curl-library
leaks using long hostnames
From: Gisle Vanem <gvanem_at_broadpark.no>
Date: Fri, 7 May 2004 16:02:20 +0200
Date: Fri, 7 May 2004 16:02:20 +0200
> curl www.etdomenenavnkanmaksimaltinneholdesekstitrebokstaversliksomdette.com
Which has a 64 bytes domain label.
> perl memanlyze.pl memdump
Leak detected: memory still allocated: 37014 bytes
At a934c0, there's 43 bytes.
allocated by url.c:3502
At a93d60, there's 43 bytes.
allocated by main.c:526
...
At a939c8, there's 10 bytes.
allocated by transfer.c:692
Open file descriptor created at connect.c:588
But more seriously; the output contains trailing 0x13 codes at
end; looks like a case of use-after-free. I fail to see why this happens.
cur/libcurl doesn't have a limit on hostnames, do they?
--gv
Received on 2004-05-07