httpd-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Rob Hartill <r...@imdb.com>
Subject [BUG]: "programming error in suexec.c" on Irix (fwd)
Date Tue, 28 Jan 1997 11:17:58 GMT

not acked

---------- Forwarded message ----------
Date: Sun Jan 26 23:36:08 1997
From: robert@easynet.de
To: apache-bugs%apache.org@organic.com
Subject: [BUG]: "programming error in suexec.c" on Irix

Submitter: robert@easynet.de
Operating system: Irix, version: 
Version of Apache Used: 1.2b6
Extra Modules used: 
URL exhibiting problem: 

Symptoms:
--
While some problems are fixed with suexec, two more
severe programming errors are introduced.
- clean_env() sets some value in environ to 
  pathbuf and exit. But pathbuf will no longer be
  valid after clean_env() is terminated! A solution
  would be to declare it "static char pathbuf[512]".
- By setting more than 256 environment variables, 
  it's possible to corrupt the memory allocated
  for cleanenv in clean_env().
  Solution: 
  Change
    for (ep = environ; *ep; ep++) {
  to
    for (ep = environ; *ep && cidx < CLEAN_ENV_BUF; ep++) {

--

Backtrace:
--

--



Mime
View raw message