Site Navigation:
security mod_security-2.6.8-2.el5 security update
Status:stable
Release: Fedora EPEL 5
Update ID: FEDORA-EPEL-2012-13496
Builds: mod_security-2.6.8-2.el5 (logs)
Pushed: True
Date Submitted: 2012-11-17 09:42:36
Date Released: 2012-11-17 19:34:45
Submitter: athmane
Karma: 1
Details
  • Add some missing directives RHBZ #569360
  • Backport the fix multipart/invalid part ruleset bypass issue from 2.7 branch (CVE-2012-4528) (RHBZ #867424, #867773, #867774)
Bugs Fixed
569360 - The default configuration in v2.5.12 is missing important settings
867424 - CVE-2012-4528: mod_security: multipart/invalid part ruleset bypass
867773 - mod_security: multipart/invalid part ruleset bypass [fedora-all]
867774 - mod_security: multipart/invalid part ruleset bypass [epel-all]
Feedback
bodhi - 2012-11-17 09:43:16
This update has been submitted for testing by athmane.
bodhi - 2012-11-17 18:59:17
This update is currently being pushed to the Fedora EPEL 5 testing updates repository.
bodhi - 2012-11-17 19:51:37
This update has been pushed to testing
nerijus - 2012-11-21 01:15:23
bodhi - 2012-12-01 22:07:10
This update has reached 14 days in testing and can be pushed to stable now if the maintainer wishes
bodhi - 2012-12-03 00:04:52
This update has been submitted for stable by athmane.
bodhi - 2012-12-03 18:51:47
This update is currently being pushed to the Fedora EPEL 5 stable updates repository.
bodhi - 2012-12-03 20:36:09
This update has been pushed to stable

Add a comment

Tip: Login to impact how quickly this update gets pushed or unpushed.
obfuscated letters