From Bugzilla Helper:
User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.7.8) Gecko/20050512 Red Hat/1.7.8-184.108.40.206
Description of problem:
The patch 'httpd-2.0.46-rediruser.patch' is missing a ',' after the REDIRECT_REMOTE_USER string, which the patch adds to suexec.c, resulting in a new entry in the save_enf_lst, "REDIRECT_REMOTE_USER=REDIRECT_STATUS=". This breaks our setup, using php as cgi, which relies on the REDIRECT_STATUS variable to be correctly setup.
Version-Release number of selected component (if applicable):
Steps to Reproduce:
1. install httpd 2.0.46-46
2. configure apache to start php as cgi
3. php bails out because it can't find the redirect_status variable.
It can easily be shown using 'strings' on /usr/sbin/suexec. The correct version shows seperate entries for REDIRECT_REMOTE_USER and REDIRECT_STATUS. The faulty version of suexec will show a large 'REDIRECT_REMOTE_USER=REDIRECT_STATUS=' string.
Actual Results: php won't run as cgi, because of the missing REDIRECT_STATUS variable
Expected Results: REDIRECT_STATUS should be included in the environment
This should be fixed soon, as it probably breaks a lot of setups, by using a flawed patch.
Thanks for the report and analysis, and apologies for the regression.
An advisory has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
on the solution and/or where to find the updated files,
please follow the link below. You may reopen this bug report
if the solution does not work for you.