Fix CVE-2017-16844:

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16844
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=876511

Patch copied from Debian procmail package 3.22-26:

http://http.debian.net/debian/pool/main/p/procmail/procmail_3.22-26.debian.tar.xz

From: Santiago Vila <sanvila@debian.org>
Subject: Fix heap-based buffer overflow in loadbuf()
Bug-Debian: http://bugs.debian.org/876511
X-Debian-version: 3.22-26

--- a/src/formisc.c
+++ b/src/formisc.c
@@ -103,7 +103,7 @@
 }
 							    /* append to buf */
 void loadbuf(text,len)const char*const text;const size_t len;
-{ if(buffilled+len>buflen)			  /* buf can't hold the text */
+{ while(buffilled+len>buflen)			  /* buf can't hold the text */
      buf=realloc(buf,buflen+=Bsize);
   tmemmove(buf+buffilled,text,len);buffilled+=len;
 }
oszko-scripts</option>
</select> <input type='submit' value='switch'/></form></td></tr>
<tr><td class='sub'>Wojtek's customized Guix</td><td class='sub right'></td></tr></table>
<table class='tabs'><tr><td>
<a href='/guix/about/'>about</a><a href='/guix/'>summary</a><a href='/guix/refs/?id=8f5157bd8206fb0593cff8ef50b367d3420302d1'>refs</a><a class='active' href='/guix/log/gnu/packages/avahi.scm'>log</a><a href='/guix/tree/gnu/packages/avahi.scm?id=8f5157bd8206fb0593cff8ef50b367d3420302d1'>tree</a><a href='/guix/commit/gnu/packages/avahi.scm?id=8f5157bd8206fb0593cff8ef50b367d3420302d1'>commit</a><a href='/guix/diff/gnu/packages/avahi.scm?id=8f5157bd8206fb0593cff8ef50b367d3420302d1'>diff</a></td><td class='form'><form class='right' method='get' action='/guix/log/gnu/packages/avahi.scm'>
<input type='hidden' name='id' value='8f5157bd8206fb0593cff8ef50b367d3420302d1'/><select name='qt'>
<option value='grep'>log msg</option>
<option value='author'>author</option>
<option value='committer'>committer</option>
<option value='range'>range</option>
</select>
<input class='txt' type='search' size='10' name='q' value=''/>
<input type='submit' value='search'/>
</form>
</td></tr></table>
<div class='path'>path: <a href='/guix/log/?id=8f5157bd8206fb0593cff8ef50b367d3420302d1'>root</a>/<a href='/guix/log/gnu?id=8f5157bd8206fb0593cff8ef50b367d3420302d1'>gnu</a>/<a href='/guix/log/gnu/packages?id=8f5157bd8206fb0593cff8ef50b367d3420302d1'>packages</a>/<a href='/guix/log/gnu/packages/avahi.scm?id=8f5157bd8206fb0593cff8ef50b367d3420302d1'>avahi.scm</a></div><div class='content'><table class='list nowrap'><tr class='nohover'><th class='left'>Age</th><th class='left'>Commit message (<a href='/guix/log/gnu/packages/avahi.scm?id=8f5157bd8206fb0593cff8ef50b367d3420302d1&amp;showmsg=1'>Expand</a>)</th><th class='left'>Author</th></tr>
<tr><td><span title='2023-05-29 09:25:51 +0200'>2023-05-29</span></td><td><a href='/guix/commit/gnu/packages/avahi.scm?id=77fe306c66eea88acd4b29dd0e60bbf9d7bae101'>gnu: avahi: Support for cross-building and the Hurd.</a><span class='msg-avail'>...</span></td><td>Janneke Nieuwenhuizen</td></tr>
<tr><td><span title='2022-01-10 11:44:30 -0500'>2022-01-10</span></td><td><a href='/guix/commit/gnu/packages/avahi.scm?id=756188a8da7e3cf4a784dab4eab05799eb2f2dd5'>gnu: avahi: Make all arguments unconditional.</a><span class='msg-avail'>...</span></td><td>Maxim Cournoyer</td></tr>
<tr><td><span title='2021-09-20 11:15:08 +0000'>2021-09-20</span></td><td><a href='/guix/commit/gnu/packages/avahi.scm?id=0636f02b0e33aed9b2f951bc91ded0fe8a7d1654'>gnu: avahi: Use the cross-compiled bash.</a><span class='msg-avail'>...</span></td><td>Maxime Devos</td></tr>
<tr><td><span title='2021-09-20 11:15:08 +0000'>2021-09-20</span></td><td><a href='/guix/commit/gnu/packages/avahi.scm?id=0515ebb0d17f4350b094cace66d5469640029da7'>gnu: avahi: Find 'TARGET-pkg-config' when cross-compiling.</a><span class='msg-avail'>...</span></td><td>Maxime Devos</td></tr>
<tr><td><span title='2021-05-09 23:43:32 +0200'>2021-05-09</span></td><td><a href='/guix/commit/gnu/packages/avahi.scm?id=cd42bad5d51d0069bceaea629f97bdc6154399da'>gnu: libcap: Update to 2.49.</a><span class='msg-avail'>...</span></td><td>Marius Bakke</td></tr>
<tr><td><span title='2020-10-13 23:48:15 +0200'>2020-10-13</span></td><td><a href='/guix/commit/gnu/packages/avahi.scm?id=9e1f5a263e4f6df4d075901c9b58a56f80c8b452'>gnu: libcap: Make 'libcap/next' the default libcap.</a><span class='msg-avail'>...</span></td><td>Marius Bakke</td></tr>
<tr><td><span title='2020-03-18 19:23:46 +0100'>2020-03-18</span></td><td><a href='/guix/commit/gnu/packages/avahi.scm?id=850093ac24f92ae805a2ee90681d1e4cb01ff8eb'>gnu: avahi: Update to 0.8.</a><span class='msg-avail'>...</span></td><td>Marius Bakke</td></tr>
<tr><td><span title='2020-03-18 19:23:46 +0100'>2020-03-18</span></td><td><a href='/guix/commit/gnu/packages/avahi.scm?id=32b089f4f4e86a32bb34c2c7983be5dbe9603784'>gnu: avahi: Do not build the static libraries.</a><span class='msg-avail'>...</span></td><td>Marius Bakke</td></tr>
<tr><td><span title='2020-01-21 22:39:42 +0100'>2020-01-21</span></td><td><a href='/guix/commit/gnu/packages/avahi.scm?id=8ed9be3faccb865204de46d2a8ed3e96e59281b6'>Merge branch 'staging' into core-updates</a></td><td>Marius Bakke</td></tr>
<tr><td><span title='2020-01-19 06:09:01 +0100'>2020-01-19</span></td><td><a href='/guix/commit/gnu/packages/avahi.scm?id=f460f8da68f915dee5aa3ce97e05ba38c92f3106'>gnu: Use HTTPS for avahi.org everywhere.</a><span class='msg-avail'>...</span></td><td>Tobias Geerinckx-Rice</td></tr>