From 7e22b87f31ee3d690d93727bf57d7316f0252c6f Mon Sep 17 00:00:00 2001
From: Kubat <mael.martin31@gmail.com>
Date: Wed, 14 Dec 2022 22:05:54 +0100
Subject: [PATCH] FIX: Should prevent a possible buffer overflow in default
 config file path detection

---
 src/base/config.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/base/config.c b/src/base/config.c
index 568a64f9..6e4a44b6 100644
--- a/src/base/config.c
+++ b/src/base/config.c
@@ -211,7 +211,7 @@ config_default_file(char *dest, size_t len)
     } else {
         LOG_DEBUG("CONFIG", "Using XDG_CONFIG_HOME: %s", home);
         safe_strncpy(dest, home, len - 1);
-        strncat(dest, "/lektor/lektor.ini", len - 1);
+        strncat(dest, "/lektor/lektor.ini", len - 1 - strlen(home));
     }
 }
 
-- 
GitLab