Package: libomxil-bellagio0 Version: 0.9.3-2 Severity: normal I'm trying to debug a segfault in VLC, and spotted a single-byte memory corruption in libomxil-bellagio0. It's definitely not the cause of the VLC crash, as VLC still crashes in the same way even when this package has been purged.
BOSA_ST_InitComponentLoader is reading from the empty file /var/lib/libomxil-bellagio0/registry. It's not checking the return of fgetc() for EOF, so reads EOF in a loop MAX_LINE_LENGTH times, then overruns the buffer when it puts a '\0' on the end. Until I purged the package, it was 100% reproducible. After purging and reinstalling the libomxil-bellagio0 package, VLC is still calling InitOmxCore, but that isn't calling OMX_Init. $ valgrind vlc test_file_*.mpeg ... ==16158== Invalid write of size 1 ==16158== at 0x28CDE5B7: BOSA_ST_InitComponentLoader (in /usr/lib/libomxil-bellagio.so.0.0.0) ==16158== by 0x28CDF5A7: OMX_Init (in /usr/lib/libomxil-bellagio.so.0.0.0) ==16158== by 0x28AD5B4D: InitOmxCore (omxil_core.c:165) ==16158== by 0x28AD2AC2: OpenGeneric (omxil.c:781) ==16158== by 0x28AD29EC: OpenDecoder (omxil.c:742) ==16158== by 0x58ADD67: generic_start (modules.c:351) ==16158== by 0x58AD65A: module_load (modules.c:185) ==16158== by 0x58ADA0D: vlc_module_load (modules.c:277) ==16158== by 0x58ADE21: module_need (modules.c:366) ==16158== by 0x5859789: CreateDecoder (decoder.c:809) ==16158== by 0x585839C: decoder_New (decoder.c:271) ==16158== by 0x5858559: input_DecoderNew (decoder.c:322) ==16158== Address 0x17d904a0 is 0 bytes after a block of size 2,048 alloc'd ==16158== at 0x4C274A0: malloc (in /usr/lib/valgrind/vgpreload_memcheck-amd64-linux.so) ==16158== by 0x28CDE52E: BOSA_ST_InitComponentLoader (in /usr/lib/libomxil-bellagio.so.0.0.0) ==16158== by 0x28CDF5A7: OMX_Init (in /usr/lib/libomxil-bellagio.so.0.0.0) ==16158== by 0x28AD5B4D: InitOmxCore (omxil_core.c:165) ==16158== by 0x28AD2AC2: OpenGeneric (omxil.c:781) ==16158== by 0x28AD29EC: OpenDecoder (omxil.c:742) ==16158== by 0x58ADD67: generic_start (modules.c:351) ==16158== by 0x58AD65A: module_load (modules.c:185) ==16158== by 0x58ADA0D: vlc_module_load (modules.c:277) ==16158== by 0x58ADE21: module_need (modules.c:366) ==16158== by 0x5859789: CreateDecoder (decoder.c:809) ==16158== by 0x585839C: decoder_New (decoder.c:271) -- System Information: Debian Release: jessie/sid APT prefers unstable APT policy: (990, 'unstable') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.14.0-rc5-local-00041-g8cb38e9-dirty (SMP w/6 CPU cores) Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages libomxil-bellagio0 depends on: ii libc6 2.18-4 libomxil-bellagio0 recommends no packages. Versions of packages libomxil-bellagio0 suggests: pn libomxil-bellagio0-components-base <none> -- no debconf information -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
