Fix CVE-2017-11110:

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11110
https://bugzilla.redhat.com/show_bug.cgi?id=1468471
https://security-tracker.debian.org/tracker/CVE-2017-11110

Patch copied from openSUSE:

https://build.opensuse.org/package/view_file/openSUSE:Maintenance:6985/catdoc.openSUSE_Leap_42.2_Update/CVE-2017-11110.patch?expand=1

From: Andreas Stieger <astieger@suse.com>
Date: Mon, 10 Jul 2017 15:37:58 +0000
References: CVE-2017-11110 http://bugzilla.suse.com/show_bug.cgi?id=1047877

All .doc I found had sectorSize 0x09 at offset 0x1e. Guarding it against <4.

---
 src/ole.c |    5 +++++
 1 file changed, 5 insertions(+)

Index: catdoc-0.95/src/ole.c
===================================================================
--- catdoc-0.95.orig/src/ole.c	2016-05-25 06:37:12.000000000 +0200
+++ catdoc-0.95/src/ole.c	2017-07-10 17:42:33.578308107 +0200
@@ -106,6 +106,11 @@ FILE* ole_init(FILE *f, void *buffer, si
 		return NULL;
 	}
  	sectorSize = 1<<getshort(oleBuf,0x1e);
+	/* CVE-2017-11110) */
+ 	if (sectorSize < 4) {
+		fprintf(stderr,"sectorSize < 4 not supported\n");
+		return NULL;
+	}
 	shortSectorSize=1<<getshort(oleBuf,0x20);
 
 /* Read BBD into memory */
@@ -147,7 +152,7 @@ FILE* ole_init(FILE *f, void *buffer, si
 		}
 
 		fseek(newfile, 512+mblock*sectorSize, SEEK_SET);
-		if(fread(tmpBuf+MSAT_ORIG_SIZE+(sectorSize-4)*i,
+		if(fread(tmpBuf+MSAT_ORIG_SIZE+(sectorSize-4)*i, /* >= 4 for CVE-2017-11110 */
 						 1, sectorSize, newfile) != sectorSize) {
 			fprintf(stderr, "Error read MSAT!\n");
 			ole_finish();
n='/guix/log/gnu/packages/ldc.scm'>
<input type='hidden' name='id' value='7bf0170e9fbcb08f9edb875dc08e27584826a1c2'/><select name='qt'>
<option value='grep'>log msg</option>
<option value='author'>author</option>
<option value='committer'>committer</option>
<option value='range'>range</option>
</select>
<input class='txt' type='search' size='10' name='q' value=''/>
<input type='submit' value='search'/>
</form>
</td></tr></table>
<div class='path'>path: <a href='/guix/log/?id=7bf0170e9fbcb08f9edb875dc08e27584826a1c2'>root</a>/<a href='/guix/log/gnu?id=7bf0170e9fbcb08f9edb875dc08e27584826a1c2'>gnu</a>/<a href='/guix/log/gnu/packages?id=7bf0170e9fbcb08f9edb875dc08e27584826a1c2'>packages</a>/<a href='/guix/log/gnu/packages/ldc.scm?id=7bf0170e9fbcb08f9edb875dc08e27584826a1c2'>ldc.scm</a></div><div class='content'><table class='list nowrap'><tr class='nohover'><th class='left'>Age</th><th class='left'>Commit message (<a href='/guix/log/gnu/packages/ldc.scm?id=7bf0170e9fbcb08f9edb875dc08e27584826a1c2&amp;showmsg=1'>Expand</a>)</th><th class='left'>Author</th></tr>
<tr><td><span title='2017-11-17 22:36:26 +0100'>2017-11-17</span></td><td><a href='/guix/commit/gnu/packages/ldc.scm?id=ac257f127ac5e1fd4758d3a05e4a19fde3af4e01'>gnu: Move testing packages from python.scm to check.scm.</a><span class='msg-avail'>...</span></td><td>Ricardo Wurmus</td></tr>
<tr><td><span title='2017-09-01 23:52:19 +0200'>2017-09-01</span></td><td><a href='/guix/commit/gnu/packages/ldc.scm?id=bbfc523d95589553a9e1ecf49ab05d7318837859'>gnu: dub: Update to 1.5.0.</a><span class='msg-avail'>...</span></td><td>Tobias Geerinckx-Rice</td></tr>
<tr><td><span title='2017-08-11 16:46:00 +0200'>2017-08-11</span></td><td><a href='/guix/commit/gnu/packages/ldc.scm?id=3f09b46d93388eb8193e89bdd8d8ba36ed7906b5'>gnu: dub: Update to 1.4.1.</a><span class='msg-avail'>...</span></td><td>Tobias Geerinckx-Rice</td></tr>
<tr><td><span title='2017-07-20 00:34:57 +0200'>2017-07-20</span></td><td><a href='/guix/commit/gnu/packages/ldc.scm?id=53cea7594c387753cb0a8f7698bd14d0d8c28d32'>gnu: dub: Update to 1.4.0.</a><span class='msg-avail'>...</span></td><td>Tobias Geerinckx-Rice</td></tr>
<tr><td><span title='2017-06-20 18:10:35 +0530'>2017-06-20</span></td><td><a href='/guix/commit/gnu/packages/ldc.scm?id=148585c240f848ad08f6541ede7db3fca3411007'>gnu: Move contents of zip module into compression module.</a><span class='msg-avail'>...</span></td><td>Arun Isaac</td></tr>
<tr><td><span title='2017-06-13 06:53:33 +0200'>2017-06-13</span></td><td><a href='/guix/commit/gnu/packages/ldc.scm?id=5144c044c390d47924ddcfd02196c3d13b1a2bcb'>gnu: ldc-bootstrap: Update ldc to 0.17.4.</a><span class='msg-avail'>...</span></td><td>Danny Milosavljevic</td></tr>
<tr><td><span title='2017-04-14 18:27:42 +0200'>2017-04-14</span></td><td><a href='/guix/commit/gnu/packages/ldc.scm?id=27a5c60465afc8f8875f41b5e6830d3c0757eb2b'>gnu: dub: Flesh out synopsis &amp; description.</a><span class='msg-avail'>...</span></td><td>Tobias Geerinckx-Rice</td></tr>
<tr><td><span title='2017-04-11 06:39:32 +0200'>2017-04-11</span></td><td><a href='/guix/commit/gnu/packages/ldc.scm?id=cd12f922246ae798ec248768713848d939d31ea0'>gnu: dub: Update to 1.3.0.</a><span class='msg-avail'>...</span></td><td>Tobias Geerinckx-Rice</td></tr>
<tr><td><span title='2017-04-06 14:34:12 +0200'>2017-04-06</span></td><td><a href='/guix/commit/gnu/packages/ldc.scm?id=538bce2472fb17e29619bb67ae67cbab09191225'>gnu: ldc-bootstrap: Delete failing test.</a><span class='msg-avail'>...</span></td><td>Ricardo Wurmus</td></tr>
<tr><td><span title='2017-03-10 19:39:52 +0100'>2017-03-10</span></td><td><a href='/guix/commit/gnu/packages/ldc.scm?id=97bede8466b587099d5fdd4640483e82328bbd8d'>gnu: dub: Update to 1.2.2.</a><span class='msg-avail'>...</span></td><td>Danny Milosavljevic</td></tr>
<tr><td><span title='2017-02-25 08:33:26 +0100'>2017-02-25</span></td><td><a href='/guix/commit/gnu/packages/ldc.scm?id=bcd2fddd6a8e4ddaad960d3429b4ddae826ed4d5'>gnu: ldc-bootstrap: Update to 0.17.3.</a><span class='msg-avail'>...</span></td><td>Danny Milosavljevic</td></tr>
<tr><td><span title='2017-02-25 08:05:05 +0100'>2017-02-25</span></td><td><a href='/guix/commit/gnu/packages/ldc.scm?id=219369ce0f4b4dba534849507d4a16ddc0dd76d6'>gnu: ldc: Update to 1.1.1.</a><span class='msg-avail'>...</span></td><td>Danny Milosavljevic</td></tr>