Unverified Commit a7091ba7 authored by Even Rouault's avatar Even Rouault Committed by Daniel Stenberg
Browse files

reuse_conn(): free old_conn->options 

This fixes a memory leak when CURLOPT_LOGIN_OPTIONS is used, together with
connection reuse.

I found this with oss-fuzz on GDAL and curl master:
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=9582
I couldn't reproduce with the oss-fuzz original test case, but looking
at curl source code pointed to this well reproducable leak.

Closes #2790
parent d0d48b42

lib/url.c

+1 −0
Original line number Diff line number Diff line
@@ -3971,6 +3971,7 @@ static void reuse_conn(struct connectdata *old_conn, 


  Curl_safefree(old_conn->user);

  Curl_safefree(old_conn->passwd);

  Curl_safefree(old_conn->options);

  Curl_safefree(old_conn->http_proxy.user);

  Curl_safefree(old_conn->socks_proxy.user);

  Curl_safefree(old_conn->http_proxy.passwd);