From 95dcbcac5c249fdb1feb0c0c72e603dbbedb714d Mon Sep 17 00:00:00 2001
From: Pavel Kalugin <paul.kalug@gmail.com>
Date: Wed, 5 Aug 2020 12:35:49 +0300
Subject: [PATCH] Fix heap-buffer overflow in telebot-core

Allocated region must be 1 more byte than its actual size because of
C-style strings.

Signed-off-by: Pavel Kalugin <paul.kalug@gmail.com>
---
 src/telebot-core.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/telebot-core.c b/src/telebot-core.c
index dbb9dfb..e2b562b 100644
--- a/src/telebot-core.c
+++ b/src/telebot-core.c
@@ -39,7 +39,7 @@ static size_t write_data_cb(void *contents, size_t size, size_t nmemb, void *use
     telebot_core_response_t *resp = (telebot_core_response_t *)userp;
     size_t r_size = size * nmemb;
 
-    char *data = (char *)realloc(resp->data, resp->size + r_size);
+    char *data = (char *)realloc(resp->data, resp->size + r_size + 1);
     if (data == NULL)
     {
         ERR("Failed to allocate memory, size:%u", (unsigned int)r_size);