Bugs fixes in "modsecurity-apache"
| Origin | Bug number | Title | Date fixed |
|---|---|---|---|
| CVE | CVE-2023-24021 | Incorrect handling of '\0' bytes in file uploads in ModSecurity before 2.9.7 may allow for Web Application Firewall bypasses and buffer over-reads on | 2023-09-14 |
| CVE | CVE-2022-48279 | In ModSecurity before 2.9.6 and 3.x before 3.0.8, HTTP multipart requests were incorrectly parsed and could bypass the Web Application Firewall. NOTE | 2023-09-14 |
| CVE | CVE-2021-42717 | ModSecurity 3.x through 3.0.5 mishandles excessively nested JSON objects. Crafted JSON objects with nesting tens-of-thousands deep could result in th | 2023-09-14 |
| CVE | CVE-2023-24021 | Incorrect handling of '\0' bytes in file uploads in ModSecurity before 2.9.7 may allow for Web Application Firewall bypasses and buffer over-reads on | 2023-09-14 |
| CVE | CVE-2022-48279 | In ModSecurity before 2.9.6 and 3.x before 3.0.8, HTTP multipart requests were incorrectly parsed and could bypass the Web Application Firewall. NOTE | 2023-09-14 |
| CVE | CVE-2021-42717 | ModSecurity 3.x through 3.0.5 mishandles excessively nested JSON objects. Crafted JSON objects with nesting tens-of-thousands deep could result in th | 2023-09-14 |
| Launchpad | 988819 | [SRU] wrong path to libxml2.so.2 in mod_security - ... | 2012-07-30 |
| Launchpad | 988819 | [SRU] wrong path to libxml2.so.2 in mod_security - ... | 2012-06-14 |
| Debian | 574376 | libapache-mod-security: seg fault first time using (goes away on reload) - Debian Bug report logs | 2012-01-23 |
| Debian | 645875 | modsecurity-apache: Please package mlogc - Debian Bug report logs | 2012-01-23 |
About
-
Send Feedback to @ubuntu_updates
