From 2e9d1f4d44036e7c0605cfeac091368e013e3ed9 Mon Sep 17 00:00:00 2001
From: Philipp Stephani <phst@google.com>
Date: Sun, 2 Aug 2020 16:05:44 +0200
Subject: [PATCH] * src/alloc.c (mark_maybe_object): Avoid signed integer
 overflow

---
 src/alloc.c | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/src/alloc.c b/src/alloc.c
index da11426075b..5220ef84783 100644
--- a/src/alloc.c
+++ b/src/alloc.c
@@ -4652,7 +4652,8 @@ mark_maybe_object (Lisp_Object obj)
 #else
   (void) overflow;
 #endif
-  void *po = (char *) ((intptr_t) (char *) XLP (obj) + offset);
+  INT_ADD_WRAPV (offset, (intptr_t) (char *) XLP (obj), &offset);
+  void *po = (char *) offset;
 
   /* If the pointer is in the dump image and the dump has a record
      of the object starting at the place where the pointer points, we
-- 
2.39.2