{"payload":{"feedbackUrl":"https://github.com/orgs/community/discussions/53140","repo":{"id":775176807,"defaultBranch":"master","name":"Bento4","ownerLogin":"roticv","currentUserCanPush":false,"isFork":true,"isEmpty":false,"createdAt":"2024-03-20T22:38:58.000Z","ownerAvatar":"https://avatars.githubusercontent.com/u/4194701?v=4","public":true,"private":false,"isOrgOwned":false},"refInfo":{"name":"","listCacheKey":"v0:1710974340.013953","currentOid":""},"activityList":{"items":[{"before":"ad05057848a3eab7bd089aac1937f7473ab1ea95","after":"b92b7c3042a0f02d233dd5c9b3be2db804670b18","ref":"refs/heads/master","pushedAt":"2024-05-12T17:49:27.000Z","pushType":"push","commitsCount":2,"pusher":{"login":"roticv","name":"Victor Loh","path":"/roticv","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/4194701?s=80&v=4"},"commit":{"message":"g++/c++ 20 compat","shortMessageHtmlLink":"g++/c++ 20 compat"}},{"before":"26df396615a4b417fc887d041e18b8839555f061","after":"ad05057848a3eab7bd089aac1937f7473ab1ea95","ref":"refs/heads/master","pushedAt":"2024-04-07T23:55:25.000Z","pushType":"push","commitsCount":3,"pusher":{"login":"roticv","name":"Victor Loh","path":"/roticv","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/4194701?s=80&v=4"},"commit":{"message":"Merge pull request #934 from ftyp/fix-smooth-ismc\n\nFix Smooth Streaming Client Manifest URLs","shortMessageHtmlLink":"Merge pull request <a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2202855062\" data-permission-text=\"Title is private\" data-url=\"https://github.com/axiomatic-systems/Bento4/issues/934\" data-hovercard-type=\"pull_request\" data-hovercard-url=\"/axiomatic-systems/Bento4/pull/934/hovercard\" href=\"https://github.com/axiomatic-systems/Bento4/pull/934\">axiomatic-systems#934</a> from ftyp/fix-smooth-ismc"}},{"before":"b977973f3337aed0d8450dfac331970c66496b42","after":"26df396615a4b417fc887d041e18b8839555f061","ref":"refs/heads/master","pushedAt":"2024-04-02T04:20:25.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"roticv","name":"Victor Loh","path":"/roticv","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/4194701?s=80&v=4"},"commit":{"message":"Add boundary checks for Ap4StsdAtom\n\nSame problem as before, underflow of bytes_available results in some potential\nattack","shortMessageHtmlLink":"Add boundary checks for Ap4StsdAtom"}},{"before":"8806fe2f690f4a9a0ed072d846a1320778b09192","after":"b977973f3337aed0d8450dfac331970c66496b42","ref":"refs/heads/master","pushedAt":"2024-03-28T06:37:56.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"roticv","name":"Victor Loh","path":"/roticv","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/4194701?s=80&v=4"},"commit":{"message":"Boundary checks in Ap4ContainerAtom\n\nThe lack of boundary checks in Ap4ContainerAtom leads to an underflow\nin size which then leads to existing validation checks to fail and hence allow\nlarge malloc.","shortMessageHtmlLink":"Boundary checks in Ap4ContainerAtom"}},{"before":"f9f6b22cffde31713e8ee193b74717f07e8626f1","after":"8806fe2f690f4a9a0ed072d846a1320778b09192","ref":"refs/heads/master","pushedAt":"2024-03-27T00:17:24.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"roticv","name":"Victor Loh","path":"/roticv","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/4194701?s=80&v=4"},"commit":{"message":"Prevent overflow in boundary check for Ap4SbgpAtom\n\nFuzzer caught another large malloc in Ap4SbgpAtom. It is caused by overflow\nin boundary check","shortMessageHtmlLink":"Prevent overflow in boundary check for Ap4SbgpAtom"}},{"before":"84b95d424c27d1dd7ec503377cab392a9434e8fb","after":"f9f6b22cffde31713e8ee193b74717f07e8626f1","ref":"refs/heads/master","pushedAt":"2024-03-24T06:18:39.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"roticv","name":"Victor Loh","path":"/roticv","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/4194701?s=80&v=4"},"commit":{"message":"Add boundary checks to Ap4SbgpAtom\n\nFuzzer caught another large malloc. This is caused by lack of boundary check\nin Ap4SbgpAtom causing underflow.","shortMessageHtmlLink":"Add boundary checks to Ap4SbgpAtom"}},{"before":"06f0d062d8329d7cc966946a10df0a3e857d5187","after":"84b95d424c27d1dd7ec503377cab392a9434e8fb","ref":"refs/heads/master","pushedAt":"2024-03-23T05:17:03.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"roticv","name":"Victor Loh","path":"/roticv","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/4194701?s=80&v=4"},"commit":{"message":"More boundary checks for Ap4SaioAtom\n\nEarlier boundary checks were insufficient to prevent certain potential\npayloads. This adds more boundary checks to prevent underflow of remains. I have\nalso remove the usage of GetHeaderSize in constructor as it is a virtual method.","shortMessageHtmlLink":"More boundary checks for Ap4SaioAtom"}},{"before":"525027c6ef57bdd26636c9557239e7d559c612ad","after":"06f0d062d8329d7cc966946a10df0a3e857d5187","ref":"refs/heads/master","pushedAt":"2024-03-23T05:11:55.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"roticv","name":"Victor Loh","path":"/roticv","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/4194701?s=80&v=4"},"commit":{"message":"Add boundary checks to Ap4OdheAtom\n\nFuzzer caught another large malloc. This is caused by lack of boundary check\nin Ap4OdheAtom causing underflow.","shortMessageHtmlLink":"Add boundary checks to Ap4OdheAtom"}},{"before":"3ed084f04c7d3baf1777f5c93927f76cd0f28319","after":"525027c6ef57bdd26636c9557239e7d559c612ad","ref":"refs/heads/master","pushedAt":"2024-03-22T23:29:14.000Z","pushType":"push","commitsCount":6,"pusher":{"login":"roticv","name":"Victor Loh","path":"/roticv","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/4194701?s=80&v=4"},"commit":{"message":"Merge pull request #932 from ftyp/fix-eac3-smooth\n\nFix eac3 smooth","shortMessageHtmlLink":"Merge pull request <a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2186230619\" data-permission-text=\"Title is private\" data-url=\"https://github.com/axiomatic-systems/Bento4/issues/932\" data-hovercard-type=\"pull_request\" data-hovercard-url=\"/axiomatic-systems/Bento4/pull/932/hovercard\" href=\"https://github.com/axiomatic-systems/Bento4/pull/932\">axiomatic-systems#932</a> from ftyp/fix-eac3-smooth"}},{"before":"147f15aac87e7cc16a686f1a7f8b10a8549d7508","after":"3ed084f04c7d3baf1777f5c93927f76cd0f28319","ref":"refs/heads/master","pushedAt":"2024-03-20T23:30:12.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"roticv","name":"Victor Loh","path":"/roticv","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/4194701?s=80&v=4"},"commit":{"message":"Add boundary checks to Ap4IproAtom\n\nFuzzer caught another large malloc. This is caused by lack of boundary check\nresulting in the next atom (children atom) to artificially large \"size\"\ndue to the underflow in bytes_available.","shortMessageHtmlLink":"Add boundary checks to Ap4IproAtom"}},{"before":"f13abef6cccbe91ee894511e4abf7322b276edec","after":"147f15aac87e7cc16a686f1a7f8b10a8549d7508","ref":"refs/heads/master","pushedAt":"2024-03-20T22:57:41.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"roticv","name":"Victor Loh","path":"/roticv","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/4194701?s=80&v=4"},"commit":{"message":"Fix overflow issues found by fuzzer\n\nFuzzer had caught a number of large malloc and these large malloc were caused\nby overflow of AP4_UI32 causing the validation logic to be skipped.","shortMessageHtmlLink":"Fix overflow issues found by fuzzer"}}],"hasNextPage":false,"hasPreviousPage":false,"activityType":"all","actor":null,"timePeriod":"all","sort":"DESC","perPage":30,"cursor":"djE6ks8AAAAER8a5lwA","startCursor":null,"endCursor":null}},"title":"Activity · roticv/Bento4"}