File zoo-security_pathsize.patch of Package zoo

Index: misc.c
===================================================================
--- misc.c.orig	1991-07-11 21:07:26.000000000 +0200
+++ misc.c	2009-11-24 19:46:09.525623000 +0100
@@ -135,11 +135,17 @@ if available, else the short filename is
 char *fullpath (direntry)
 struct direntry *direntry;
 {
-	static char result[PATHSIZE];
+	static char result[PATHSIZE+LFNAMESIZE+12]; /* Room for enough space.*/
 	combine (result,
 				direntry->dirlen != 0 ? direntry->dirname : "", 
 				(direntry->namlen != 0) ? direntry->lfname : direntry->fname
 			  );
+
+       if (strlen (result) >= PATHSIZE) {
+               prterror ('f', "Combined dirname and filename too long!\n");
+               *result = '\0';
+       }
+
 	return (result);
 }