You are viewing a plain text version of this content. The canonical link for it is here.
Posted to cvs@httpd.apache.org by jo...@apache.org on 2004/08/18 10:21:55 UTC
cvs commit: httpd-2.0/modules/mappers mod_userdir.c
jorton 2004/08/18 01:21:55
Modified: . CHANGES
modules/mappers mod_userdir.c
Log:
* modules/mappers/mod_userdir.c (register_hooks): Move suexec_identity
hook to APR_HOOK_FIRST to ensure it runs before the mod_suexec hook.
PR: 18156
Submitted by: Joshua Slive
Revision Changes Path
1.1556 +4 -0 httpd-2.0/CHANGES
Index: CHANGES
===================================================================
RCS file: /home/cvs/httpd-2.0/CHANGES,v
retrieving revision 1.1555
retrieving revision 1.1556
diff -d -w -u -r1.1555 -r1.1556
--- CHANGES 17 Aug 2004 19:59:38 -0000 1.1555
+++ CHANGES 18 Aug 2004 08:21:54 -0000 1.1556
@@ -2,6 +2,10 @@
[Remove entries to the current 2.0 section below, when backported]
+ *) mod_userdir: Ensure that the userdir identity is used for
+ suexec userdir access in a virtual host which has suexec configured.
+ PR 18156. [Joshua Slive]
+
*) SECURITY: CAN-2004-0751 (cve.mitre.org)
mod_ssl: Fix a segfault in the SSL input filter which could be
triggered if using "speculative" mode, for instance by a
1.59 +1 -1 httpd-2.0/modules/mappers/mod_userdir.c
Index: mod_userdir.c
===================================================================
RCS file: /home/cvs/httpd-2.0/modules/mappers/mod_userdir.c,v
retrieving revision 1.58
retrieving revision 1.59
diff -d -w -u -r1.58 -r1.59
--- mod_userdir.c 9 Feb 2004 20:29:20 -0000 1.58
+++ mod_userdir.c 18 Aug 2004 08:21:55 -0000 1.59
@@ -350,7 +350,7 @@
ap_hook_translate_name(translate_userdir,aszPre,aszSucc,APR_HOOK_MIDDLE);
#ifdef HAVE_UNIX_SUEXEC
- ap_hook_get_suexec_identity(get_suexec_id_doer,NULL,NULL,APR_HOOK_MIDDLE);
+ ap_hook_get_suexec_identity(get_suexec_id_doer,NULL,NULL,APR_HOOK_FIRST);
#endif
}