From de5503063e4ea455a7a0a57afcc467a2041c859f Mon Sep 17 00:00:00 2001
From: Andreas Baumann <mail@andreasbaumann.cc>
Date: Sun, 25 Jul 2021 18:49:06 +0200
Subject: check_curl: fixed a potential buffer overflow in retir/uri_string


diff --git a/plugins/check_curl.c b/plugins/check_curl.c
index 2c91a27..5990b95 100644
--- a/plugins/check_curl.c
+++ b/plugins/check_curl.c
@@ -1033,8 +1033,8 @@ char*
 uri_string (const UriTextRangeA range, char* buf, size_t buflen)
 {
   if (!range.first) return "(null)";
-  strncpy (buf, range.first, max (buflen, range.afterLast - range.first));
-  buf[max (buflen, range.afterLast - range.first)] = '\0';
+  strncpy (buf, range.first, max (buflen-1, range.afterLast - range.first));
+  buf[max (buflen-1, range.afterLast - range.first)] = '\0';
   buf[range.afterLast - range.first] = '\0';
   return buf;
 }
-- 
cgit v0.10-9-g596f