Subject: Bug#871941: marked as done (mkvinfo: null pointer
dereference)



Your message dated Sun, 13 Aug 2017 10:04:11 +0000
with message-id <E1dgpkh-00034i-Bi@xxxxxxxxxxxxxxxxx>
and subject line Bug#871941: fixed in mkvtoolnix 14.0.0-3
has caused the Debian Bug report #871941,
regarding mkvinfo: null pointer dereference
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact owner@xxxxxxxxxxxxxxx
immediately.)


--
871941: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=871941
Debian Bug Tracking System
Contact owner@xxxxxxxxxxxxxxx with problems
--- Begin Message --- Package: mkvtoolnix
Version: 14.0.0-2

mkvinfo crashes on the attached file:

$ mkvinfo nullptr.mkv
+ EBML head
+ Segment, size 808464432
|+ Tags
| + DummyElement: length 4, data: 0x30 0x30 0x30 0x30
Segmentation fault

Valgrind says it's a null pointer dereference:

Invalid read of size 1
at 0x21EC96: to_hex[abi:cxx11](unsigned char const*, unsigned int, bool)
(formatting.cpp:295)
by 0x1631BF: format_binary[abi:cxx11](libebml::EbmlBinary&, unsigned int)
(mkvinfo.cpp:408)
by 0x16EDE2: format_binary (mkvinfo.cpp:424)
by 0x16EDE2: handle_elements_rec(libebml::EbmlStream*, int,
libebml::EbmlElement*, mtx::xml::ebml_converter_c const&) (mkvinfo.cpp:1616)
by 0x1785FF: handle_tags(libebml::EbmlStream*&, int&,
libebml::EbmlElement*&) (mkvinfo.cpp:1651)
by 0x178F0C: handle_segment(libebml::EbmlElement*,
std::shared_ptr<mm_io_c>&, libebml::EbmlStream*) (mkvinfo.cpp:1747)
by 0x179827: process_file(std::__cxx11::basic_string<char, std::char_traits<char>,
std::allocator<char> > const&) (mkvinfo.cpp:1829)
by 0x179D74: console_main() (mkvinfo.cpp:1865)
by 0x123873: main (mkvinfo.cpp:1880)
Address 0x0 is not stack'd, malloc'd or (recently) free'd


Found using American Fuzzy Lop:
http://lcamtuf.coredump.cx/afl/


-- System Information:
Architecture: i386

Versions of packages mkvtoolnix depends on:
ii libboost-filesystem1.62.0 1.62.0+dfsg-4+b1
ii libboost-regex1.62.0 1.62.0+dfsg-4+b1
ii libboost-system1.62.0 1.62.0+dfsg-4+b1
ii libc6 2.24-14
ii libebml4v5 1.3.4-2
ii libflac8 1.3.2-1
ii libgcc1 1:7.1.0-13
ii libmagic1 1:5.31-1
ii libmatroska6v5 1.4.7-2
ii libogg0 1.3.2-1+b1
ii libpugixml1v5 1.8.1-3
ii libstdc++6 7.1.0-13
ii libvorbis0a 1.3.5-4
ii zlib1g 1:1.2.8.dfsg-5

--
Jakub Wilk

Attachment: nullptr.mkv
Description: video/matroska


--- End Message --- --- Begin Message --- Source: mkvtoolnix
Source-Version: 14.0.0-3

We believe that the bug you reported is fixed in the latest version of
mkvtoolnix, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 871941@xxxxxxxxxxxxxxx,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Christian Marillat <marillat@xxxxxxxxxx> (supplier of updated mkvtoolnix
package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@xxxxxxxxxxxxxxxxxxxxx)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Sun, 13 Aug 2017 11:19:44 +0200
Source: mkvtoolnix
Binary: mkvtoolnix mkvtoolnix-gui
Architecture: source i386
Version: 14.0.0-3
Distribution: unstable
Urgency: medium
Maintainer: Christian Marillat <marillat@xxxxxxxxxx>
Changed-By: Christian Marillat <marillat@xxxxxxxxxx>
Description:
mkvtoolnix - Set of command-line tools to work with Matroska files
mkvtoolnix-gui - Set of tools to work with Matroska files - GUI frontend
Closes: 871941
Changes:
mkvtoolnix (14.0.0-3) unstable; urgency=medium
.
* Add upstream patch to fix a crash (null pointer dereference).
(Closes: #871941).
Checksums-Sha1:
ce138ea34ab563ac497dfd624d577e011d471fb1 2195 mkvtoolnix_14.0.0-3.dsc
67855eaa59f639db37b445122de5cd21075f0180 6780 mkvtoolnix_14.0.0-3.debian.tar.xz
fca5e403ca114b7e1888072ae925810ef5713bc7 76611428
mkvtoolnix-dbgsym_14.0.0-3_i386.deb
ef10f4d3e0f2886ace5936c67ad0952e52732fff 44919922
mkvtoolnix-gui-dbgsym_14.0.0-3_i386.deb
3412d10d3a9c9b6b73994af86ec6832a17e57554 2503614
mkvtoolnix-gui_14.0.0-3_i386.deb
32079db50ab581be7579492372badbb9f46a8d1a 13483
mkvtoolnix_14.0.0-3_i386.buildinfo
db08656e5dc7bb8cd24c3a8e72f193953e16c107 3987448 mkvtoolnix_14.0.0-3_i386.deb
Checksums-Sha256:
defb2fad4f95f65a32fa2caac9775c57c78d6a6e33d7da9f00f02441e6e02ab1 2195
mkvtoolnix_14.0.0-3.dsc
70778784593ead343451f24d2d41473bfa68590eb769833233b2bfce87995daa 6780
mkvtoolnix_14.0.0-3.debian.tar.xz
900b1247049b8666270ed33db5c9f297f7faef14c0c34b957bc27696921657c8 76611428
mkvtoolnix-dbgsym_14.0.0-3_i386.deb
f463939ba4a181be3ec5de15cf7006649f8f2b189bd4f4ef0ecb23f340de43cf 44919922
mkvtoolnix-gui-dbgsym_14.0.0-3_i386.deb
bd15a2e60f769ee93ef828a0e84d0e541c959c66196513f3827a2007115aa5c6 2503614
mkvtoolnix-gui_14.0.0-3_i386.deb
2031ca228e8c1b24e7113d04ee5cfa0a90341cd0b8b71522d1048cd708d1123d 13483
mkvtoolnix_14.0.0-3_i386.buildinfo
9df4bd0b33edcfd0f5434c10a4675b219ace3eaa530a129d2545ff5368e62920 3987448
mkvtoolnix_14.0.0-3_i386.deb
Files:
a894ca29b91a405531c0766a0e4d2f61 2195 graphics optional mkvtoolnix_14.0.0-3.dsc
336f1bf96e95e81163297ba1df744a3b 6780 graphics optional
mkvtoolnix_14.0.0-3.debian.tar.xz
bcebe8bac87fb9b6fa8114bc7f22d849 76611428 debug extra
mkvtoolnix-dbgsym_14.0.0-3_i386.deb
0e943dc90ad3acd3c701093d36e01212 44919922 debug extra
mkvtoolnix-gui-dbgsym_14.0.0-3_i386.deb
a3f84f7d8e9fd4d0a3386aa78f6391db 2503614 graphics optional
mkvtoolnix-gui_14.0.0-3_i386.deb
e110f817f5ce6437602e630381817655 13483 graphics optional
mkvtoolnix_14.0.0-3_i386.buildinfo
406046a566f665a82c3946a63ffa9da0 3987448 graphics optional
mkvtoolnix_14.0.0-3_i386.deb

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCAAdFiEEpAH/mTaPofmBUt51XICMK2VVgRcFAlmQH5AACgkQXICMK2VV
gRda8hAA6XjEfys0RWq0Mplf2clDaoSpby5YFeUf7BxcO/d3GqjjWuO/nVYIYYfI
lHg19l8qOVINSknRfmluliuLlNtMF/v1mWyxHyoefM62He9n3oemnQV/AYvAyZQz
GazQUzsD2jh9krrWG+SARUJ4iopa5dcl8DUnXG1jbst6hxyM3lI0wAZBkqsbBBmL
9Jiyo/ogYwpl0lRXi4cwLeYt+C6gk44JcE07f76UoDiEhPDk9zAXRD5mgWuqxLNz
J6QgO9+6anbbej9ru3daMhZyAxzoijIENdCfMSfPU+D7k5jEM/eYdBbvYn4bC+8X
+ZulVXcUr6DtUBsOOGFaCrZTvDMjlP+S0F4j++5rvg6T0ISgXHxwk+xRPhAZBVNv
DH69YXeMW7cBt7Igfa5tT1Ie+6igFh1zIDpZr4j0Qapr4JzaXG8I60pBJ3Wcf06K
0v880Ht6Ak1ACBiwYIikG8V9F3dTrrOoJ30U7RSx6W0URbd1K/QzQUHAjSm5Sdl8
E3E9LE9CM0Kx295DjqeX3dhEpSEe+TLwjhkM78GxJwoMUHZvwo/3XTN7aO6rqDJ0
42PbIcImtcnFz8H+wc8GXapOSoAG19lB3GboMoK8yC1qsc+zC6dfV7tDb+ey4yyC
vNBzmkBtRwH+QpAokdRFlI6x8VBPodWhvKRmaT5kyqI99lK1Zwk=
=2W3A
-----END PGP SIGNATURE-----
--- End Message ---



Programming list archiving by: Enterprise Git Hosting