Copied from Debian.

From: Petr Stodulka <pstodulk@redhat.com>
Date: Mon, 14 Sep 2015 18:23:17 +0200
Subject: Upstream fix for heap overflow
Bug-Debian: https://bugs.debian.org/802162
Bug-RedHat: https://bugzilla.redhat.com/show_bug.cgi?id=1260944
Origin: https://bugzilla.redhat.com/attachment.cgi?id=1073002
Forwarded: yes

---
 crypt.c | 12 +++++++++++-
 1 file changed, 11 insertions(+), 1 deletion(-)

--- a/crypt.c
+++ b/crypt.c
@@ -465,7 +465,17 @@
     GLOBAL(pInfo->encrypted) = FALSE;
     defer_leftover_input(__G);
     for (n = 0; n < RAND_HEAD_LEN; n++) {
-        b = NEXTBYTE;
+        /* 2012-11-23 SMS.  (OUSPG report.)
+         * Quit early if compressed size < HEAD_LEN.  The resulting
+         * error message ("unable to get password") could be improved,
+         * but it's better than trying to read nonexistent data, and
+         * then continuing with a negative G.csize.  (See
+         * fileio.c:readbyte()).
+         */
+        if ((b = NEXTBYTE) == (ush)EOF)
+        {
+            return PK_ERR;
+        }
         h[n] = (uch)b;
         Trace((stdout, " (%02x)", h[n]));
     }
b72b3'>refs</a><a class='active' href='/guix/log/.patman'>log</a><a href='/guix/tree/.patman?id=299fd237c3945a7131860a645948480a739b72b3'>tree</a><a href='/guix/commit/.patman?id=299fd237c3945a7131860a645948480a739b72b3'>commit</a><a href='/guix/diff/.patman?id=299fd237c3945a7131860a645948480a739b72b3'>diff</a></td><td class='form'><form class='right' method='get' action='/guix/log/.patman'>
<input type='hidden' name='id' value='299fd237c3945a7131860a645948480a739b72b3'/><select name='qt'>
<option value='grep'>log msg</option>
<option value='author'>author</option>
<option value='committer'>committer</option>
<option value='range'>range</option>
</select>
<input class='txt' type='search' size='10' name='q' value=''/>
<input type='submit' value='search'/>
</form>
</td></tr></table>
<div class='path'>path: <a href='/guix/log/?id=299fd237c3945a7131860a645948480a739b72b3'>root</a>/<a href='/guix/log/.patman?id=299fd237c3945a7131860a645948480a739b72b3'>.patman</a></div><div class='content'><table class='list nowrap'><tr class='nohover'><th class='left'>Age</th><th class='left'>Commit message (<a href='/guix/log/.patman?id=299fd237c3945a7131860a645948480a739b72b3&amp;showmsg=1'>Expand</a>)</th><th class='left'>Author</th></tr>
<tr><td><span title='2023-10-22 16:09:04 -0400'>2023-10-22</span></td><td><a href='/guix/commit/.patman?id=f44fa21c3ec1d9bf1b9da009e1c795942bf654eb'>gnu: patman: Apply patch for new Change-Id setting.</a><span class='msg-avail'>...<span class='msg-tooltip'>* gnu/packages/bootloaders.scm (u-boot) [source]: Apply patch.
* gnu/packages/patches/u-boot-patman-change-id.patch: New file.
* gnu/local.mk (dist_patch_DATA): Register it.
* .patman (keep_change_id): Use it.

Series-changes: 3
 - New commit
Change-Id: I33c03013f6a260b5f5d80212b7b6ebe8a3f97efa
</span></span></td><td>Maxim Cournoyer</td></tr>
<tr><td><span title='2023-05-01 12:39:11 -0400'>2023-05-01</span></td><td><a href='/guix/commit/.patman?id=f21007ce4aceeacf5bbfc7cd45d526073141f194'>.patman: Remove get_maintainer_script option.</a><span class='msg-avail'>...<span class='msg-tooltip'>This is now handled at the level of git via its new '--header-cmd' option,
which produces X-Debbugs-CC headers.

* .patman (get_maintainer_script): Delete option.
</span></span></td><td>Maxim Cournoyer</td></tr>
<tr><td><span title='2023-02-25 23:10:59 -0500'>2023-02-25</span></td><td><a href='/guix/commit/.patman?id=cb0d8100b288b5b0d130820207db17764b7d2140'>.patman: Ignore bad tags.</a><span class='msg-avail'>...<span class='msg-tooltip'>The feature is not used in Guix, and it produces extraneous warnings.

* .patman (ignore_bad_tags): Set option to True.
</span></span></td><td>Maxim Cournoyer</td></tr>
<tr><td><span title='2022-12-28 15:36:33 -0500'>2022-12-28</span></td><td><a href='/guix/commit/.patman?id=fde5af3962c8fafc5d20e5d742cc7aea907f3563'>.patman: New configuration file.</a><span class='msg-avail'>...<span class='msg-tooltip'>* .patman: New file.

Series-to: 60218@debbugs.gnu.org
Series-cc: rekado@elephly.net, othacehe@gnu.org
Series-version: 2
</span></span></td><td>Maxim Cournoyer</td></tr>

Age	Commit message (Expand)	Author
2023-10-22	gnu: patman: Apply patch for new Change-Id setting....* gnu/packages/bootloaders.scm (u-boot) [source]: Apply patch. * gnu/packages/patches/u-boot-patman-change-id.patch: New file. * gnu/local.mk (dist_patch_DATA): Register it. * .patman (keep_change_id): Use it. Series-changes: 3 - New commit Change-Id: I33c03013f6a260b5f5d80212b7b6ebe8a3f97efa	Maxim Cournoyer
2023-05-01	.patman: Remove get_maintainer_script option....This is now handled at the level of git via its new '--header-cmd' option, which produces X-Debbugs-CC headers. * .patman (get_maintainer_script): Delete option.	Maxim Cournoyer
2023-02-25	.patman: Ignore bad tags....The feature is not used in Guix, and it produces extraneous warnings. * .patman (ignore_bad_tags): Set option to True.	Maxim Cournoyer
2022-12-28	.patman: New configuration file....* .patman: New file. Series-to: 60218@debbugs.gnu.org Series-cc: rekado@elephly.net, othacehe@gnu.org Series-version: 2	Maxim Cournoyer