suPHP is not vulnerable to that as PHP scripts are not ran directly from
apache and they're not considered CGI scripts.
suPHP is safe and you needn't worry.
On 05/04/2012 11:36 AM, Jani Ollikainen wrote:
Hi,
Is there need to worry that with suPHP?
http://eindbazen.net/2012/05/php-cgi-advisory-cve-2012-1823/
http://www.php-security.net/archives/11-Mitigation-for-CVE-2012-1823-CVE-2012-2311.html
Did try but didn't manage to get sources with these:
http://example.org/?-s
http://example.org/?%20-s
http://example.org/?+-s
So suPHP is safe or I'm missing something?
_______________________________________________
suPHP mailing list
[email protected]
https://lists.marsching.com/mailman/listinfo/suphp
_______________________________________________
suPHP mailing list
[email protected]
https://lists.marsching.com/mailman/listinfo/suphp
