The real case how I stumbled over it:
* my PHP application calls geoip_record_by_name with NULL as argument (although
it expects a string)
* the PHP GeoIP module converts NULL into an allocated empty string
* libGeoIP is called with "" as hostname. Sometimes, the byte directly
preceding the empty
Triaged: Trivial test case and pointer to fix
Medium: Reasonable starter; if you can point to it being triggerable in some
apps then it might be higher
This triggers in Quantal libc6 2.15-0ubuntu20 , and as I understand it, it
needs to get fixed in the dev version before being SRUd
to 12.04.
*
