Here is the trace reported by gdb (the stack is smashed):
Stopped reason: SIGABRT
gef➤ bt
#0 0x0000000001f15d08 in raise ()
#1 0x0000000001f15f3a in abort ()
#2 0x0000000001f24ed6 in __libc_message ()
#3 0x0000000001f70a92 in __fortify_fail ()
#4 0x0000000001f70a3e in __stack_chk_fail ()
#5 0x000000000127f3ad in gf_text_get_utf8_line (szLine=<optimized out>, lineSize=<optimized out>, txt_in=<optimized out>, unicode_type=0x0) at /mnt/data/playground/gpac/src/filters/load_text.c:337
#6 0xc2657485c3a5c37e in ?? ()
#7 0xbcc3739fc3314583 in ?? ()
#8 0x0748654e86c3aac3 in ?? ()
....
#14 0x609ec3a0c3a7c26e in ?? ()
#15 0x11bdcd643758a5c3 in ?? ()
#16 0x00000000009ac35e in gf_isom_load_extra_boxes (movie=0xc53f89c4114aacc2, moov_boxes=<optimized out>, moov_boxes_size=<optimized out>, udta_only=(unknown: 2747429506)) at /mnt/data/playground/gpac/src/isomedia/isom_write.c:615
#17 0x0000000000000000 in ?? ()
The text was updated successfully, but these errors were encountered:
5hadowblad3
changed the title
System abort (Core dump) caused by buffer overflow using MP4Box in gf_text_get_utf8_line
System abort (Core dumped) caused by buffer overflow using MP4Box in gf_text_get_utf8_line
Aug 27, 2021
Hi, there.
There is a buffer overflow in gf_text_get_utf8_line, in commit 592ba26 that results in system abort (core dumped).
Here is my environment, compiler info and gpac version:
To reproduce, run
POC:
poc.zip
(unzip first)
This is the output of the program:
Here is the trace reported by gdb (the stack is smashed):
The text was updated successfully, but these errors were encountered: