From 272b6ca9e7f37f683e77018862a14ff9df3ee689 Mon Sep 17 00:00:00 2001
From: xuyuchao <xu.yuchao@xfusion.com>
Date: Fri, 22 Dec 2023 18:10:56 +0800
Subject: [PATCH] * Fri Dec 22 2023 xuyuchao <xu.yuchao@xfusion.com> - 1.6.2 -
 Type:CVE - CVE:CVE-2023-29824 - DESC:fix CVE-2023-29824

---
 backport-CVE-2023-29824.patch | 24 ++++++++++++++++++++++++
 scipy.spec                    |  8 +++++++-
 2 files changed, 31 insertions(+), 1 deletion(-)
 create mode 100644 backport-CVE-2023-29824.patch

diff --git a/backport-CVE-2023-29824.patch b/backport-CVE-2023-29824.patch
new file mode 100644
index 0000000..1bc41c9
--- /dev/null
+++ b/backport-CVE-2023-29824.patch
@@ -0,0 +1,24 @@
+From 2ecef38c8629e9a27613e646c4f01b5c0a0a566f Mon Sep 17 00:00:00 2001
+From: Py_FindObjects
+Date: Tue, 28 Nov 2023 17:33:35 +0800
+Subject: [PATCH] MAINT: Fix use-after-free bug in Py_FindObject
+ 
+---
+ scipy/ndimage/src/nd_image.c | 1 -
+ 1 file changed, 1 deletion(-)
+ 
+diff --git a/scipy/ndimage/src/nd_image.c b/scipy/ndimage/src/nd_image.c
+index 9f3aed3..d9fcc57 100644
+--- a/scipy/ndimage/src/nd_image.c
++++ b/scipy/ndimage/src/nd_image.c
+@@ -928,7 +928,6 @@ static PyObject *Py_FindObjects(PyObject *obj, PyObject *args)
+     Py_XDECREF(slc);
+     free(regions);
+     if (PyErr_Occurred()) {
+-        Py_XDECREF(result);
+         return NULL;
+     } else {
+         return result;
+-- 
+2.27.0
+ 
\ No newline at end of file
diff --git a/scipy.spec b/scipy.spec
index b28fe41..e381148 100644
--- a/scipy.spec
+++ b/scipy.spec
@@ -3,7 +3,7 @@
 
 Name: scipy
 Version: 1.2.2
-Release: 4
+Release: 5
 Summary: A Python-based ecosystem of open-source software for mathematics, science, and engineering
 License: BSD, MIT, Boost and Public Domain
 URL: https://www.scipy.org
@@ -11,6 +11,7 @@ Source0: https://github.com/scipy/scipy/releases/download/v%{version}/scipy-%{ve
 
 Patch1:    backport-BUG-fix-a-minor-refcounting-issue-in-Py_FindObjects.patch
 Patch2:    backport-BUG-fix-small-refcount-issue-in-ndimage._ctest.patch
+Patch3:    backport-CVE-2023-29824.patch
 
 BuildRequires: python3-devel python3-numpy >= 1.8.2 python3-numpy-f2py
 #BuildRequires: python3-pytest
@@ -134,6 +135,11 @@ env FFLAGS="$RPM_OPT_FLAGS -fPIC" \
 %endif
 
 %changelog
+* Fri Dec 22 2023 xuyuchao <xu.yuchao@xfusion.com> - 1.2.2-5
+- Type:CVE
+- CVE:CVE-2023-29824
+- DESC:fix CVE-2023-29824
+
 * Thu Jul 13 2023 Wenyu Liu <liuwenyu7@huawei.com> - 1.2.2-4
 - Fix CVE-2023-25399
 
-- 
Gitee