Hello, On Thursday 21 January 2016 23:03:25 Andreas Cadhalpun wrote: > Why not fix the issue properly instead of removing useful functionality?
By its very essence, the concat protocol allows for injection attacks with untrusted URLs (the same super-class of vulnerabilities as XSS and SQL injection). Either you remove that functionality, or you ensure that all URls ever passed to libavformat trusted. Best of luck with the latter option. -- Rémi Denis-Courmont http://www.remlab.net/ _______________________________________________ libav-devel mailing list [email protected] https://lists.libav.org/mailman/listinfo/libav-devel
