[php-maint] Bug#508021: Bug#508021: php apache/2 SAPI php_getuid() overload

sean finney seanius at debian.org
Sun Dec 7 23:17:01 UTC 2008


On Sat, Dec 06, 2008 at 06:25:44PM -0600, Raphael Geissert wrote:
> [1]http://securityreason.com/achievement_securityalert/59
> [2]http://cvs.php.net/viewvc.cgi/php-src/sapi/apache/mod_php5.c?r1=
> http://cvs.php.net/viewvc.cgi/php-src/ext/standard/basic_functions.c?r1=1.725.

the first patch in [2] is for the apache 1.x sapi, which isn't currently
relevant for lenny/sid, though it is for etch which still has the 1.x sapi

it looks like the api between 1.x and 2.x is quite different, so do
you think it's safe to assume that only the second one is needed for
lenny/sid?  i looked in the CVS commit list around that date and didn't
see any other changes for this issue, at least.

-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : http://lists.alioth.debian.org/pipermail/pkg-php-maint/attachments/20081208/136b96c3/attachment.pgp 

More information about the pkg-php-maint mailing list