oss-sec mailing list archives
Re: CVE request: MPM-ITK module for Apache HTTPD
From: Josh Bressers <bressers () redhat com>
Date: Mon, 21 Mar 2011 16:24:38 -0400 (EDT)
----- Original Message -----
Hi, please assign a CVE id for this issue: In certain configurations, the MPM-ITK module for Apache HTTPD serves a request as root user instead of the run user configured in the HTTPD configuration: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=618857
Please use CVE-2011-1176
Thanks.
--
JB
Current thread:
- CVE request: MPM-ITK module for Apache HTTPD Stefan Fritsch (Mar 20)
- Re: CVE request: MPM-ITK module for Apache HTTPD Josh Bressers (Mar 21)
- Re: CVE request: MPM-ITK module for Apache HTTPD Steinar H. Gunderson (Mar 21)
- Re: CVE request: MPM-ITK module for Apache HTTPD Josh Bressers (Mar 21)