From 262eddbb2e0943de1462f305d53eae06e37ed4cd0349baed9c96ee9da9614558 Mon Sep 17 00:00:00 2001
From: Robert Frohl <rfrohl@noreply.src.opensuse.org>
Date: Tue, 6 Jan 2026 11:20:25 +0100
Subject: [PATCH 1/2] Update submodules from pool/matio#1 and create
 patchinfo.20260106101959221503.93181000773252/_patchinfo

---
 matio                                         |  2 +-
 .../_patchinfo                                | 34 +++++++++++++++++++
 2 files changed, 35 insertions(+), 1 deletion(-)
 create mode 100644 patchinfo.20260106101959221503.93181000773252/_patchinfo

diff --git a/matio b/matio
index a301162..cab79b5 160000
--- a/matio
+++ b/matio
@@ -1 +1 @@
-Subproject commit a301162ce9bbc6f934f8b973a59d4b570708d32b68ee6003a0d3c0af8a8ade24
+Subproject commit cab79b5274800132c992e2d58c1e8b7a1c1d4af658bc712579926e0ad7c51bfa
diff --git a/patchinfo.20260106101959221503.93181000773252/_patchinfo b/patchinfo.20260106101959221503.93181000773252/_patchinfo
new file mode 100644
index 0000000..1dc6484
--- /dev/null
+++ b/patchinfo.20260106101959221503.93181000773252/_patchinfo
@@ -0,0 +1,34 @@
+<patchinfo>
+  <issue tracker="bnc" id="1239678">VUL-0: CVE-2025-2337: matio: heap buffer overflow in function Mat_VarPrint of file src/mat.c</issue>
+  <issue tracker="cve" id="2025-2337">VUL-0: CVE-2025-2337: matio: heap buffer overflow in function Mat_VarPrint of file src/mat.c</issue>
+  <issue tracker="cve" id="2025-2338">VUL-0: CVE-2025-2338: matio: heap buffer overflow in function strdup_vprintf of file src/io.c</issue>
+  <issue tracker="bnc" id="1239677">VUL-0: CVE-2025-2338: matio: heap buffer overflow in function strdup_vprintf of file src/io.c</issue>
+  <packager>AndreasStieger</packager>
+  <rating>important</rating>
+  <category>security</category>
+  <summary>Security update for matio</summary>
+  <description>This update for matio fixes the following issues:
+
+- update to version 1.5.29:
+  * Fix printing rank-1-variable in Mat_VarPrint
+  * Fix array index out of bounds in Mat_VarPrint when printing
+    UTF-8 character data (boo#1239678, CVE-2025-2337)
+  * Fix heap-based buffer overflow in strdup_vprintf
+    (boo#1239677, CVE-2025-2338)
+  * Changed Mat_VarPrint to print all values of rank-2-variable
+  * Several other fixes, for example for access violations in
+    Mat_VarPrint
+
+- Update to version 1.5.28:
+  * Fixed bug writing MAT_T_INT8/MAT_T_UINT8 encoded character
+    array to compressed v5 MAT file (regression of v1.5.12).
+  * Fixed bug reading all-zero sparse array of v4 MAT file
+    (regression of v1.5.18).
+  * Updated C99 snprintf.c.
+  * CMake: Enabled testing.
+  * Several other fixes, for example for access violations in
+    Mat_VarPrint.
+</description>
+  <package>matio</package>
+  <seperate_build_arch/>
+</patchinfo>
-- 
2.51.1


From 8fac4ab323391cd69c8b868a941797199be1af9f5e3d1a8ed84a74d1d16b7e03 Mon Sep 17 00:00:00 2001
From: Robert Frohl <rfrohl@noreply.src.opensuse.org>
Date: Thu, 8 Jan 2026 11:47:03 +0100
Subject: [PATCH 2/2] Update
 patchinfo.20260106101959221503.93181000773252/_patchinfo

removed <seperate_build_arch/>
---
 patchinfo.20260106101959221503.93181000773252/_patchinfo | 1 -
 1 file changed, 1 deletion(-)

diff --git a/patchinfo.20260106101959221503.93181000773252/_patchinfo b/patchinfo.20260106101959221503.93181000773252/_patchinfo
index 1dc6484..007e01b 100644
--- a/patchinfo.20260106101959221503.93181000773252/_patchinfo
+++ b/patchinfo.20260106101959221503.93181000773252/_patchinfo
@@ -30,5 +30,4 @@
     Mat_VarPrint.
 </description>
   <package>matio</package>
-  <seperate_build_arch/>
 </patchinfo>
-- 
2.51.1