From: Michael Elkins <me@sigpipe.org>
Date: Tue, 11 Mar 2014 16:40:09 +0000 (-0700)
Subject: Fix buffer overrun caused by not updating a string length after address expansion.
X-Git-Tag: neomutt-20160307~80^2~22
X-Git-Url: https://granicus.if.org/sourcecode?a=commitdiff_plain;h=dadc67f23865c9a4d084620af11e2b49eb6241e1;p=neomutt

Fix buffer overrun caused by not updating a string length after address expansion.
---

diff --git a/copy.c b/copy.c
index 1f1326291..79d52fcb3 100644
--- a/copy.c
+++ b/copy.c
@@ -254,6 +254,7 @@ mutt_copy_hdr (FILE *in, FILE *out, LOFF_T off_start, LOFF_T off_end, int flags,
     {
       if (!address_header_decode (&this_one))
 	rfc2047_decode (&this_one);
+      this_one_len = mutt_strlen (this_one);
     }
     
     if (!headers[x])