* Fri Dec 22 2023 xuyuchao <xu.yuchao@xfusion.com> - 1.6.2

- Type:CVE
- CVE:CVE-2023-29824
- DESC:fix CVE-2023-29824

(cherry picked from commit 2919d70ba5d410e45e9bc5bfb7bc309dd8e488fd)

backport-CVE-2023-29824.patch

@@ -0,0 +1,24 @@
+From 2ecef38c8629e9a27613e646c4f01b5c0a0a566f Mon Sep 17 00:00:00 2001
+From: Py_FindObjects
+Date: Tue, 28 Nov 2023 17:33:35 +0800
+Subject: [PATCH] MAINT: Fix use-after-free bug in Py_FindObject
+ 
+---
+ scipy/ndimage/src/nd_image.c | 1 -
+ 1 file changed, 1 deletion(-)
+ 
+diff --git a/scipy/ndimage/src/nd_image.c b/scipy/ndimage/src/nd_image.c
+index 9f3aed3..d9fcc57 100644
+--- a/scipy/ndimage/src/nd_image.c
++++ b/scipy/ndimage/src/nd_image.c
+@@ -928,7 +928,6 @@ static PyObject *Py_FindObjects(PyObject *obj, PyObject *args)
+     Py_XDECREF(slc);
+     free(regions);
+     if (PyErr_Occurred()) {
+-        Py_XDECREF(result);
+         return NULL;
+     } else {
+         return result;
+-- 
+2.27.0
+ 

scipy.spec

@@ -2,7 +2,7 @@
 %global debug_package %{nil}
 Name: scipy
 Version: 1.6.2
-Release: 2
+Release: 3
 Summary: A Python-based ecosystem of open-source software for mathematics, science, and engineering
 License: Qhull and Apache-2.0
 URL: https://www.scipy.org
@@ -10,6 +10,7 @@ Source0: https://github.com/scipy/scipy/releases/download/v%{version}/scipy-%{ve
 
 Patch1:	backport-BUG-fix-a-minor-refcounting-issue-in-Py_FindObjects.patch
 Patch2:	backport-BUG-fix-small-refcount-issue-in-ndimage._ctest.patch
+Patch3: backport-CVE-2023-29824.patch
 
 BuildRequires: python3-devel python3-numpy >= 1.8.2 python3-numpy-f2py
 BuildRequires: gcc-c++ openblas-devel gcc-gfortran chrpath
@@ -101,6 +102,11 @@ echo "%{_libdir}/%{name}" >> $RPM_BUILD_ROOT/etc/ld.so.conf.d/%{name}-%{_arch}.c
 %config(noreplace) /etc/ld.so.conf.d/*
 
 %changelog
+* Fri Dec 22 2023 xuyuchao <xu.yuchao@xfusion.com> - 1.6.2-3
+- Type:CVE
+- CVE:CVE-2023-29824
+- DESC:fix CVE-2023-29824
+
 * Thu Jul 13 2023 Wenyu Liu <liuwenyu7@huawei.com> - 1.6.2-2
 - Fix CVE-2023-25399