File freerdp-CVE-2026-23534.patch of Package freerdp

From f8688b57f6cfad9a0b05475a6afbde355ffab720 Mon Sep 17 00:00:00 2001
From: akallabeth <akallabeth@posteo.net>
Date: Thu, 15 Jan 2026 12:19:53 +0100
Subject: [PATCH] [codec,clear] fix off by one length check

---
 libfreerdp/codec/clear.c | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

Index: FreeRDP-2.1.2/libfreerdp/codec/clear.c
===================================================================
--- FreeRDP-2.1.2.orig/libfreerdp/codec/clear.c
+++ FreeRDP-2.1.2/libfreerdp/codec/clear.c
@@ -877,12 +877,12 @@ static BOOL clear_decompress_bands_data(
 				if (count > nHeight)
 					count = nHeight;
 
-				if (nXDstRel + i > nDstWidth)
+				if (nXDstRel + i >= nDstWidth)
 					return FALSE;
 
 				for (y = 0; y < count; y++)
 				{
-					if (nYDstRel + y > nDstHeight)
+					if (nYDstRel + y >= nDstHeight)
 						return FALSE;
 
 					BYTE* pDstPixel8 =