Hide Forgot
From Bugzilla Helper: User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.7.8) Gecko/20050512 Red Hat/1.7.8-1.1.3.1 Description of problem: The patch 'httpd-2.0.46-rediruser.patch' is missing a ',' after the REDIRECT_REMOTE_USER string, which the patch adds to suexec.c, resulting in a new entry in the save_enf_lst, "REDIRECT_REMOTE_USER=REDIRECT_STATUS=". This breaks our setup, using php as cgi, which relies on the REDIRECT_STATUS variable to be correctly setup. Version-Release number of selected component (if applicable): httpd-2.0.46-46 How reproducible: Always Steps to Reproduce: 1. install httpd 2.0.46-46 2. configure apache to start php as cgi 3. php bails out because it can't find the redirect_status variable. It can easily be shown using 'strings' on /usr/sbin/suexec. The correct version shows seperate entries for REDIRECT_REMOTE_USER and REDIRECT_STATUS. The faulty version of suexec will show a large 'REDIRECT_REMOTE_USER=REDIRECT_STATUS=' string. Actual Results: php won't run as cgi, because of the missing REDIRECT_STATUS variable Expected Results: REDIRECT_STATUS should be included in the environment Additional info: This should be fixed soon, as it probably breaks a lot of setups, by using a flawed patch.
Thanks for the report and analysis, and apologies for the regression.
An advisory has been issued which should help the problem described in this bug report. This report is therefore being closed with a resolution of ERRATA. For more information on the solution and/or where to find the updated files, please follow the link below. You may reopen this bug report if the solution does not work for you. http://rhn.redhat.com/errata/RHSA-2005-582.html