{
  "entrypoint_kind": "function_call",
  "entrypoint_detail": "curl_easy_duphandle (primary) and curl_easy_reset(parent) (secondary) after CURLOPT_STREAM_DEPENDS",
  "service_started": false,
  "healthcheck_passed": true,
  "target_path_reached": true,
  "runtime_stack": [
    "libcurl"
  ],
  "proof_artifacts": [
    "logs/vuln_variant/reproducer_vuln_duphandle.log",
    "logs/vuln_variant/reproducer_fixed_duphandle.log"
  ],
  "notes": "The duphandle variant triggers a heap-use-after-free in data_priority_cleanup on the vulnerable build, but exits cleanly on the fixed and latest builds because the dependency tree was removed.",
  "result": "confirmed_variant_no_bypass",
  "vulnerable_commit": "6e3f8dc1f173b47de9a68516ce4b95bf25598c2f",
  "fixed_commit": "bfbff7852f050232edd3e5ca5c6bf2021c340f5a",
  "latest_commit": "68720b4837",
  "variant_results": [
    {
      "variant": "duphandle",
      "vuln_uaf": "true",
      "fixed_uaf": "false",
      "latest_uaf": "false"
    },
    {
      "variant": "reset_parent",
      "vuln_uaf": "true",
      "fixed_uaf": "false",
      "latest_uaf": "false"
    }
  ]
}
