Fix CVE-2017-16844:

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16844
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=876511

Patch copied from Debian procmail package 3.22-26:

http://http.debian.net/debian/pool/main/p/procmail/procmail_3.22-26.debian.tar.xz

From: Santiago Vila <sanvila@debian.org>
Subject: Fix heap-based buffer overflow in loadbuf()
Bug-Debian: http://bugs.debian.org/876511
X-Debian-version: 3.22-26

--- a/src/formisc.c
+++ b/src/formisc.c
@@ -103,7 +103,7 @@
 }
 							    /* append to buf */
 void loadbuf(text,len)const char*const text;const size_t len;
-{ if(buffilled+len>buflen)			  /* buf can't hold the text */
+{ while(buffilled+len>buflen)			  /* buf can't hold the text */
      buf=realloc(buf,buflen+=Bsize);
   tmemmove(buf+buffilled,text,len);buffilled+=len;
 }
'koszko-scripts'>koszko-scripts</option>
</select> <input type='submit' value='switch'/></form></td></tr>
<tr><td class='sub'>Wojtek's customized Guix</td><td class='sub right'></td></tr></table>
<table class='tabs'><tr><td>
<a href='/guix/about/'>about</a><a href='/guix/'>summary</a><a href='/guix/refs/?id=4522e1f0c17205cc2cf35a41ba70537fbbaf48f1'>refs</a><a class='active' href='/guix/log/nix/libstore/worker-protocol.hh'>log</a><a href='/guix/tree/nix/libstore/worker-protocol.hh?id=4522e1f0c17205cc2cf35a41ba70537fbbaf48f1'>tree</a><a href='/guix/commit/nix/libstore/worker-protocol.hh?id=4522e1f0c17205cc2cf35a41ba70537fbbaf48f1'>commit</a><a href='/guix/diff/nix/libstore/worker-protocol.hh?id=4522e1f0c17205cc2cf35a41ba70537fbbaf48f1'>diff</a></td><td class='form'><form class='right' method='get' action='/guix/log/nix/libstore/worker-protocol.hh'>
<input type='hidden' name='id' value='4522e1f0c17205cc2cf35a41ba70537fbbaf48f1'/><select name='qt'>
<option value='grep'>log msg</option>
<option value='author'>author</option>
<option value='committer'>committer</option>
<option value='range'>range</option>
</select>
<input class='txt' type='search' size='10' name='q' value=''/>
<input type='submit' value='search'/>
</form>
</td></tr></table>
<div class='path'>path: <a href='/guix/log/?id=4522e1f0c17205cc2cf35a41ba70537fbbaf48f1'>root</a>/<a href='/guix/log/nix?id=4522e1f0c17205cc2cf35a41ba70537fbbaf48f1'>nix</a>/<a href='/guix/log/nix/libstore?id=4522e1f0c17205cc2cf35a41ba70537fbbaf48f1'>libstore</a>/<a href='/guix/log/nix/libstore/worker-protocol.hh?id=4522e1f0c17205cc2cf35a41ba70537fbbaf48f1'>worker-protocol.hh</a></div><div class='content'><table class='list nowrap'><tr class='nohover'><th class='left'>Age</th><th class='left'>Commit message (<a href='/guix/log/nix/libstore/worker-protocol.hh?id=4522e1f0c17205cc2cf35a41ba70537fbbaf48f1&amp;showmsg=1'>Expand</a>)</th><th class='left'>Author</th></tr>
<tr><td><span title='2023-12-11 23:18:53 +0100'>2023-12-11</span></td><td><a href='/guix/commit/nix/libstore/worker-protocol.hh?id=1e47148f46e31eb99ce8ec7bc12232cf50d0ebec'>daemon: Implement ‘substitute-urls’ RPC.</a><span class='msg-avail'>...<span class='msg-tooltip'>* nix/libstore/worker-protocol.hh (PROTOCOL_VERSION): Bump.
(WorkerOp): Add ‘wopSubstituteURLs’.
* nix/nix-daemon/nix-daemon.cc (performOp): Implement it.
* guix/store.scm (%protocol-version): Bump.
(operation-id): Add ‘substitute-urls’.
(substitute-urls): New procedure.
* tests/store.scm ("substitute-urls, default")
("substitute-urls, client-specified URLs")
("substitute-urls, disabled"): New tests.

Change-Id: I2c0119500c3a1eecfa5ebf32463ffb0f173161de
</span></span></td><td>Ludovic Courtès</td></tr>