From fec1893bb0c98fc8a878223bb0da98008d457bf1 Mon Sep 17 00:00:00 2001
From: Benjamin A. Beasley <code@musicinmybrain.net>
Date: Feb 26 2023 02:24:22 +0000
Subject: Update minimum stb_image versions


Ensure we have a fix for null pointer dereference bug
https://github.com/nothings/stb/issues/1452.

---

diff --git a/usd.spec b/usd.spec
index 9f2c6b2..be8d581 100644
--- a/usd.spec
+++ b/usd.spec
@@ -165,9 +165,10 @@ BuildRequires:  hdf5-devel
 
 # Header-only library: -static is for tracking per guidelines
 #
-# stb_image 2.27^20210910gitaf1a5bc-0.2 is the minimum EVR to contain fixes for
-# all of CVE-2021-28021, CVE-2021-42715, CVE-2021-42716, and CVE-2022-28041.
-BuildRequires:  stb_image-devel >= 2.28
+# Enforce the the minimum EVR to contain fixes for all of CVE-2021-28021,
+# CVE-2021-42715, CVE-2021-42716, and CVE-2022-28041, plus the null-pointer
+# dereference bug https://github.com/nothings/stb/issues/1452.
+BuildRequires:  stb_image-devel >= 2.28^20230129git5736b15-0.2
 BuildRequires:  stb_image-static
 BuildRequires:  stb_image_write-devel >= 1.16
 BuildRequires:  stb_image_write-static