Closed Frank-Z7 closed 11 months ago
@Frank-Z7 commit 78dd8fe should help with the two direct leaks.
I don't understand the reason for the indirect leaks related to std::vector
, so I'll leave it for somebody else @justdan96, @xavery
Edit: is it bad practice to resize or push_back a vector inside a structure ? Should the MOVStreamContext
be changed to a class ?
@Frank-Z7 commit 78dd8fe should help with the two direct leaks. I don't understand the reason for the indirect leaks related to
std::vector
, so I'll leave it for somebody else @justdan96, @xaveryEdit: is it bad practice to resize or push_back a vector inside a structure ? Should the
MOVStreamContext
be changed to a class ?
Hi @jcdr428 ,Thanks for your time! I used tsMuxeR version git-665acce to re-test it. The new version of tsMuxeR does not have memory leaks, but it seems that the program will not run properly and terminate when processing files in mp4 format. Here is my complete test compilation command: // First you need to install afl++ git clone https://github.com/AFLplusplus/AFLplusplus cd AFLplusplus apt install build-essential libtool-bin python3-dev automake flex bison libglib2.0-dev libpixman-1-dev clang python3-setuptools llvm make -j24 make install // Then compile tsMuxer export CC=afl-clang-fast export CXX=afl-clang-fast++ cmake . AFL_USE_ASAN=1 make -j24 // Finally run the test case ./tsMuxer/tsmuxer PocTsmuxerMp4.mp4
Ok, I have pushed a regression on File seeking. @Frank-Z7 can you please test tomorrow's release and confirm that the issue is closed ?
Memory leak on tsMuxer
Description
We found a memory leak error when we used tsMuxer/tsmuxer to process mp4 format files.
(SUMMARY: AddressSanitizer: 26339 byte(s) leaked in 72 allocation(s).)
Version
tsMuxeR version git-2539d07 is the latest version.
Reference
https://github.com/justdan96/tsMuxer
PoC
PocTsmuxerMp4.mp4: https://github.com/Frank-Z7/z-vulnerabilitys/blob/main/PocTsmuxerMp4.mp4
Reproduction
Environment
ASAN Log
Since github has restrictions on the length of comments, the complete ASAN Log can be found at:
https://github.com/Frank-Z7/z-vulnerabilitys/blob/main/tsmuxer_ASAN_Log.txt
Credit
Zeng Yunxiang ([Huazhong University of Science and Technology](http://cse.hust.edu.cn/)) Song Jiaxuan