Bug#496217: mt-daapd: admin page password always fails

The patch I proposed is for mt-daapd/0.2.4+r1376-1.1+etch1 only. Sorry about any confusion about that. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#496217: mt-daapd: web interface still refusing valid credentials

<[EMAIL PROTECTED]> wrote: >> Even in 0.9~r1696-1.4 still refuses valid credentials for the web >> interface. I haven't been able to track that down further. > > The solution proposed by Martijn Plak is not correct, if you look at > the source of "webserver.c

Bug#496217: mt-daapd CVE-2007-5824_CVE-2007-5825 patch breaks admin login

A fix for this is to change one line in 04_upstream_CVE-2007-5824_CVE-2007-5825.dpatch (the patch for webserver.c): from: + if((auth) && (ws_decodepassword(auth,&username, &password))) { to: + if((auth) && (0 == ws_decodepassword(auth,&username, &password))) { I've reported this bug and