Opened 9 years ago

Closed 9 years ago

Last modified 9 years ago

#8439 closed patch (fixed)

Invalid read of size 1 in GetNvidiaRates

Reported by: dougt@… Owned by: JYA
Priority: minor Milestone: 0.24
Component: MythTV - General Version: 0.23-fixes
Severity: medium Keywords:
Cc: Ticket locked: no

Description (last modified by sphery)

Valgrind reports:

==32267== Invalid read of size 1
==32267==    at 0x588FC48: GetNvidiaRates(std::map<unsigned int, double, std::less<unsigned int>, std::allocator<std::pair<unsigned int const, double> > >&) (util-nvctrl.cpp:162)
==32267==    by 0x5889978: DisplayResX::GetVideoModes() const (DisplayResX.cpp:129)
==32267==    by 0x8F1BBD5: (below main) (libc-start.c:226)
==32267==  Address 0xed69bbf is 0 bytes after a block of size 3,527 alloc'd
==32267==    at 0x4024F20: malloc (vg_replace_malloc.c:236)
==32267==    by 0x589DAD1: XNVCTRLQueryTargetBinaryData (NVCtrl.c:708)
==32267==    by 0x8F1BBD5: (below main) (libc-start.c:226)
==32267== 

Attachments (1)

a.txt (495 bytes) - added by dougt@… 9 years ago.
possible fix

Download all attachments as: .zip

Change History (5)

Changed 9 years ago by dougt@…

Attachment: a.txt added

possible fix

comment:1 Changed 9 years ago by dougt@…

yuck. sorry about that formatting... trying again:

==32267== Invalid read of size 1
==32267==    at 0x588FC48: GetNvidiaRates(std::map<unsigned int, double, std::less<unsigned int>, std::allocator<std::pair<unsigned int const, double> > >&) (util-nvctrl.cpp:162)
==32267==    by 0x5889978: DisplayResX::GetVideoModes() const (DisplayResX.cpp:129)
==32267==    by 0x8F1BBD5: (below main) (libc-start.c:226)
==32267==  Address 0xed69bbf is 0 bytes after a block of size 3,527 alloc'd
==32267==    at 0x4024F20: malloc (vg_replace_malloc.c:236)
==32267==    by 0x589DAD1: XNVCTRLQueryTargetBinaryData (NVCtrl.c:708)
==32267==    by 0x8F1BBD5: (below main) (libc-start.c:226)
==32267== 

comment:2 Changed 9 years ago by sphery

Description: modified (diff)
Owner: changed from Isaac Richards to JYA
Status: newassigned
Type: defectpatch
Version: Unspecified0.23-fixes

comment:3 Changed 9 years ago by JYA

Resolution: fixed
Status: assignedclosed

(In [24635]) Fix #8439. Note that this part of the code was extracted from the nvidia-settings utility, bug reported upstream too.

comment:4 Changed 9 years ago by stuartm

Milestone: unknown0.24
Note: See TracTickets for help on using tickets.