tag/ApeLoader: fix buffer overflow after unterminated key

NEWS

@@ -1,4 +1,6 @@
 ver 0.19.11 (not yet released)
+* tags
+  - ape: fix buffer overflow
 
 ver 0.19.10 (2015/06/21)
 * input

src/tag/ApeLoader.cxx

@@ -78,12 +78,12 @@ ape_scan_internal(FILE *fp, ApeTagCallback callback)
 
 		/* get the key */
 		const char *key = p;
-		while (remaining > size && *p != '\0') {
+		const char *key_end = (const char *)memchr(p, '\0', remaining);
-			p++;
+		if (key_end == nullptr)
-			remaining--;
+			break;
-		}
+
-		p++;
+		p = key_end + 1;
-		remaining--;
+		remaining -= p - key;
 
 		/* get the value */
 		if (remaining < size)