fix obvious use-after-free (committed upstream), from Bjorn Ketelaars, ok naddy

security/lastpass-cli/Makefile

@@ -1,10 +1,11 @@
-# $OpenBSD: Makefile,v 1.11 2017/07/06 11:09:50 sthen Exp $
+# $OpenBSD: Makefile,v 1.12 2017/09/29 15:56:40 sthen Exp $
 
 COMMENT =	LastPass command line interface tool
 
 GH_ACCOUNT =	lastpass
 GH_PROJECT =	lastpass-cli
 GH_TAGNAME =	v1.2.1
+REVISION =	0
 CATEGORIES =	security
 
 MAINTAINER =	Bjorn Ketelaars <bjorn.ketelaars@hydroxide.nl>

security/lastpass-cli/patches/patch-http_c

@@ -0,0 +1,19 @@
+$OpenBSD: patch-http_c,v 1.1 2017/09/29 15:56:40 sthen Exp $
+
+From 68cfae08b22954fe952cfe590daa4b81a7f7124b Mon Sep 17 00:00:00 2001
+Date: Fri, 29 Sep 2017 14:06:25 +0200
+Subject: [PATCH] use-after-free bug in http.c
+
+Index: http.c
+--- http.c.orig
++++ http.c
+@@ -310,8 +310,8 @@ char *http_post_lastpass_v_noexit(const char *server, 
+ 	ret = curl_easy_perform(curl);
+ 	unset_interrupt_detect();
+ 
+-	curl_easy_cleanup(curl);
+ 	curl_easy_getinfo(curl, CURLINFO_RESPONSE_CODE, http_code);
++	curl_easy_cleanup(curl);
+ 	*curl_ret = ret;
+ 
+ 	if (ret != CURLE_OK) {