From 0e74bc98bed27e78b73d6ca1123c63aee4c6335a Mon Sep 17 00:00:00 2001
From: Panu Matilainen <pmatilai@redhat.com>
Date: Mon, 27 Aug 2007 09:48:00 +0300
Subject: [PATCH] Fix potential buffer overflow by using dynamic buffer size.

---
 rpmio/macro.c | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/rpmio/macro.c b/rpmio/macro.c
index 52a7bc5..3c2070d 100644
--- a/rpmio/macro.c
+++ b/rpmio/macro.c
@@ -1080,7 +1080,10 @@ doOutput(MacroBuf mb, int waserror, const char * msg, size_t msglen)
 	/*@globals rpmGlobalMacroContext, h_errno, fileSystem @*/
 	/*@modifies mb, rpmGlobalMacroContext, fileSystem @*/
 {
-    char buf[BUFSIZ];
+    char *buf;
+
+    buf = alloca(msglen + 1);
+    memset(buf, 0, (msglen + 1));
 
     strncpy(buf, msg, msglen);
     buf[msglen] = '\0';
-- 
2.7.4