http: do not leak basic auth credentials on re-used connections (24a8359b) · Commits · CYBER - Cyber Security / TS 103 523 MSP / TLMSP / TLMSP curl

Commit 24a8359b authored May 28, 2015 by

Kamil Dudka Committed by Daniel Stenberg Jun 17, 2015

http: do not leak basic auth credentials on re-used connections

CVE-2015-3236

This partially reverts commit curl-7_39_0-237-g87c4abb

Reported-by: Tomas Tomecek, Kamil Dudka
Bug: http://curl.haxx.se/docs/adv_20150617A.html

parent 24f0b6eb

Hide whitespace changes

Inline Side-by-side

Please register or to comment