untrusted comment: verify with openbsd-72-base.pub
RWQTKNnK3CZZ8G4TfS0LyeGXcslp/soz9aSapgeR3sSlu08DDx+Ttv04gCZrJMyR31XrAO5ejXOWszFThozcD6zMNClVJie9Mwg=

OpenBSD 7.2 errata 005, November 15, 2022:

CVE-2022-44638: An integer overflow in pixman may lead to an out-of-bounds
write.

Apply by doing:
    signify -Vep /etc/signify/openbsd-72-base.pub -x 005_pixman.patch.sig \
        -m - | (cd /usr/xenocara && patch -p0)

And then rebuild pixman:
    cd /usr/xenocara/lib/pixman
    make -f Makefile.bsd-wrapper obj
    make -f Makefile.bsd-wrapper build

Index: lib/pixman/pixman/pixman-trap.c
===================================================================
RCS file: /cvs/OpenBSD/xenocara/lib/pixman/pixman/pixman-trap.c,v
retrieving revision 1.9
diff -u -p -u -r1.9 pixman-trap.c
--- lib/pixman/pixman/pixman-trap.c	7 Jun 2013 17:18:01 -0000	1.9
+++ lib/pixman/pixman/pixman-trap.c	6 Nov 2022 11:09:58 -0000
@@ -74,7 +74,7 @@ pixman_sample_floor_y (pixman_fixed_t y,
 
     if (f < Y_FRAC_FIRST (n))
     {
-	if (pixman_fixed_to_int (i) == 0x8000)
+	if (pixman_fixed_to_int (i) == 0xffff8000)
 	{
 	    f = 0; /* saturate */
 	}