consider reducing number of supported file formats
Submitted by Allison (desrt)
Link to original bug (#721372)
Description
gdk-pixbuf supports quite a lot of ancient and obscure file formats, often with hand-rolled loader routines which contain long-undiscovered bugs (see bug 721371 for an example just now). This is a massive surface area for attack and I would be surprised if we have several security issues in some of these loaders.
We should consider making a list of the image formats that we actually care to support and disable (and possibly delete) the others by default.
File formats that are supported by external libraries (written by people who presumably care about them) are good ones for keeping and are also popular: png, jpeg, tiff.
It's probably worth keeping .ico and .gif since these are widely used on the web. .bmp is probably still somewhat common as well. .icns is in active use on the mac. xpm/xbm/pnm are maybe interesting from the standpoint that some old unix tools still output these formats and they're very easy to read.
wbmp, tga, ras, qtif, pcx, ani... these are probably prime candidates for being removed.