cURL / Mailing Lists / curl-library / Single Mail


PATCH: prevent a double free() with a malformed LDAP URL

From: Geoff Beier <>
Date: Wed, 21 Aug 2013 08:32:37 -0400

We're seeing a crash in libcurl with the Windows system LDAP support
built in, where libcurl will attempt to free memory twice when a URL
parse fails.

This can be reproduced consistently using the command line tool with the
following URL:


Windows is the only platform where we've seen the crash. We've tested
the attached patch on Mac OS X, 32-bit Windows and 64-bit Windows.

I believe I've followed the instructions for patch formatting and such,
but if I've gotten something wrong please let me know.



List admin:

  • text/plain attachment: stored
Received on 2013-08-21