A vulnerability was found in Privoxy which was fixed in processencryptedrequest_headers() by freeing header memory when failing to get the request destination.