X-Git-Url: http://www.privoxy.org/gitweb/?p=privoxy.git;a=blobdiff_plain;f=cgi.c;h=ec86b64b09e3187c68fd2a0d1e6b3e9c3075adb1;hp=2e9e2656f40ad7689535bc134d4fec09cc1bf192;hb=c656a3e40efa95089b09b8d531e823f826575c3c;hpb=f71fb7cbfbdc1fa6ddea1c177a2c4e7ee553b27a

diff --git a/cgi.c b/cgi.c
index 2e9e2656..ec86b64b 100644
--- a/cgi.c
+++ b/cgi.c
@@ -8,7 +8,7 @@
  *                actual handler functions are declared elsewhere.
  *
  * Copyright   :  Written by and Copyright (C) 2001-2017
- *                members of the Privoxy team. http://www.privoxy.org/
+ *                members of the Privoxy team. https://www.privoxy.org/
  *
  *                Based on the Internet Junkbuster originally written
  *                by and Copyright (C) 1997 Anonymous Coders and
@@ -1594,7 +1594,7 @@ struct http_response *finish_http_response(struct client_state *csp, struct http
    if (NULL != csp->config->cors_allowed_origin)
    {
       enlist_unique_header(rsp->headers, "Access-Control-Allow-Origin",
-         strdup_or_die(csp->config->cors_allowed_origin));
+         csp->config->cors_allowed_origin);
       enlist_unique_header(rsp->headers, "Access-Control-Allow-Methods", "GET,POST");
       enlist_unique_header(rsp->headers, "Access-Control-Allow-Headers", "X-Requested-With");
       enlist_unique_header(rsp->headers, "Access-Control-Max-Age", "86400");