Ubuntu
libsndfile package

libsndfile crashed with stack overflow in psf_binheader_readf()

Bug #1807825 reported by Jaeseung Choi
10
This bug affects 1 person
Affects Status Importance Assigned to Milestone
libsndfile (Ubuntu)
Fix Released
Medium
Unassigned

Bug Description

- When running 'sndfile-info' program from 'sndfile-programs' package, the program crashed with stack overflow (possibly by unbounded recursion of guess_file_type() function). The crash point is within libsndfile.so library, so the bug seems to be in 'libsndfile' package.
- 'sndfile-play' program from 'sndfile-programs' package also crashes with the same input.

ProblemType: Crash
DistroRelease: Ubuntu 16.04
Package: sndfile-programs 1.0.25-10ubuntu0.16.04.1
ProcVersionSignature: Ubuntu 4.15.0-42.45~16.04.1-generic 4.15.18
Uname: Linux 4.15.0-42-generic x86_64
ApportVersion: 2.20.1-0ubuntu2.18
Architecture: amd64
CurrentDesktop: Unity
Date: Mon Dec 10 23:16:55 2018
ExecutablePath: /usr/bin/sndfile-info
InstallationDate: Installed on 2018-12-06 (5 days ago)
InstallationMedia: Ubuntu 16.04.5 LTS "Xenial Xerus" - Release amd64 (20180731)
ProcCmdline: sndfile-info crash-0_00010633
Signal: 11
SourcePackage: libsndfile
StacktraceTop:
 psf_binheader_readf (psf=psf@entry=0x95e420, format=0x7f36299f6651 "", format@entry=0x7f36299f664f "pb") at common.c:1040
 id3_skip (psf=psf@entry=0x95e420) at id3.c:35
 guess_file_type (psf=psf@entry=0x95e420) at sndfile.c:2423
 guess_file_type (psf=psf@entry=0x95e420) at sndfile.c:2424
 guess_file_type (psf=psf@entry=0x95e420) at sndfile.c:2424
Title: sndfile-info crashed with SIGSEGV in psf_binheader_readf()
UpgradeStatus: No upgrade log present (probably fresh install)
UserGroups: adm cdrom dip lpadmin plugdev sambashare sudo

Revision history for this message
Jaeseung Choi (jschoi.2022) wrote :
information type: Private → Public
Revision history for this message
Jaeseung Choi (jschoi.2022) wrote :
Revision history for this message
Apport retracing service (apport) wrote :

StacktraceTop:
 psf_binheader_readf (psf=psf@entry=0x95e420, format=0x7f36299f6651 "", format@entry=0x7f36299f664f "pb") at common.c:1040
 id3_skip (psf=psf@entry=0x95e420) at id3.c:35
 guess_file_type (psf=psf@entry=0x95e420) at sndfile.c:2423
 guess_file_type (psf=psf@entry=0x95e420) at sndfile.c:2424
 guess_file_type (psf=psf@entry=0x95e420) at sndfile.c:2424

Revision history for this message
Apport retracing service (apport) wrote : Stacktrace.txt
Revision history for this message
Apport retracing service (apport) wrote : StacktraceSource.txt
Revision history for this message
Apport retracing service (apport) wrote : ThreadStacktrace.txt
Changed in libsndfile (Ubuntu):
importance: Undecided → Medium
tags: removed: need-amd64-retrace
Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package libsndfile - 1.0.31-1ubuntu1

---------------
libsndfile (1.0.31-1ubuntu1) hirsute; urgency=medium

  * debian/rules: forcefully enable tests (they are disabled by default on
    riscv64 in Ubuntu) because libsndfile1-dev wants to install test binaries
    (LP: #1917650)

 -- Olivier Tilloy <email address hidden> Wed, 03 Mar 2021 17:53:18 +0100

Changed in libsndfile (Ubuntu):
status: New → Fix Released
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.