Fixed possible buffer overflow in loadbuf function

Resolves: rhbz#1500071

procmail-3.22-loadbuf-fix.patch

@@ -0,0 +1,13 @@
+diff --git a/src/formisc.c b/src/formisc.c
+index 5c2869d..54fd013 100644
+--- a/src/formisc.c
++++ b/src/formisc.c
+@@ -103,7 +103,7 @@ void loadsaved(sp)const struct saved*const sp;	     /* load some saved text */
+ }
+ 							    /* append to buf */
+ void loadbuf(text,len)const char*const text;const size_t len;
+-{ if(buffilled+len>buflen)			  /* buf can't hold the text */
++{ while(buffilled+len>buflen)			  /* buf can't hold the text */
+      buf=realloc(buf,buflen+=Bsize);
+   tmemmove(buf+buffilled,text,len);buffilled+=len;
+ }

procmail.spec

@@ -8,7 +8,7 @@
 Summary: Mail processing program
 Name: procmail
 Version: 3.22
-Release: 43%{?dist}
+Release: 44%{?dist}
 License: GPLv2+ or Artistic
 Group: Applications/Internet
 # Source: ftp://ftp.procmail.org/pub/procmail/procmail-%{version}.tar.gz
@@ -26,6 +26,7 @@ Patch5: procmail-3.22-ipv6.patch
 Patch6: procmail-3.22-getline.patch
 Patch7: procmail-3.22-CVE-2014-3618.patch
 Patch8: procmail-3.22-crash-fix.patch
+Patch9: procmail-3.22-loadbuf-fix.patch
 BuildRoot: %{_tmppath}/%{name}-%{version}-%{release}-root-%(%{__id_u} -n)
 
 %description
@@ -46,6 +47,7 @@ forward certain incoming mail automatically to someone.
 %patch6 -p1 -b .getline
 %patch7 -p1 -b .CVE-2014-3618
 %patch8 -p1 -b .crash-fix
+%patch9 -p1 -b .loadbuf-fix
 
 find examples -type f | xargs chmod 644
 
@@ -81,6 +83,10 @@ rm -rf ${RPM_BUILD_ROOT}
 %{_mandir}/man[15]/*
 
 %changelog
+* Tue Oct 10 2017 Jaroslav Škarvada <jskarvad@redhat.com> - 3.22-44
+- Fixed possible buffer overflow in loadbuf function
+  Resolves: rhbz#1500071
+
 * Thu Aug 03 2017 Fedora Release Engineering <releng@fedoraproject.org> - 3.22-43
 - Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild