Bug#618857: apache2-mpm-itk: if you do not assign a user ID, the default one from Apache is _NOT_ used.

l 20/03/2011, a las 13:37, Steinar H. Gunderson escribió: tags 618857 + patch thanks On Sat, Mar 19, 2011 at 01:05:43AM +0100, Samuel Montosa wrote: As far I tested, versions prior to 'squeeze', apache/itk behavior was as claimed at http://mpm-itk.sesse.net/ " AssignUserID: Tak

Bug#618857: apache2-mpm-itk: if you do not assign a user ID, the default one from Apache is _NOT_ used.

Package: apache2-mpm-itk Version: 2.2.16-6 Severity: critical Tags: security Justification: root security hole As far I tested, versions prior to 'squeeze', apache/itk behavior was as claimed at http://mpm-itk.sesse.net/ " AssignUserID: Takes two parameters, uid and gid (or really, user name and