- fix crash on doubly closed NSPR descriptor, patch contributed by Kevin

Baughman (#534176)
2009-11-12 13:07:50 +00:00 · 2009-11-12 13:07:50 +00:00 · 31746c9ea7
parent 69a7693fea
commit 31746c9ea7
2 changed files with 19 additions and 1 deletions
--- a/curl-7.19.7-modelfree.patch
+++ b/curl-7.19.7-modelfree.patch
@ -0,0 +1,12 @@
+diff --git a/lib/nss.c b/lib/nss.c
+index ea904af..addc165 100644
+--- a/lib/nss.c
+++ b/lib/nss.c
+@@ -1222,6 +1222,7 @@ CURLcode Curl_nss_connect(struct connectdata *conn, int sockindex)
+   if(!connssl->handle)
+     goto error;
+   PR_Close(model); /* We don't need this any more */
+  model = NULL;
+ 
+   /* This is the password associated with the cert that we're using */
+   if (data->set.str[STRING_KEY_PASSWD]) {
--- a/curl.spec
+++ b/curl.spec
@ -1,11 +1,12 @@
 Summary: A utility for getting files from remote servers (FTP, HTTP, and others)
 Name: curl
 Version: 7.19.6
-Release: 1%{?dist}
+Release: 2%{?dist}
 License: MIT
 Group: Applications/Internet
 Source: http://curl.haxx.se/download/%{name}-%{version}.tar.bz2
 Patch1: curl-7.19.6-verifyhost.patch
+Patch2: curl-7.19.7-modelfree.patch
 Patch101: curl-7.15.3-multilib.patch
 Patch102: curl-7.16.0-privlibs.patch
 Patch103: curl-7.19.4-debug.patch
@ -51,6 +52,7 @@ use cURL's capabilities internally.

 # upstream patches
 %patch1 -p1
+%patch2 -p1

 # Fedora patches
 %patch101 -p1
@ -148,6 +150,10 @@ rm -rf $RPM_BUILD_ROOT
 %{_datadir}/aclocal/libcurl.m4

 %changelog
+* Thu Nov 12 2009 Kamil Dudka <kdudka@redhat.com> 7.19.6-2
+- fix crash on doubly closed NSPR descriptor, patch contributed
+  by Kevin Baughman (#534176)
+
 * Fri Aug 14 2009 Kamil Dudka <kdudka@redhat.com> 7.19.6-1
 - new upstream release, dropped applied patches
 - changed NSS code to not ignore the value of ssl.verifyhost and produce more