Bug#605391: Patch for CVE-2010-3436 breaks open_basedir

Ruben Puettmann Mon, 29 Nov 2010 07:18:16 -0800

Package: php5
Version: 5.3.3-4
Severity: normal


            hy,


the patch which was added cause CVE-2010-3436 breaks configurations. 
If you have set:

open_basedir=/srv/www/
 
it breaks. You must now set open_basedir=/srv/www without the ending /.

        
                Ruben


-- 
Ruben Puettmann
ru...@puettmann.net
http://www.puettmann.net

signature.asc
Description: Digital signature

Bug#605391: Patch for CVE-2010-3436 breaks open_basedir

Reply via email to