Confirming Wget stack overflow in write_backup_file backup-conversion branch

The HTML-extension-adjusted backup path in write_backup_file() subtracts 4 from the end of a stack buffer and writes "orig" with strcpy. This is unsafe when the file name is shorter than the assumed suffix layout and can write into the left redzone of the alloca buffer, corrupting stack memory.