[FFmpeg-devel] [PATCH] lavc/libx265: flag as experimental
Anton Khirnov
anton at khirnov.net
Wed Mar 15 17:11:14 EET 2023
Quoting James Almer (2023-03-15 15:46:41)
> On 3/15/2023 11:45 AM, Anton Khirnov wrote:
> > This encoder leaks and overreads, as can be seen e.g. by running an
> > encode under valgrind with default encoder parameters. This was known
> > upstream since at least 2019 (e.g. bitbucket issue #482) but never fixed
> > until now.
> >
> > Since upstream does not seem to practice basic code hygiene, make sure
> > people do not use this encoder without knowing what they are getting
> > into.
>
> This is a really bad idea. It will break several scripts and command
> lines that were working perfectly fine and giving the desired results.
I thought we prioritize security and correctness over keeping
commandlines working at all cost. Besides, this might motivate someone
into actually fixing x265.
We have a long-standing reputation for being an endless source of
security issues. I think we should take stands like this more often if
we want to get rid of it.
--
Anton Khirnov
More information about the ffmpeg-devel
mailing list