From 6ccab29fcdfc16a67bb4c76c2d4b995ea03309f0 Mon Sep 17 00:00:00 2001
From: Peter Hutterer <peter.hutterer@who-t.net>
Date: Wed, 4 Oct 2023 09:36:38 +1000
Subject: [PATCH] libX11 1.8.7

---
 libX11.spec | 14 ++++++++++++--
 sources     |  2 +-
 2 files changed, 13 insertions(+), 3 deletions(-)

diff --git a/libX11.spec b/libX11.spec
index d5bd032..f87341d 100644
--- a/libX11.spec
+++ b/libX11.spec
@@ -4,8 +4,8 @@
 
 Summary: Core X11 protocol client library
 Name: libX11
-Version: 1.8.6
-Release: 3%{?gitdate:.%{gitdate}git%{gitversion}}%{?dist}
+Version: 1.8.7
+Release: 1%{?gitdate:.%{gitdate}git%{gitversion}}%{?dist}
 License: MIT AND X11
 URL: http://www.x.org
 
@@ -123,6 +123,16 @@ make %{?_smp_mflags} check
 %{_mandir}/man5/*.5*
 
 %changelog
+* Wed Oct 04 2023 Peter Hutterer <peter.hutterer@redhat.com> - 1.8.7-1
+- libX11 1.8.7
+  - CVE-2023-43785 libX11: out-of-bounds memory access in _XkbReadKeySyms()
+  - CVE-2023-43786 libX11: stack exhaustion from infinite recursion in
+    PutSubImage()
+  - CVE-2023-43787 libX11: integer overflow in XCreateImage() leading to
+   a heap overflow
+  - CVE-2023-43788 libXpm: out of bounds read in XpmCreateXpmImageFromBuffer()
+  - CVE-2023-43789 libXpm: out of bounds read on XPM with corrupted colormap
+
 * Thu Sep 07 2023 José Expósito <jexposit@redhat.com> - 1.8.6-3
 - SPDX Migration
 
diff --git a/sources b/sources
index ecfd2f3..61762f8 100644
--- a/sources
+++ b/sources
@@ -1 +1 @@
-SHA512 (libX11-1.8.6.tar.xz) = b94a578003078a42cea43d80fae2c54a3aaa30f706088bb3546331e9abfc180131cafb37887117abcc5b6116992e299974981eef96ecfcf883cc8a1aba4d1ade
+SHA512 (libX11-1.8.7.tar.xz) = d53bfc18f38d339a6a695b09835b2ae96b323881678bfe7ddca697605e3bdf4102ff49cc3078880a6c55b5977fcdd0aadaf5429086132de3a5bda302f79a2fa6