i686/cmov/libc.so.6(clone+0x5e)[0xb6f227ee]
======= Memory map: ========
08048000-0807a000 r-xp 00000000 08:04 981124 /usr/bin/xvidcap
0807a000-0807b000 r--p 00031000 08:04 981124 /usr/bin/xvidcap
0807b000-0807c000 rw-p 00032000 08:04 981124 /usr/bin/xvidcap
0807c000-0809e000 rw-p 0807c000 00:00 0
09866000-09c64000 rw-p 09866000 00:00 0 [heap]
b4f00000-b4f21000 rw-p b4f00000 00:00 0
b4f21000-b5000000 ---p b4f21000 00:00 0
b502a000-b5037000 r-xp 00000000 08:04 572661 /lib/libgcc_s.so.1
b5037000-b5038000 r--p 0000c000 08:04 572661 /lib/libgcc_s.so.1
b5038000-b5039000 rw-p 0000d000 08:04 572661 /lib/libgcc_s.so.1
b504d000-b5068000 rw-s 00000000 00:09 4784154 /SYSV00000000 (deleted)
b5068000-b5069000 ---p b5068000 00:00 0
b5069000-b5869000 rwxp b5069000 00:00 0
b5869000-b596d000 rw-p b5869000 00:00 0
b596d000-b59f6000 r--p 00000000 08:04 361069 /usr/share/fonts/truetype/ttf-dejavu/DejaVuSans-Bold.ttf
b59f6000-b5a56000 rw-s 00000000 00:09 4751376 /SYSV00000000 (deleted)
b5a56000-b5a5a000 r-xp 00000000 08:04 196490 /usr/lib/gtk-2.0/2.10.0/loaders/libpixbufloader-png.so
b5a5a000-b5a5b000 r--p 00003000 08:04 196490 /usr/lib/gtk-2.0/2.10.0/loaders/libpixbufloader-png.so
b5a5b000-b5a5c000 rw-p 00004000 08:04 196490 /usr/lib/gtk-2.0/2.10.0/loaders/libpixbufloader-png.so
b5a5d000-b613d000 r--p 00000000 08:04 459303 /usr/share/icons/gnome/icon-theme.cache
b613d000-b6444000 r--p 00000000 08:04 458017 /usr/share/icons/hicolor/icon-theme.cache
b6444000-b6548000 rw-p b6444000 00:00 0
b6548000-b65dd000 r--p 00000000 08:04 361068 /usr/share/fonts/truetype/ttf-dejavu/DejaVuSans.ttf
b65dd000-b65df000 r-xp 00000000 08:04 262085 /usr/lib/pango/1.6.0/modules/pango-basic-fc.so
b65df000-b65e0000 r--p 00001000 08:04 262085 /usr/lib/pango/1.6.0/modules/pango-basic-fc.so
b65e0000-b65e1000 rw-p 00002000 08:04 262085 /usr/lib/pango/1.6.0/modules/pango-basic-fc.so
b65e1000-b65e7000 r--s 00000000 08:04 1311710 /var/cache/fontconfig/945677eb7aeaf62f1d50efc3fb3ec7d8-x86.cache-2
b65e7000-b65ea000 r--s 00000000 08:04 1311707 /var/cache/fontconfig/e383d7ea5fbe662a33d9b44caf393297-x86.cache-2
b65ea000-b65eb000 r--s 00000000 08:04 1311704 /var/cache/fontconfig/e3fa16a14183b06aa45b3e009278fd14-x86.cache-2
b65eb000-b65ef000 r--s 00000000 08:04 1312272 /var/cache/fontconfig/921a30a17f0be15c70ac14043cb7a739-x86.cache-2
b65ef000-b65f1000 r--s 00000000 08:04 1311702 /var/cache/fontconfig/c69f04ab05004e31a6d5e715764f16d8-x86.cache-2
b65f1000-b65f4000 r--s 00000000 08:04 1311701 /var/cache/fontconfig/6eb3985aa4124903f6ff08ba781cd364-x86.cache-2
b65f4000-b65f5000 r--s 00000000 08:04 1311700 /var/cache/fontconfig/4c73fe0c47614734b17d736dbde7580a-x86.cache-2
b65f5000-b65f8000 r--s 00000000 08:04 1311699 /var/cache/fontconfig/a755afe4a08bf5b97852ceb7400b47bc-x86.cache-2
b65f8000-b65ff000 r--s 00000000 08:04 1311698 /var/cache/fontconfig/6d41288fd70b0be22e8c3a91e032eec0-x86.cache-2
b65ff000-b6602000 r--s 00000000 08:04 1311696 /var/cache/fontconfig/de156ccd2eddbdc19d37a45b8b2aac9c-x86.cache-2
b6602000-b660a000 r--s 00000000 08:04 1311695 /var/cache/fontconfig/e3de0de479f42330eadf588a55fb5bf4-x86.cache-2
b660a000-b6615000 r--s 00000000 08:04 1312345 /var/cache/fontconfig/0f34bcd4b6ee430af32735b75db7f02b-x86.cache-2
b6615000-b6637000 r--s 00000000 08:04 1311690 /var/cache/fontconfig/365b55f210c0a22e9a19e35191240f32-x86.cache-2
b6637000-b663a000 r--s 00000000 08:04 1311090 /var/cache/fontconfig/de9486f0b47a4d768a594cb4198cb1c6-x86.cache-2
b663a000-b6641000 r--s 00000000 08:04 1310073 /var/cache/fontconfig/d52a8644073d54c13679302ca1180695-x86.cache-2
b6641000-b6647000 r--s 0000000
Program received signal SIGABRT, Aborted.
[Switching to Thread 0xb5868b90 (LWP 20011)]
0xb7f9e430 in __kernel_vsyscall ()
(gdb) backtrace
#0 0xb7f9e430 in __kernel_vsyscall ()
#1 0xb6e6c880 in raise () from /lib/tls/i686/cmov/libc.so.6
#2 0xb6e6e248 in abort () from /lib/tls/i686/cmov/libc.so.6
#3 0xb6eaa10d in ?? () from /lib/tls/i686/cmov/libc.so.6
#4 0xb6eb03f4 in ?? () from /lib/tls/i686/cmov/libc.so.6
#5 0xb6eb2456 in free () from /lib/tls/i686/cmov/libc.so.6
#6 0xb75fa584 in url_fclose (s=0x9bd6810) at /build/buildd/ffmpeg-debian-0.svn20080206/libavformat/aviobuf.c:606
#7 0x0806cc8d in xvc_ffmpeg_save_frame ()
#8 0x08055149 in ?? ()
#9 0x0805bf03 in do_record_thread ()
#10 0xb703950f in start_thread () from /lib/tls/i686/cmov/libpthread.so.0
#11 0xb6f227ee in clone () from /lib/tls/i686/cmov/libc.so.6

Discussion

Log in to post a comment.