cURL / Mailing Lists / curl-library / Single Mail


Re: [PATCH] lib/ssluse.c: verifyhost(): peer_CN leak

From: Daniel Stenberg <>
Date: Tue, 22 May 2007 21:50:14 +0200 (CEST)

On Tue, 22 May 2007, Andre Guibert de Bruet wrote:

> While auditing memory usage in a piece of software that makes extensive use
> of cURL's HTTPS functionality, I came across a condition in which cURL leaks
> the peer_CN heap variable in lib/ssluse.c if the call to
> Curl_convert_from_utf8() is unsuccessful. This following is a diff against
> 7.16.2:

Thanks, applied!

  Commercial curl and libcurl Technical Support:
Received on 2007-05-22