CVE worthy? (sent to dev@ since it's mild and already discussed publically)
---------- Forwarded message ---------- From: <[email protected]> Date: Wed, Nov 12, 2014 at 9:52 AM Subject: [Bug 57204] New: LuaAuthzProvider mixes up parsed require arguments when used multiple times To: [email protected] https://issues.apache.org/bugzilla/show_bug.cgi?id=57204 Bug ID: 57204 Summary: LuaAuthzProvider mixes up parsed require arguments when used multiple times Product: Apache httpd-2 Version: 2.4.10 Hardware: PC OS: Linux Status: NEW Severity: normal Priority: P2 Component: mod_lua Assignee: [email protected] Reporter: [email protected] as reported in comments section of the manual anonymously, it looks like the lua-specific hash used to store the parameters gets mixed up if you define 1 provider but use it with multiple require arguments. original: http://httpd.apache.org/docs/trunk/mod/mod_lua.html#comment_3245 -- You are receiving this mail because: You are the assignee for the bug. --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected] -- Eric Covener [email protected]
