[FFmpeg-devel] [PATCH] mov: Add an option to toggle dref opening
Michael Niedermayer
michael at niedermayer.cc
Sat Jan 16 14:22:21 CET 2016
On Fri, Jan 15, 2016 at 05:03:49PM +0000, Derek Buitenhuis wrote:
> This feature is mostly only used by NLE software, and is
> both of dubious value being enabled by default, and a
> possible security risk.
>
> Signed-off-by: Derek Buitenhuis <derek.buitenhuis at gmail.com>
> ---
> libavformat/isom.h | 1 +
> libavformat/mov.c | 22 +++++++++++++++++-----
> libavformat/version.h | 4 ++--
> 3 files changed, 20 insertions(+), 7 deletions(-)
i wonder if this should not be a generic option for all demuxers
or maybe a whitelist of what pathes are allowed to be opened, maybe
similar to the existing codec/format whitelists
but thats not a objection to the dref option here ...
[...]
--
Michael GnuPG fingerprint: 9FF2128B147EF6730BADF133611EC787040B0FAB
The educated differ from the uneducated as much as the living from the
dead. -- Aristotle
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 181 bytes
Desc: Digital signature
URL: <http://ffmpeg.org/pipermail/ffmpeg-devel/attachments/20160116/a0e177c1/attachment.sig>
More information about the ffmpeg-devel
mailing list