+++ This bug was initially created as a clone of Bug #223143 +++ Description of problem: Programs using libsoup Server code attempts to dereference NULL pointer upon receival of a header that looks like this: "GET something\000something\r\n" Affected code is used just by Rhythmbox's daap plugin in FC{5,6} and RHEL5 Also you can use seahorse from Extras to reproduce the issue See the debian bugreport for details. Steps to Reproduce: 1. Run rhythmbox and enable the daap server 2. echo -e "GET abcd\000efgh" |telnet localhost daap 3. Correct the line above, for I haven't tried it :) Additional info: Upstream completly rewrote the affected functions. Dunno if debian did their own patches, but they issued a DSA for that. http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=405197 http://bugzilla.gnome.org/show_bug.cgi?id=391970
This has been fixed in libsoup-2.2.99. Fedora Core 6 currently has 2.2.98. I'll address this by pushing 2.2.99 as a Fedora Core 6 update.
libsoup-2.2.99-1.fc6 has been pushed for fc6, which should resolve this issue. If these problems are still present in this version, then please make note of it in this bug report.
Closing as CURRENTRELEASE.
I'm reopening this ticket as there has not yet been a FC5 update for libsoup (we'll use this one bug to track both as it's a bit easier).
libsoup-2.2.96-2.fc5 has been pushed for fc5, which should resolve this issue. If these problems are still present in this version, then please make note of it in this bug report.