libsoup Memory Leak Vulnerability in Quality List Parsing

A memory leak vulnerability has been identified in the libsoup library, specifically in the soup_header_parse_quality_list() function. This issue occurs when the function parses a quality list containing elements with all zeroes, such as 'q=0.0', 'q=0.00', or 'q=0.000'. The vulnerability is present in libsoup versions prior to 3.6.3.

Impact

Exploitation of this vulnerability leads to a memory leak, where memory is not properly released after it is no longer needed, potentially causing increased memory usage and degradation of application performance over time.

Reproduction

To reproduce this vulnerability, use libsoup versions prior to 3.6.3 and parse a quality list that includes elements with all zeroes. This can be done by sending an HTTP request that includes a Range header with overlapping ranges, or by using the soup_message_headers_get_content_disposition() function with a 'filename' parameter that has no value.

Remediation

Users can upgrade to libsoup version 3.6.3 or later to address this vulnerability.