public inbox for git-commits@fedoraproject.org
help / color / mirror / Atom feed
From: Benjamin Gilbert <bgilbert@backtick.net>
To: git-commits@fedoraproject.org
Subject: [rpms/openslide] f43: Fix CVE-2026-48977
Date: Mon, 08 Jun 2026 04:38:32 GMT [thread overview]
Message-ID: <178089351267.1.893197974790059569.rpms-openslide-fd8aa51491db@fedoraproject.org> (raw)
A new commit has been pushed.
Repo : rpms/openslide
Branch : f43
Commit : fd8aa51491db686c95c5d2619d905d38e7ab72cb
Author : Benjamin Gilbert <bgilbert@backtick.net>
Date : 2026-06-07T15:15:38-05:00
Stats : +19/-0 in 2 file(s)
URL : https://src.fedoraproject.org/rpms/openslide/c/fd8aa51491db686c95c5d2619d905d38e7ab72cb?branch=f43
Log:
Fix CVE-2026-48977
---
diff --git a/openslide.spec b/openslide.spec
index b491518..ad3b0a6 100644
--- a/openslide.spec
+++ b/openslide.spec
@@ -8,6 +8,8 @@ URL: https://openslide.org/
Source0: https://github.com/%{name}/%{name}/releases/download/v%{version}/%{name}-%{version}.tar.xz
# https://github.com/openslide/openslide/pull/706
Patch0: libtiff-partial-tile.patch
+# https://github.com/openslide/openslide/pull/751
+Patch1: ventana-CVE-2026-48977.patch
BuildRequires: pkgconfig(glib-2.0)
BuildRequires: pkgconfig(cairo)
diff --git a/ventana-CVE-2026-48977.patch b/ventana-CVE-2026-48977.patch
new file mode 100644
index 0000000..a98ebb1
--- /dev/null
+++ b/ventana-CVE-2026-48977.patch
@@ -0,0 +1,17 @@
+diff --git a/src/openslide-vendor-ventana.c b/src/openslide-vendor-ventana.c
+index 1297cc3f45a6..0fdf8f783329 100644
+--- a/src/openslide-vendor-ventana.c
++++ b/src/openslide-vendor-ventana.c
+@@ -516,6 +516,12 @@ static struct bif *parse_level0_xml(const char *xml,
+ // get tile counts
+ PARSE_INT_ATTRIBUTE_OR_RETURN(info, ATTR_NUM_COLS, area->tiles_across, NULL);
+ PARSE_INT_ATTRIBUTE_OR_RETURN(info, ATTR_NUM_ROWS, area->tiles_down, NULL);
++ if (area->tiles_across < 1 || area->tiles_down < 1) {
++ g_set_error(err, OPENSLIDE_ERROR, OPENSLIDE_ERROR_FAILED,
++ "Area has invalid tile count %"PRId64"x%"PRId64,
++ area->tiles_across, area->tiles_down);
++ return NULL;
++ }
+
+ // get position
+ // it seems these are always whole numbers, but they are sometimes
reply other threads:[~2026-06-08 4:38 UTC|newest]
Thread overview: [no followups] expand[flat|nested] mbox.gz Atom feed
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=178089351267.1.893197974790059569.rpms-openslide-fd8aa51491db@fedoraproject.org \
--to=bgilbert@backtick.net \
--cc=git-commits@fedoraproject.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox