diff --git a/cpanspec.yml b/cpanspec.yml
index 27b0fc3..c4be74f 100644
--- a/cpanspec.yml
+++ b/cpanspec.yml
@@ -1,3 +1,4 @@
 ---
 patches:
   Convert-ASN1-0.22-test.diff:
+  perl-Convert-ASN1-CVE-2013-7488.patch:
diff --git a/perl-Convert-ASN1-CVE-2013-7488.patch b/perl-Convert-ASN1-CVE-2013-7488.patch
new file mode 100644
index 0000000..3548cb3
--- /dev/null
+++ b/perl-Convert-ASN1-CVE-2013-7488.patch
@@ -0,0 +1,32 @@
+From ce148a2e0872b708450005cf0b3a944014aae990 Mon Sep 17 00:00:00 2001
+From: Dana Jacobsen <dana@acm.org>
+Date: Tue, 29 Oct 2013 08:37:48 -0700
+Subject: [PATCH 1/2] Fix unsafe decoding in indef case
+
+---
+ lib/Convert/ASN1/_decode.pm | 1 +
+ 1 file changed, 1 insertion(+)
+
+Index: lib/Convert/ASN1/_decode.pm
+===================================================================
+--- lib/Convert/ASN1/_decode.pm.orig
++++ lib/Convert/ASN1/_decode.pm
+@@ -683,14 +683,16 @@ sub _scan_indef {
+       $pos += 2;
+       next;
+     }
++    return if $pos >= $end;
+ 
+     my $tag = substr($_[0], $pos++, 1);
+ 
+     if((unpack("C",$tag) & 0x1f) == 0x1f) {
+       my $b;
+       do {
+-	$tag .= substr($_[0],$pos++,1);
+-	$b = ord substr($tag,-1);
++        return if $pos >= $end;
++        $tag .= substr($_[0],$pos++,1);
++        $b = ord substr($tag,-1);
+       } while($b & 0x80);
+     }
+     return if $pos >= $end;
diff --git a/perl-Convert-ASN1.changes b/perl-Convert-ASN1.changes
index 2bf3590..1619b63 100644
--- a/perl-Convert-ASN1.changes
+++ b/perl-Convert-ASN1.changes
@@ -1,3 +1,10 @@
+-------------------------------------------------------------------
+Tue Nov  3 10:12:38 UTC 2020 - Pedro Monreal <pmonreal@suse.com>
+
+- Security fix: [bsc#1168934, CVE-2013-7488]
+  * Fix infinite loop via unexpected input
+- Add perl-Convert-ASN1-CVE-2013-7488.patch
+
 -------------------------------------------------------------------
 Fri Jan 10 10:14:41 UTC 2020 - Pedro Monreal Gonzalez <pmonrealgonzalez@suse.com>
 
diff --git a/perl-Convert-ASN1.spec b/perl-Convert-ASN1.spec
index 2244afb..eb6bc30 100644
--- a/perl-Convert-ASN1.spec
+++ b/perl-Convert-ASN1.spec
@@ -24,9 +24,13 @@ Summary:        ASN.1 Encode/Decode library
 License:        Artistic-1.0 OR GPL-1.0-or-later
 Group:          Development/Libraries/Perl
 URL:            https://metacpan.org/release/%{cpan_name}
-Source0:        http://www.cpan.org/authors/id/G/GB/GBARR/%{cpan_name}-%{version}.tar.gz
+Source0:        https://cpan.metacpan.org/authors/id/G/GB/GBARR/%{cpan_name}-%{version}.tar.gz
 Source1:        cpanspec.yml
+# MANUAL BEGIN
 Patch0:         Convert-ASN1-0.22-test.diff
+# PATCH-FIX-UPSTREAM bsc#1168934 CVE-2013-7488 Infinite loop via unexpected input
+Patch1:         perl-Convert-ASN1-CVE-2013-7488.patch
+# MANUAL END
 BuildArch:      noarch
 BuildRoot:      %{_tmppath}/%{name}-%{version}-build
 BuildRequires:  perl
@@ -42,6 +46,7 @@ rules.
 %prep
 %setup -q -n %{cpan_name}-%{version}
 %patch0 
+%patch1 
 
 %build
 perl Makefile.PL INSTALLDIRS=vendor