Bug#323433: mod-vhost-ldap: off-by-one error in minimum allowed uid/gid check

Fabian Fagerholm Tue, 16 Aug 2005 11:40:16 -0700

Package: mod-vhost-ldap
Version: 0.2.2-1
Severity: normal

I found what I think is an off-by-one error in mod-vhost-ldap: the 
suExec minimum allowed uid and gid are actually the maximum disallowed 
uid and gid.


The attached patch fixes this.

--- mod_vhost_ldap.c.orig       2005-08-16 21:14:56.441346768 +0300
+++ mod_vhost_ldap.c    2005-08-16 21:19:08.619009936 +0300
@@ -491,7 +491,7 @@
   uid = (uid_t)atoll(req->uid);
   gid = (gid_t)atoll(req->gid);
 
-  if ((uid <= MIN_UID)||(gid <= MIN_GID)) {
+  if ((uid < MIN_UID)||(gid < MIN_GID)) {
       return NULL;
   }

Bug#323433: mod-vhost-ldap: off-by-one error in minimum allowed uid/gid check

Reply via email to