diff --git a/indent-CVE-2024-0911.patch b/indent-CVE-2024-0911.patch
new file mode 100644
index 0000000..f1e821d
--- /dev/null
+++ b/indent-CVE-2024-0911.patch
@@ -0,0 +1,16 @@
+diff --git a/src/output.c b/src/output.c
+index ee01bcc..17eee6e 100644
+--- a/src/output.c
++++ b/src/output.c
+@@ -290,7 +290,7 @@ void set_buf_break (
+     /* Did we just parse a bracket that will be put on the next line
+      * by this line break? */
+ 
+-    if ((*token == '(') || (*token == '['))
++    if (level > 0 && ((*token == '(') || (*token == '[')))
+     {
+         --level;                        /* then don't take it into account */
+     }
+-- 
+2.43.0
+
diff --git a/indent.changes b/indent.changes
index 721217d..f14f2c7 100644
--- a/indent.changes
+++ b/indent.changes
@@ -1,3 +1,11 @@
+-------------------------------------------------------------------
+Fri Feb 16 09:57:02 UTC 2024 - pgajdos@suse.com
+
+- security update
+- added patches
+  fix CVE-2024-0911 [bsc#1219210], heap-based buffer overflow in set_buf_break()
+  + indent-CVE-2024-0911.patch
+
 -------------------------------------------------------------------
 Mon Aug 21 15:53:01 UTC 2023 - Antonio Teixeira <antonio.teixeira@suse.com>
 
diff --git a/indent.spec b/indent.spec
index d90cad7..ad47b4c 100644
--- a/indent.spec
+++ b/indent.spec
@@ -1,7 +1,7 @@
 #
 # spec file for package indent
 #
-# Copyright (c) 2023 SUSE LLC
+# Copyright (c) 2024 SUSE LLC
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -29,6 +29,8 @@ Source2:        https://savannah.gnu.org/people/viewgpg.php?user_id=94096#/%{nam
 # PATCH-FIX-SECURITY fix-out-of-buffer-read-CVE-2023-40305.patch fix-heap-buffer-overwrite-search_brace-CVE-2023-40305 bsc#1214243 CVE-2023-40305 antonio.teixeira@suse.com -- indent: heap-based buffer overflow in search_brace() in indent.c via a crafted file
 Patch0:         fix-out-of-buffer-read-CVE-2023-40305.patch
 Patch1:         fix-heap-buffer-overwrite-search_brace-CVE-2023-40305.patch
+# CVE-2024-0911 [bsc#1219210], heap-based buffer overflow in set_buf_break()
+Patch2:         indent-CVE-2024-0911.patch
 BuildRequires:  makeinfo
 BuildRequires:  texi2html