httpd-cvs mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From jor...@apache.org
Subject cvs commit: httpd-2.0/modules/mappers mod_userdir.c
Date Wed, 18 Aug 2004 08:21:55 GMT
jorton      2004/08/18 01:21:55

  Modified:    .        CHANGES
               modules/mappers mod_userdir.c
  Log:
  * modules/mappers/mod_userdir.c (register_hooks): Move suexec_identity
  hook to APR_HOOK_FIRST to ensure it runs before the mod_suexec hook.
  
  PR: 18156
  Submitted by: Joshua Slive
  
  Revision  Changes    Path
  1.1556    +4 -0      httpd-2.0/CHANGES
  
  Index: CHANGES
  ===================================================================
  RCS file: /home/cvs/httpd-2.0/CHANGES,v
  retrieving revision 1.1555
  retrieving revision 1.1556
  diff -d -w -u -r1.1555 -r1.1556
  --- CHANGES	17 Aug 2004 19:59:38 -0000	1.1555
  +++ CHANGES	18 Aug 2004 08:21:54 -0000	1.1556
  @@ -2,6 +2,10 @@
   
     [Remove entries to the current 2.0 section below, when backported]
   
  +  *) mod_userdir: Ensure that the userdir identity is used for
  +     suexec userdir access in a virtual host which has suexec configured.  
  +     PR 18156.  [Joshua Slive]
  +
     *) SECURITY: CAN-2004-0751 (cve.mitre.org)
        mod_ssl: Fix a segfault in the SSL input filter which could be
        triggered if using "speculative" mode, for instance by a 
  
  
  
  1.59      +1 -1      httpd-2.0/modules/mappers/mod_userdir.c
  
  Index: mod_userdir.c
  ===================================================================
  RCS file: /home/cvs/httpd-2.0/modules/mappers/mod_userdir.c,v
  retrieving revision 1.58
  retrieving revision 1.59
  diff -d -w -u -r1.58 -r1.59
  --- mod_userdir.c	9 Feb 2004 20:29:20 -0000	1.58
  +++ mod_userdir.c	18 Aug 2004 08:21:55 -0000	1.59
  @@ -350,7 +350,7 @@
   
       ap_hook_translate_name(translate_userdir,aszPre,aszSucc,APR_HOOK_MIDDLE);
   #ifdef HAVE_UNIX_SUEXEC
  -    ap_hook_get_suexec_identity(get_suexec_id_doer,NULL,NULL,APR_HOOK_MIDDLE);
  +    ap_hook_get_suexec_identity(get_suexec_id_doer,NULL,NULL,APR_HOOK_FIRST);
   #endif
   }
   
  
  
  

Mime
View raw message