osdir.com


[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Bug 33207] Results of my suexec.c code audit


https://bz.apache.org/bugzilla/show_bug.cgi?id=33207

Joe Orton <jorton@xxxxxxxxxx> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
             Status|REOPENED                    |NEEDINFO

--- Comment #3 from Joe Orton <jorton@xxxxxxxxxx> ---
Where is the dependency on sizeof(int) exactly, and what's the logging problem
after execve failure?

I am not sure that setting environ[x] to an unwritable string literal is
actually safe (environ is declared as char **), I changed it to a simpler
strdup in r1846253.

I don't see a variable "prog" in the current code.

-- 
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@xxxxxxxxxxxxxxxx
For additional commands, e-mail: bugs-help@xxxxxxxxxxxxxxxx