From a070ca40ec73353b77eecf3f81fba3546f311aa7 Mon Sep 17 00:00:00 2001
From: Michael Elkins <me@sigpipe.org>
Date: Tue, 11 Mar 2014 09:40:09 -0700
Subject: [PATCH] Fix buffer overrun caused by not updating a string length
 after address expansion.

---
 copy.c | 1 +
 1 file changed, 1 insertion(+)

diff --git a/copy.c b/copy.c
index 1f132629..79d52fcb 100644
--- a/copy.c
+++ b/copy.c
@@ -254,6 +254,7 @@ mutt_copy_hdr (FILE *in, FILE *out, LOFF_T off_start, LOFF_T off_end, int flags,
     {
       if (!address_header_decode (&this_one))
 	rfc2047_decode (&this_one);
+      this_one_len = mutt_strlen (this_one);
     }
     
     if (!headers[x])
-- 
2.40.0