Red Hat Bugzilla – Bug 89063
Security: konqueror with Secure Socket Layer (https urls) will SEGV
Last modified: 2007-04-18 12:53:07 EDT
Description of problem:
/usr/bin/konqueror either permanently hangs or crashes with a SEGV when trying
to visit a secure page.
All I did was try to upgrade konqueror to the latest RPM from redhat updates
by typing "up2date kdebase" on my RedHat 7.3 system. This upgraded kdebase
from my stock 3.0.0-10 to version 3.0.3-0.7.2 (along with a few other
interdependencies). But ever since then, I could not visit https urls.
So I rolled it back:
rpm --oldpackage -Uvh kdebase-3.0.0-10.i386.rpm
but STILL the exact same strange crashing and hanging occurred.
So I also rolled back one of the dependencies:
rpm --oldpackage -Uvh kdelibs-3.0.0-10.i386.rpm
And suddenly everything was working again.
So I assume it is something in kdelibs and not kdebase
that happened between 3.0.0 and 3.0.3.
Version-Release number of selected component (if applicable):
kdelibs-3.0.0-10 -- stock redhat 7.3 version works fine.
kdebase-3.0.3-0.7.2 -- latest from 7.3 updates breaks.
Steps to Reproduce:
1. Install stock RedHat 7.3
2. konqueror https://pause.perl.org/
(pulls up perfectly fine)
3. up2date kdebase
4. konqueror https://pause.perl.org/
(immedaite SEGV or hangs forever with non-responsive choking)
5. rpm --oldpackage -Uvh kdebase-3.0.0-10.i386.rpm kdelibs-3.0.0-10.i386.rpm
6. konqueror https://pause.perl.org/
(pulls up perfectly fine again)
Segmentation fault or hangs.
View page like normal.
I may have missed another rpm that I should've updated, but I just updated
barely enough to satisfy the rpm dependencies in order to upgrade kdebase.
I haven't been able to up2date EVERYTHING to the latest redhat updates to see
if the problem persists or not. Any suggestions?
it should be fixed in 3.0.5a, which will be released as errata soon