> 2020年3月20日 下午8:25,Nicolas George <geo...@nsup.org> 写道:
> 
>> The end can be null, there can only maxFrameRate=25, or maxFrameRate=60/2.
> 
> It is a value from the outside, you can't trust it on pail of security
> exploit.
Yes, av_strtok get the first part and the other part,
And use the strtol get the first part to long, it check the string range, and 
get the endpoint of (not number part.)
The end is same as the first part.
I cannot sure if I misunderstand the usage, I think I need one example of the 
security exploit.
> 
>> Just tell the user this value is incorrect in mpd, the result maybe does not 
>> accord with the expected result.
>> User should check the mpd file content is correct.
> 
> Which user knows about the mpd?
I think you are right , let me think how to do it.

Thanks

Steven Liu

_______________________________________________
ffmpeg-devel mailing list
ffmpeg-devel@ffmpeg.org
https://ffmpeg.org/mailman/listinfo/ffmpeg-devel

To unsubscribe, visit link above, or email
ffmpeg-devel-requ...@ffmpeg.org with subject "unsubscribe".

Reply via email to