From: Scott Cantor <scantor@apache.org>
Date: Mon, 4 Sep 2017 18:41:41 +0000
Subject: Fix a length bug in concat method.

git-svn-id: https://svn.apache.org/repos/asf/santuario/xml-security-cpp/trunk@1807280 13f79535-47bb-0310-9956-ffa450edef68

Closes: #922984
---
 xsec/utils/XSECSafeBuffer.cpp | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/xsec/utils/XSECSafeBuffer.cpp b/xsec/utils/XSECSafeBuffer.cpp
index 71ae9a0..6d0798b 100644
--- a/xsec/utils/XSECSafeBuffer.cpp
+++ b/xsec/utils/XSECSafeBuffer.cpp
@@ -639,7 +639,7 @@ void safeBuffer::sbXMLChCat(const char * str) {
 
 	assert (t != NULL);
 
-	len += XMLString::stringLen(t);
+	len += XMLString::stringLen(t) * size_XMLCh;
 	len += (xsecsize_t) (2 * size_XMLCh);
 
 	checkAndExpand(len);