Curl -7.24.0_4 heap corruption
Ryan Frederick
ryanrfrederick at gmail.com
Tue Jul 2 14:58:42 UTC 2013
Update your ports vulnerability database before attempting to compile
curl. `portaudit -Fda` should do the trick.
Ryan
On 07/02/2013 08:49 AM, Reggie Euser wrote:
> We're running FreeBSD 8.3-RELEASE-p3 and portaudit says:
>
> Affected package: curl-7.24.0_2
> Type of problem: cURL library -- heap corruption in curl_easy_unescape.
> Reference:
> http://portaudit.FreeBSD.org/01cf67b3-dc3b-11e2-a6cd-c48508086173.html
>
> 1 problem(s) in your installed packages found.
>
> You are advised to update or deinstall the affected package(s) immediately.
>
> Have updated ports tree, checked UPDATING (nothing on curl since 2010).
> For last several days, portmaster curl has attempted to install
> curl-7.24.0_3 - same heap corruption issue.
>
> Today, portmaster curl attempted to install curl-7.24.0_4. I thought,
> great, the port has been updated!
>
> Except that the heap corruption issue persists and the update fails.
>
> Anyone have any insights into this issue?
>
> Thanks!
>
>
> _______________________________________________
> freebsd-questions at freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to
> "freebsd-questions-unsubscribe at freebsd.org"
More information about the freebsd-questions
mailing list