diff --git a/backport-BUG-fix-use-after-free-bug-in-Py_FindObject.patch b/backport-BUG-fix-use-after-free-bug-in-Py_FindObject.patch new file mode 100644 index 0000000000000000000000000000000000000000..1bc41c9ee40636f1dfbed9bea6858c1c4e60ea0e --- /dev/null +++ b/backport-BUG-fix-use-after-free-bug-in-Py_FindObject.patch @@ -0,0 +1,24 @@ +From 2ecef38c8629e9a27613e646c4f01b5c0a0a566f Mon Sep 17 00:00:00 2001 +From: Py_FindObjects +Date: Tue, 28 Nov 2023 17:33:35 +0800 +Subject: [PATCH] MAINT: Fix use-after-free bug in Py_FindObject + +--- + scipy/ndimage/src/nd_image.c | 1 - + 1 file changed, 1 deletion(-) + +diff --git a/scipy/ndimage/src/nd_image.c b/scipy/ndimage/src/nd_image.c +index 9f3aed3..d9fcc57 100644 +--- a/scipy/ndimage/src/nd_image.c ++++ b/scipy/ndimage/src/nd_image.c +@@ -928,7 +928,6 @@ static PyObject *Py_FindObjects(PyObject *obj, PyObject *args) + Py_XDECREF(slc); + free(regions); + if (PyErr_Occurred()) { +- Py_XDECREF(result); + return NULL; + } else { + return result; +-- +2.27.0 + \ No newline at end of file diff --git a/scipy.spec b/scipy.spec index e1281c7714d060c54288554e20ffc0e7965b04da..f1faa6ce42b048abcf0598d84c466920c27f1a48 100644 --- a/scipy.spec +++ b/scipy.spec @@ -2,7 +2,7 @@ %global debug_package %{nil} Name: scipy Version: 1.6.2 -Release: 2 +Release: 3 Summary: A Python-based ecosystem of open-source software for mathematics, science, and engineering License: Qhull and Apache-2.0 URL: https://www.scipy.org @@ -10,6 +10,7 @@ Source0: https://github.com/scipy/scipy/releases/download/v%{version}/scipy-%{ve Patch1: backport-BUG-fix-a-minor-refcounting-issue-in-Py_FindObjects.patch Patch2: backport-BUG-fix-small-refcount-issue-in-ndimage._ctest.patch +Patch3: backport-BUG-fix-use-after-free-bug-in-Py_FindObject.patch BuildRequires: python3-devel python3-numpy >= 1.8.2 python3-numpy-f2py BuildRequires: gcc-c++ openblas-devel gcc-gfortran chrpath @@ -101,6 +102,11 @@ echo "%{_libdir}/%{name}" >> $RPM_BUILD_ROOT/etc/ld.so.conf.d/%{name}-%{_arch}.c %config(noreplace) /etc/ld.so.conf.d/* %changelog +* Fri Dec 22 2023 xuyuchao - 1.6.2-3 +- Type:CVE +- CVE:CVE-2023-29824 +- DESC:fix CVE-2023-29824 + * Thu Jul 13 2023 Wenyu Liu - 1.6.2-2 - Fix CVE-2023-25399