oss-sec mailing list archives
CVE request: MPM-ITK module for Apache HTTPD
From: Stefan Fritsch <sf () sfritsch de>
Date: Sun, 20 Mar 2011 14:37:09 +0100 (CET)
Hi, please assign a CVE id for this issue:In certain configurations, the MPM-ITK module for Apache HTTPD serves a request as root user instead of the run user configured in the HTTPD configuration:
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=618857 Cheers, Stefan
Current thread:
- CVE request: MPM-ITK module for Apache HTTPD Stefan Fritsch (Mar 20)
- Re: CVE request: MPM-ITK module for Apache HTTPD Josh Bressers (Mar 21)
- Re: CVE request: MPM-ITK module for Apache HTTPD Steinar H. Gunderson (Mar 21)
- Re: CVE request: MPM-ITK module for Apache HTTPD Josh Bressers (Mar 21)