#406 VIRTUALDUB AVLIB-1 CRASHED

[Anonymous]

VirtualDub2 crash report -- build 44015 (release)

Disassembly:
6563da20: 2389cfc74424 and ecx, [ecx+2444c7cf]
6563da26: 0c00 or al, 00h
6563da28: 0000 add [eax], al
6563da2a: 0089442408c1 add [ecx-3ef7dbbc], cl
6563da30: ef out dx, eax
6563da31: 0583e70189 add eax, 8901e783
6563da36: fe db 0feh
6563da37: d3e7 shl edi, cl
6563da39: 83f601 xor esi, 01h
6563da3c: d3e6 shl esi, cl
6563da3e: 397c240c cmp [esp+0ch], edi
6563da42: 7e0c jle 6563da50
6563da44: 31db xor ebx, ebx
6563da46: 83c414 add esp, 14h
6563da49: 89d8 mov eax, ebx
6563da4b: 5b pop ebx
6563da4c: 5e pop esi
6563da4d: 5f pop edi
6563da4e: 5d pop ebp
6563da4f: c3 ret
6563da50: 7d22 jge 6563da74
6563da52: 890424 mov [esp], eax
6563da55: c7442404001000 mov dword ptr [esp+04h], 00001000
00
6563da5d: 89e9 mov ecx, ebp
6563da5f: 89d8 mov eax, ebx
6563da61: e89afdffff call 6563d800
6563da66: 85c0 test eax, eax
6563da68: 78da js 6563da44
6563da6a: 83c414 add esp, 14h
6563da6d: 89d8 mov eax, ebx
6563da6f: 5b pop ebx
6563da70: 5e pop esi
6563da71: 5f pop edi
6563da72: 5d pop ebp
6563da73: c3 ret
6563da74: 39f0 cmp eax, esi
6563da76: 72da jc 6563da52
6563da78: 31db xor ebx, ebx
6563da7a: ebca jmp 6563da46
6563da7c: 8d742600 lea esi, [esi+00h]
6563da80: 55 push ebp
6563da81: 57 push edi
6563da82: 56 push esi
6563da83: 53 push ebx
6563da84: 83ec08 sub esp, 08h
6563da87: 8b5c241c mov ebx, [esp+1ch]
6563da8b: 8b4c2424 mov ecx, [esp+24h]
6563da8f: 8b6c2428 mov ebp, [esp+28h]
6563da93: 8b442420 mov eax, [esp+20h]
6563da97: 8b9300040000 mov edx, [ebx+400]
6563da9d: 01cd add ebp, ecx
6563da9f: 85d2 test edx, edx
6563daa1: 0f858a000000 jnz 6563db31
6563daa7: f6c103 test cl, 03h
6563daaa: 7421 jz 6563dacd
6563daac: 39e9 cmp ecx, ebp
6563daae: 7206 jc 6563dab6
6563dab0: eb1b jmp 6563dacd
6563dab2: 39cd cmp ebp, ecx
6563dab4: 7617 jbe 6563dacd
6563dab6: 83c101 add ecx, 01h
6563dab9: 0fb651ff movzx edx, byte ptr [ecx-01h] <-- FAULT
6563dabd: 31c2 xor edx, eax
6563dabf: c1e808 shr eax, 08h
6563dac2: 0fb6d2 movzx edx, dl
6563dac5: 330493 xor eax, [ebx+edx*4]
6563dac8: f6c103 test cl, 03h
6563dacb: 75e5 jnz 6563dab2
6563dacd: 8d7dfd lea edi, [ebp-03h]
6563dad0: 39cf cmp edi, ecx
6563dad2: 893c24 mov [esp], edi
6563dad5: 765a jbe 6563db31
6563dad7: 89ce mov esi, ecx
6563dad9: 894c2424 mov [esp+24h], ecx
6563dadd: 896c2404 mov [esp+04h], ebp
6563dae1: 89f9 mov ecx, edi
6563dae3: 3306 xor eax, [esi]
6563dae5: 83c604 add esi, 04h
6563dae8: 89c2 mov edx, eax
6563daea: 89c5 mov ebp, eax
6563daec: c1ea10 shr edx, 10h
6563daef: c1ed18 shr ebp, 18h
6563daf2: 0fb6fa movzx edi, dl
6563daf5: 0fb6d0 movzx edx, al
6563daf8: 0fb6c4 movzx eax, ah
6563dafb: 8b9493000c0000 mov edx, [ebx+edx*4+c00]
6563db02: 3314ab xor edx, [ebx+ebp*4]
6563db05: 33948300080000 xor edx, [ebx+eax*4+800]
6563db0c: 8b84bb00040000 mov eax, [ebx+edi*4+400]
6563db13: 31d0 xor eax, edx
6563db15: 39ce cmp esi, ecx
6563db17: 72ca jc 6563dae3
6563db19: 8b4c2424 mov ecx, [esp+24h]
6563db1d: 8b3424 mov esi, [esp]

Built on Anton4 on Mon Dec 02 01:47:09 2019 using compiler version 1500

Windows 6.3 (Windows 7 x64 build 9600) []
Memory status: virtual free 68M/2048M, commit limit 30170M, physical total 8109M

EAX = ffffffff
EBX = 6709e580
ECX = 00000007
EDX = 00000000
EBP = ffffffe0
ESI = 0288f220
EDI = 028a8f20
ESP = 0c62fa58
EIP = 6563dab9
EFLAGS = 00010202
FPUCW = 027f
FPUTW = ffff

Crash reason: Access Violation

Crash context:
An out-of-bounds memory access (access violation) occurred in module 'avlib-1'...

...reading address 00000006...

...while running thread "Processing" (thread.cpp:197).

Pointer dumps:

EBX 6709e580: 00000000 77073096 ee0e612c 990951ba 076dc419 706af48f e963a535 9e6495a3
ESI 0288f220: 665899c0 00000001 028a9a60 028a9100 0000025c 00000000 00000008 00000000
EDI 028a8f20: 66574e40 389bb540 00040000 389bb54c 389fb540 06c09c20 654da2f0 654da2e0
ESP 0c62fa58: 00f20000 00000038 0290eba0 0288f220 028a8f20 0c62fc9c 65545579 6709e580
0c62fa78: ffffffff 00000006 ffffffda 028fd488 02888558 00f20000 00000000 0c62fab4
0c62fa98: 77e58786 00000000 00000000 00000000 02899ac0 87425bbc 00000000 00000008
0c62fab8: 0c62fc94 ffffffda 00000000 00000001 d89dc176 00000000 00000000 00000000

Thread call stack:
6563dab9: avlib-1!VDDriverProc [64c40000+1b030+9e2a89]
65545579: avlib-1!VDDriverProc [64c40000+1b030+8ea549]
77e58786: ntdll!RtlFreeHeap [77e10000+48740+46]
655480fc: avlib-1!VDDriverProc [64c40000+1b030+8ed0cc]
77074db7: msvcrt!_aligned_free [77030000+44da0+17]
65593e5b: avlib-1!VDDriverProc [64c40000+1b030+938e2b]
770babb3: msvcrt!wcstok_s [77030000+8a920+293]
64c80123: avlib-1!VDDriverProc [64c40000+1b030+250f3]
65598538: avlib-1!VDDriverProc [64c40000+1b030+93d508]
64c48c6f: avlib-1!00008c6f
6565511c: avlib-1!VDDriverProc [64c40000+1b030+9fa0ec]
77e5d1f8: ntdll!RtlRunOnceExecuteOnce [77e10000+4d1e0+18]
656551ef: avlib-1!VDDriverProc [64c40000+1b030+9fa1bf]
004b2e95: ?$VDRenderBufferAllocator::FreeFrame()
64c48c6f: avlib-1!00008c6f
77e816ac: ntdll!NtReleaseSemaphore [77e10000+716a0+c]
76a83ac4: KERNELBASE!ReleaseSemaphore [76960000+123ab0+14]
004b2e95: ?$VDRenderBufferAllocator::FreeFrame()
0050a535: AVIOutputPluginStream::write()
004289da: VDDubProcessThread::WriteAudio()
0042eff4: VDStreamInterleaver::PushStreams()
0042effc: VDStreamInterleaver::PushStreams()
0042f4fd: VDStreamInterleaver::GetNextAction()
00428e03: VDDubProcessThread::ThreadRun()
00401737: ?$VDProtectedAutoScope1::?$VDProtectedAutoScope1()
0055d12d: VDThread::StaticThreadStart()
0066e5de: _callthreadstartex()
0066e686: _threadstartex@4()
76b9fa29: KERNEL32!BaseThreadInitThunk [76b80000+1fa10+19]
77e775f4: ntdll!RtlGetAppContainerNamedObjectPath [77e10000+67510+e4]
77e775c4: ntdll!RtlGetAppContainerNamedObjectPath [77e10000+67510+b4]

-- End of report