| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | code style: use spaces around pluses | Daniel Stenberg | 2017-09-11 | 1 | -3/+3 |
| | | |||||
| * | URLs: change all http:// URLs to https:// | Daniel Stenberg | 2016-02-03 | 1 | -1/+1 |
| | | |||||
| * | checksrc: use space after comma | Daniel Stenberg | 2015-03-17 | 1 | -2/+2 |
| | | |||||
| * | tool_strdup.c: include the tool strdup.h | Daniel Stenberg | 2014-11-05 | 1 | -1/+1 |
| | | | | | ... not the lib/ one that the tool no longer uses! | ||||
| * | curl_easy_duphandle: CURLOPT_COPYPOSTFIELDS read out of bounds | Daniel Stenberg | 2014-11-05 | 1 | -0/+47 |
| When duplicating a handle, the data to post was duplicated using strdup() when it could be binary and contain zeroes and it was not even zero terminated! This caused read out of bounds crashes/segfaults. Since the lib/strdup.c file no longer is easily shared with the curl tool with this change, it now uses its own version instead. Bug: http://curl.haxx.se/docs/adv_20141105.html CVE: CVE-2014-3707 Reported-By: Symeon Paraschoudis | |||||
 |
index : delta/curl.git | |
| github.com: bagder/curl.git |
| summaryrefslogtreecommitdiff |