- avoid use of uninitialized value in lib/nss.c

curl-7.19.7-nss-warning.patch

@@ -0,0 +1,24 @@
+diff --git a/lib/nss.c b/lib/nss.c
+index d1a9d1a..637663e 100644
+--- a/lib/nss.c
++++ b/lib/nss.c
+@@ -990,7 +990,9 @@ CURLcode Curl_nss_connect(struct connectdata *conn, int sockindex)
+ {
+   PRInt32 err;
+   PRFileDesc *model = NULL;
+-  PRBool ssl2, ssl3, tlsv1;
++  PRBool ssl2 = PR_FALSE;
++  PRBool ssl3 = PR_FALSE;
++  PRBool tlsv1 = PR_FALSE;
+   struct SessionHandle *data = conn->data;
+   curl_socket_t sockfd = conn->sock[sockindex];
+   struct ssl_connect_data *connssl = &conn->ssl[sockindex];
+@@ -1106,8 +1108,6 @@ CURLcode Curl_nss_connect(struct connectdata *conn, int sockindex)
+   if(SSL_OptionSet(model, SSL_HANDSHAKE_AS_CLIENT, PR_TRUE) != SECSuccess)
+     goto error;
+ 
+-  ssl2 = ssl3 = tlsv1 = PR_FALSE;
+-
+   switch (data->set.ssl.version) {
+   default:
+   case CURL_SSLVERSION_DEFAULT:

curl.spec

@@ -1,7 +1,7 @@
 Summary: A utility for getting files from remote servers (FTP, HTTP, and others)
 Name: curl
 Version: 7.19.7
-Release: 4%{?dist}
+Release: 5%{?dist}
 License: MIT
 Group: Applications/Internet
 Source: http://curl.haxx.se/download/%{name}-%{version}.tar.lzma
@@ -9,6 +9,7 @@ Source2: curlbuild.h
 Patch1: curl-7.19.7-nss-nonblock.patch
 Patch2: curl-7.19.7-ssl-retry.patch
 Patch3: curl-7.19.7-modelfree.patch
+Patch4: curl-7.19.7-nss-warning.patch
 Patch101: curl-7.15.3-multilib.patch
 Patch102: curl-7.16.0-privlibs.patch
 Patch103: curl-7.19.4-debug.patch
@@ -84,6 +85,7 @@ use cURL's capabilities internally.
 %patch1 -p1
 %patch2 -p1
 %patch3 -p1
+%patch4 -p1
 
 # Fedora patches
 %patch101 -p1
@@ -173,6 +175,9 @@ rm -rf $RPM_BUILD_ROOT
 %{_datadir}/aclocal/libcurl.m4
 
 %changelog
+* Wed Dec 02 2009 Kamil Dudka <kdudka@redhat.com> 7.19.7-5
+- avoid use of uninitialized value in lib/nss.c
+
 * Tue Dec 01 2009 Kamil Dudka <kdudka@redhat.com> 7.19.7-4
 - do not require valgrind on s390 and s390x
 - temporarily disabled SCP/SFTP test-suite (#539444)