[rpms/openslide] epel10: Fix CVE-2026-48977

public inbox for git-commits@fedoraproject.org
help / color / mirror / Atom feed

* [rpms/openslide] epel10: Fix CVE-2026-48977
@ 2026-06-08  7:57 Benjamin Gilbert
  0 siblings, 0 replies; only message in thread
From: Benjamin Gilbert @ 2026-06-08  7:57 UTC (permalink / raw)
  To: git-commits

A new commit has been pushed.

Repo   : rpms/openslide
Branch : epel10
Commit : 021fda826272ffaa69c814d9e9934ad65e5b5fbb
Author : Benjamin Gilbert <bgilbert@backtick.net>
Date   : 2026-06-08T02:56:19-05:00
Stats  : +20/-1 in 2 file(s)
URL    : https://src.fedoraproject.org/rpms/openslide/c/021fda826272ffaa69c814d9e9934ad65e5b5fbb?branch=epel10

Log:
Fix CVE-2026-48977

---
diff --git a/openslide.spec b/openslide.spec
index e571ab3..a3e2d60 100644
--- a/openslide.spec
+++ b/openslide.spec
@@ -6,6 +6,8 @@ Summary:	C library for reading virtual slides
 License:	LGPL-2.1-only
 URL:		https://openslide.org/
 Source0:	https://github.com/%{name}/%{name}/releases/download/v%{version}/%{name}-%{version}.tar.xz
+# https://github.com/openslide/openslide/pull/751
+Patch0:		ventana-CVE-2026-48977.patch
 
 BuildRequires:	pkgconfig(glib-2.0)
 BuildRequires:	pkgconfig(cairo)
@@ -58,7 +60,7 @@ with virtual slides.
 
 
 %prep
-%autosetup
+%autosetup -p1
 
 
 %build

diff --git a/ventana-CVE-2026-48977.patch b/ventana-CVE-2026-48977.patch
new file mode 100644
index 0000000..a98ebb1
--- /dev/null
+++ b/ventana-CVE-2026-48977.patch
@@ -0,0 +1,17 @@
+diff --git a/src/openslide-vendor-ventana.c b/src/openslide-vendor-ventana.c
+index 1297cc3f45a6..0fdf8f783329 100644
+--- a/src/openslide-vendor-ventana.c
++++ b/src/openslide-vendor-ventana.c
+@@ -516,6 +516,12 @@ static struct bif *parse_level0_xml(const char *xml,
+     // get tile counts
+     PARSE_INT_ATTRIBUTE_OR_RETURN(info, ATTR_NUM_COLS, area->tiles_across, NULL);
+     PARSE_INT_ATTRIBUTE_OR_RETURN(info, ATTR_NUM_ROWS, area->tiles_down, NULL);
++    if (area->tiles_across < 1 || area->tiles_down < 1) {
++      g_set_error(err, OPENSLIDE_ERROR, OPENSLIDE_ERROR_FAILED,
++                  "Area has invalid tile count %"PRId64"x%"PRId64,
++                  area->tiles_across, area->tiles_down);
++      return NULL;
++    }
+ 
+     // get position
+     // it seems these are always whole numbers, but they are sometimes

^ permalink raw reply related	[flat|nested] only message in thread

only message in thread, other threads:[~2026-06-08  7:57 UTC | newest]

Thread overview: (only message) (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2026-06-08  7:57 [rpms/openslide] epel10: Fix CVE-2026-48977 Benjamin Gilbert

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox