From 348c666fc7b08337a56d3ebf7364e3b8b2c43465 Mon Sep 17 00:00:00 2001
From: "Benjamin A. Beasley" <code@musicinmybrain.net>
Date: Wed, 25 Oct 2023 11:16:12 -0400
Subject: [PATCH] Document another bug, PR, and name (GHSL-2023-149) for
 CVE-2023-43898

---
 stb.spec | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/stb.spec b/stb.spec
index 1abf597..e7f62d1 100644
--- a/stb.spec
+++ b/stb.spec
@@ -72,6 +72,13 @@ Patch:          %{url}/pull/1236.patch
 # https://github.com/nothings/stb/issues/1452
 # NULL pointer derefence in PIC loading (CVE-2023-43898)
 # https://github.com/nothings/stb/issues/1521
+# Null pointer dereference in stbi__convert_format (GHSL-2023-149)
+# https://github.com/nothings/stb/issues/1546
+#
+# An alternative and equivalent patch is:
+#
+# Fix Null pointer dereference in stbi__convert_format
+# https://github.com/nothings/stb/pull/1547
 Patch:          %{url}/pull/1454.patch
 
 # Fixed asan error on tiny input images