make it possible to enable and disable all input parsers individually (lz4, codecs, etc)
|Reported by:||Antoine Martin||Owned by:||maxmylyn|
Following the recent problems with lz4 (in particular Hacking CERN - Exploiting python-lz4 for Particles and Profit, and Raising Lazarus - The 20 Year Old Bug that Went to Mars: Linux Kernel, ffmpeg..).
There have been numerous vulnerabilities in ffmpeg over the years, and even the venerable zlib is not immune to bugs. And zlib is also used in PNG...
It makes sense to assume that every non-trivial input parser is going to have issues.
This is more problematic for platforms like win32 and osx, for which we are forced to ship a large number of libraries ourselves because their respective OS vendor provides very little: this means we also become responsible for updating the installers every time a new flaw is discovered. It also means that the more security conscious users cannot pre-emptively disable this code.
The solution is to provide options to allow as many of those parsers to be switched on or off via the command line (or configuration file) - which is much easier and faster than installing newer versions of the software.
The priority should be for the parsers that can most easily be abused: the network layer must parse data before the connection is authenticated.
List of new switches required:
zlib(at least one should be enabled)
rencode(at least one must be enabled)
- crypto layer
- video decoders (we already have switches for encoders and csc, see:
- picture encoders and decoders: to deal with non-video codecs (
Change History (12)
comment:4 Changed 3 years ago by
|Owner:||changed from Antoine Martin to alas|
comment:7 Changed 3 years ago by
|Owner:||changed from alas to maxmylyn|
comment:9 Changed 3 years ago by
|Status:||new → closed|