diff options
Diffstat (limited to 'www/curl/patches/patch-bd')
| -rw-r--r-- | www/curl/patches/patch-bd | 19 |
1 files changed, 19 insertions, 0 deletions
diff --git a/www/curl/patches/patch-bd b/www/curl/patches/patch-bd new file mode 100644 index 00000000000..080e8100ed1 --- /dev/null +++ b/www/curl/patches/patch-bd @@ -0,0 +1,19 @@ +$NetBSD: patch-bd,v 1.1.2.2 2012/01/28 06:26:19 sbd Exp $ + +CVE-2012-0036 + +--- lib/pop3.c.orig 2011-11-04 22:32:56.000000000 +0000 ++++ lib/pop3.c +@@ -899,11 +899,7 @@ static CURLcode pop3_parse_url_path(stru + const char *path = data->state.path; + + /* url decode the path and use this mailbox */ +- pop3c->mailbox = curl_easy_unescape(data, path, 0, NULL); +- if(!pop3c->mailbox) +- return CURLE_OUT_OF_MEMORY; +- +- return CURLE_OK; ++ return Curl_urldecode(data, path, 0, &pop3c->mailbox, NULL, TRUE); + } + + /* call this when the DO phase has completed */ |