File bsc907453-CVE-2014-9116-jessie.patch of Package mutt

This patch solves the issue raised by CVE-2014-9116 in bug 771125.

We correctly redefine what are the whitespace characters as per RFC5322; by
doing so we prevent mutt_substrdup from being used in a way that could lead to
a segfault.

The lib.c part was written by Antonio Radici <> to prevent
crashes due to this kind of bugs from happening again.

The wheezy version of this patch is slightly different, therefore this patch
has -jessie prefixed in its name.

Index: mutt/lib.c
 lib.c |    3 +++
 1 file changed, 3 insertions(+)

--- lib.c
+++ lib.c	2019-01-02 13:25:44.767193676 +0000
@@ -675,6 +675,9 @@ char *mutt_substrdup (const char *begin,
   size_t len;
   char *p;
+  if (end != NULL && end < begin)
+    return NULL;
   if (end)
     len = end - begin;
openSUSE Build Service is sponsored by