libcurl3-gnutls has memory corruption
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
curl (Debian) |
Fix Released
|
Unknown
|
|||
curl (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
Hello!
I'm using libcurl-7.18.2 with GNU-TLS, with curl_multi_* interface. I'm not using share handles. When i start my program on server with high bandwidth rate, with a large amount of network streams, libcurl causes memory corruption.
I've wrote simple testcase(
When i run testcase under valgrind, in 80 network streams, there is memory corruption in libcurl. There is invalid write of 4 bytes in multi_runsingle (multi.c:907), which causes magic behaviour. You can see it in attachment(
I checked this testcase with libcurl-7.19.5 and it seems, that bug is fixed in it(i configured it with folowing options: --with-
My system info:
uname -a
Linux * 2.6.27-14-generic #1 SMP Wed Apr 15 18:59:16 UTC 2009 i686 GNU/Linux
lsb_release -ar
No LSB modules are available.
Distributor ID: Ubuntu
Release: 8.10
Codename: intrepid
aptitude show libcurl3-gnutls
Package: libcurl3-gnutls
State: installed
Version: 7.18.2-1ubuntu4.3
Priority: optional
Section: libs
Maintainer: Ubuntu Core Developers <email address hidden>
Depends: libc6 (>= 2.4), libcomerr2 (>= 1.01), libgcrypt11 (>= 1.4.0), libgnutls26 (>= 2.4.0-0), libidn11 (>= 0.5.18), libkrb53 (>= 1.6.dfsg.2),
Conflicts: libcurl4-gnutls
Replaces: libcurl4-gnutls
libcurl is designed to be a solid, usable, reliable and portable multi-protocol file transfer library.
SSL support is provided by GnuTLS.
This is the shared version of libcurl.
Homepage: http://
gcc -v
Using built-in specs.
Target: i486-linux-gnu
Configured with: ../src/configure -v --with-
Thread model: posix
gcc version 4.3.2 (Ubuntu 4.3.2-1ubuntu12)
Attachments:
libcurl_
links.txt - file with links, that should be passed to testcase.
valgrind_
With best regards, Piter Smith.
Related branches
Changed in curl (Debian): | |
status: | Unknown → New |
Changed in curl (Debian): | |
status: | New → Fix Released |
This bug also affect's me(i have Ubuntu Jaunty), and also exists in Debian lenny curl.haxx. se/mail/ lib-2009- 04/0394. html, and later mailed private mail to Daniel Stenberg, but he didn't answered me.
I've wroten about it here: http://