|
|
|
|
|
|
by Sesse__
45 days ago
|
|
|
I can totally understand why people would want a memory-safe decoder, but a memory-safe encoder is niche. Finding a memory-safety bug in a decoder is a matter of finding a single unchecked integer field somewhere; finding a memory-safety bug in an encoder requires first finding some sort of logic bug in the encoder and then crafting an adversarial input that survives a number of highly lossy transformations. Compare the number of CVEs against x264 (included decoders don't count!) and FFmpeg's H.264 decoder. |
|
|