From mboxrd@z Thu Jan 1 00:00:00 1970 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: base64 From: Than Ngo To: git-commits@fedoraproject.org Subject: [rpms/krita] f43: Fix rhbz#2476573, CVE-2026-42144 integer overflow in PNM size check bypasses memory guard Date: Wed, 17 Jun 2026 08:40:58 GMT Message-ID: <178168565890.1.194348998575682765.rpms-krita-9aacca6b249a@fedoraproject.org> List-ID: X-Git-Repo: rpms/krita X-Git-Branch: f43 X-Git-Rev: 9aacca6b249a08aaa12c002931b996a4032ae1da QSBuZXcgY29tbWl0IGhhcyBiZWVuIHB1c2hlZC4KClJlcG8gICA6IHJwbXMva3JpdGEKQnJhbmNo IDogZjQzCkNvbW1pdCA6IDlhYWNjYTZiMjQ5YTA4YWFhMTJjMDAyOTMxYjk5NmE0MDMyYWUxZGEK QXV0aG9yIDogVGhhbiBOZ28gPHRoYW5AcmVkaGF0LmNvbT4KRGF0ZSAgIDogMjAyNi0wNi0xN1Qx MDozOToyMiswMjowMApTdGF0cyAgOiArMTcvLTEgaW4gMiBmaWxlKHMpClVSTCAgICA6IGh0dHBz Oi8vc3JjLmZlZG9yYXByb2plY3Qub3JnL3JwbXMva3JpdGEvYy85YWFjY2E2YjI0OWEwOGFhYTEy YzAwMjkzMWI5OTZhNDAzMmFlMWRhP2JyYW5jaD1mNDMKCkxvZzoKRml4IHJoYnojMjQ3NjU3Mywg Q1ZFLTIwMjYtNDIxNDQgaW50ZWdlciBvdmVyZmxvdyBpbiBQTk0gc2l6ZSBjaGVjayBieXBhc3Nl cyBtZW1vcnkgZ3VhcmQKCi0tLQpkaWZmIC0tZ2l0IGEva3JpdGEtZ21pYy1DVkUtMjAyNi00MjE0 NC5wYXRjaCBiL2tyaXRhLWdtaWMtQ1ZFLTIwMjYtNDIxNDQucGF0Y2gKbmV3IGZpbGUgbW9kZSAx MDA2NDQKaW5kZXggMDAwMDAwMC4uNDU0ZTUxMwotLS0gL2Rldi9udWxsCisrKyBiL2tyaXRhLWdt aWMtQ1ZFLTIwMjYtNDIxNDQucGF0Y2gKQEAgLTAsMCArMSwxMiBAQAorZGlmZiAtdXAga3JpdGEt NS4yLjE2L2dtaWMtdjMuNi40LjEvc3JjL0NJbWcuaC5tZSBrcml0YS01LjIuMTYvZ21pYy12My42 LjQuMS9zcmMvQ0ltZy5oCistLS0ga3JpdGEtNS4yLjE2L2dtaWMtdjMuNi40LjEvc3JjL0NJbWcu aC5tZQkyMDI2LTA2LTA3IDE1OjQzOjUyLjI0NjY5MzEzOCArMDIwMAorKysrIGtyaXRhLTUuMi4x Ni9nbWljLXYzLjYuNC4xL3NyYy9DSW1nLmgJMjAyNi0wNi0wNyAxNTo0NDoxNy40NjUyNjI3Mjkg KzAyMDAKK0BAIC01NzQ1OSw3ICs1NzQ1OSw3IEBAIG5hbWVzcGFjZSBjaW1nX2xpYnJhcnkgewor IAorICAgICAgIGlmIChmaWxlbmFtZSkgeyAvLyBDaGVjayB0aGF0IGRpbWVuc2lvbnMgc3BlY2lm aWVkIGluIGZpbGUgZG9lcyBub3QgZXhjZWVkIHRoZSBidWZmZXIgZGltZW5zaW9uCisgICAgICAg ICBjb25zdCBjaW1nX2ludDY0IHNpeiA9IGNpbWc6OmZzaXplKGZpbGVuYW1lKTsKKy0gICAgICAg IGlmIChXKkgqRD5zaXopCisrICAgICAgICBpZiAoKGNpbWdfaW50NjQpVypIKkQ+c2l6KQorICAg ICAgICAgICB0aHJvdyBDSW1nSU9FeGNlcHRpb24oX2NpbWdfaW5zdGFuY2UKKyAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICJsb2FkX3BubSgpOiBTcGVjaWZpZWQgaW1hZ2UgZGltZW5z aW9ucyBpbiBmaWxlICclcycgZXhjZWVkIGZpbGUgc2l6ZS4iLAorICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgY2ltZ19pbnN0YW5jZSwKCmRpZmYgLS1naXQgYS9rcml0YS5zcGVjIGIv a3JpdGEuc3BlYwppbmRleCBhYzE4YjBhLi4yMDhjOTg4IDEwMDY0NAotLS0gYS9rcml0YS5zcGVj CisrKyBiL2tyaXRhLnNwZWMKQEAgLTE1LDcgKzE1LDcgQEAKIAogTmFtZTogICAgICAgICAgIGty aXRhCiBWZXJzaW9uOiAgICAgICAgNS4yLjE2Ci1SZWxlYXNlOiAgICAgICAgMSV7P2Rpc3R9CitS ZWxlYXNlOiAgICAgICAgMiV7P2Rpc3R9CiAKIFN1bW1hcnk6ICAgICAgICBLcml0YSBpcyBhIHNr ZXRjaGluZyBhbmQgcGFpbnRpbmcgcHJvZ3JhbQogTGljZW5zZTogICAgICAgIEdQTC0yLjAtb3It bGF0ZXIKQEAgLTMyLDYgKzMyLDcgQEAgU291cmNlNDogICAgICAgIGh0dHBzOi8vZ2l0aHViLmNv bS92YW55b3NzaS9nbWljL3JlbGVhc2VzL2Rvd25sb2FkL3Yle2dtaWNfdmVyc2kKIFBhdGNoMTog a3JpdGEtNS4yLjE1LWFwcHN0cmVhbV92YWxpZGF0ZS5wYXRjaAogCiAjIyB1cHN0cmVhbSBwYXRj aGVzCitQYXRjaDEwOiBrcml0YS1nbWljLUNWRS0yMDI2LTQyMTQ0LnBhdGNoCiAKICMgaHR0cHM6 Ly9mZWRvcmFwcm9qZWN0Lm9yZy93aWtpL0NoYW5nZXMvRW5jb3VyYWdlSTY4NkxlYWZSZW1vdmFs CiBFeGNsdWRlQXJjaDogICAgJXtpeDg2fQpAQCAtMjI1LDYgKzIyNiw5IEBAIGRlc2t0b3AtZmls ZS12YWxpZGF0ZSAle2J1aWxkcm9vdH0le19rZjVfZGF0YWRpcn0vYXBwbGljYXRpb25zL29yZy5r ZGUua3JpdGEuZGVzCiAKIAogJWNoYW5nZWxvZworKiBXZWQgSnVuIDE3IDIwMjYgVGhhbiBOZ28g PHRoYW5AcmVkaGF0LmNvbT4gLSA1LjIuMTYtMgorLSBGaXggcmhieiMyNDc2NTczLCBDVkUtMjAy Ni00MjE0NCBpbnRlZ2VyIG92ZXJmbG93IGluIFBOTSBzaXplIGNoZWNrIGJ5cGFzc2VzIG1lbW9y eSBndWFyZAorCiAqIFRodSBGZWIgMjYgMjAyNiBZYWFrb3YgU2Vsa293aXR6IDx5c2Vsa293aUBy ZWRoYXQuY29tPiAtIDUuMi4xNi0xCiAtIDUuMi4xNgogCg==