Isaac

Asked: 2012-05-08 14:14:22 +0800 CST2012-05-08 14:14:22 +0800 CST 2012-05-08 14:14:22 +0800 CST

Does PHP-CGI security issue (CVE-2012-1823) affect PHP running as regular users with mod_fcgid?

772

Does this PHP-CGI security issue (CVE-2012-1823) affect PHP when it's running under individual regular-user accounts with mod_fcgid?

The wrapper .fcgi script I've been using is:

#!/bin/bash
PHPRC=$PWD/../etc/php5
export PHPRC
umask 022
export PHP_FCGI_CHILDREN
SCRIPT_FILENAME=$PATH_TRANSLATED
export SCRIPT_FILENAME
exec /usr/bin/php-cgi

1 Answers

Voted

Best Answer

David
2012-05-08T14:27:39+08:002012-05-08T14:27:39+08:00
According to the guys at LWN, it only affects CGI, not FCGI.
2

Web Analytics Made Easy - Statcounter