idn: fix WinIDN null ptr deref on bad host · 021d04f291 - libreCMC

idn: fix WinIDN null ptr deref on bad host

- Return CURLE_URL_MALFORMAT if IDN hostname cannot be converted from
  UTF-8 to UTF-16.

Prior to this change a failed conversion erroneously returned CURLE_OK
which meant 'decoded' pointer (what would normally point to the
punycode) would not be written to, remain NULL and be dereferenced
causing an access violation.

Closes https://github.com/curl/curl/pull/11983

Jay Satiro 7 months ago

parent

7d55ab1bff

commit

021d04f291

1 changed files with 2 additions and 0 deletions

Split View Show Diff Stats

						
							+ 2
							
							- 0
						
lib/idn.c
							 
								View File
							
				@@ -91,6 +91,8 @@ static CURLcode win32_idn_to_ascii(const char *in, char **out)
			
				     else
			
				       return CURLE_URL_MALFORMAT;
			
				   }
			
				+  else
			
				+    return CURLE_URL_MALFORMAT;
			
				   return CURLE_OK;
			
				 }