From 9ffb9ec198bda3a1af3a22aafdfd618563a03e2e Mon Sep 17 00:00:00 2001
From: Wilfried Goesgens <dothebart@citadel.org>
Date: Thu, 6 Jun 2013 21:02:28 +0200
Subject: [PATCH] fix buffer overrun by 1

---
 citadel/msgbase.c | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/citadel/msgbase.c b/citadel/msgbase.c
index 5c10578c0..682f993a2 100644
--- a/citadel/msgbase.c
+++ b/citadel/msgbase.c
@@ -4855,6 +4855,10 @@ int CtdlDeleteMessages(char *room_name,		/* which room */
 			}
 			else {
 				while ((i < num_msgs) && (msglist[i] < dmsgnums[j])) i++;
+
+				if (i >= num_msgs)
+					continue;
+
 				if (msglist[i] == dmsgnums[j]) {
 					delete_this |= 0x01;
 				}
-- 
2.30.2