curl-library
Re: BUG: NULL pointer dereference in Curl_ssl_getsessionid.
From: Marc Hoersken <info_at_marc-hoersken.de>
Date: Sat, 4 May 2013 20:29:19 +0200
Received on 2013-05-04
Date: Sat, 4 May 2013 20:29:19 +0200
I just found a new way to workaround this problem with the state being replaced.
The attached patch introduces a new field in the internal session
structure to keep track of the currently cached session.
With this change the invalid memory access is gone and the Schannel
Credential handle (session) is still freed if the connection could not
be established. (This was the original reason for the cleanup code in
Curl_schannel_shutdown.)
-------------------------------------------------------------------
List admin: http://cool.haxx.se/list/listinfo/curl-library
Etiquette: http://curl.haxx.se/mail/etiquette.html
- application/octet-stream attachment: 0001-curl_schannel.c-Fixed-invalid-memory-access-during-S.patch