diff options
| author | Daniel Stenberg <daniel@haxx.se> | 2003-10-26 15:42:21 +0000 |
|---|---|---|
| committer | Daniel Stenberg <daniel@haxx.se> | 2003-10-26 15:42:21 +0000 |
| commit | 54c6f2c7c05d33859789bc3a1754805ee31c6edb (patch) | |
| tree | 75405982126e2e139fd6f956802d0f3bd4263e4a /CHANGES | |
| parent | 4cccceb0342c59441c6ae693612c557dbebcc03a (diff) | |
James Bursa found an ERRORBUFFFER overflow
Diffstat (limited to 'CHANGES')
| -rw-r--r-- | CHANGES | 7 |
1 files changed, 7 insertions, 0 deletions
@@ -7,6 +7,13 @@ Changelog +Daniel (26 October) +- James Bursa found out that curl_msnprintf() could write the trailing + zero-byte outside its given buffer size. This could happen if you generated + a very long error message as then libcurl would overwrite the ERRORBUFFER + with one byte. Using a non-existing very long local file:// name is one case + that could make this occur. + Daniel (24 October) - David Hull filed bug report #829827. It identified a problem with -C - if the full file already was downloaded and thus the server responded with a |