[Git][security-tracker-team/security-tracker][master] Add additional infos for modsecurity-apache.
Tobias Frost (@tobi)
tobi at debian.org
Fri Jan 20 15:27:33 GMT 2023
Tobias Frost pushed to branch master at Debian Security Tracker / security-tracker
Commits:
78dc280a by Tobias Frost at 2023-01-20T16:27:15+01:00
Add additional infos for modsecurity-apache.
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=====================================
data/dla-needed.txt
=====================================
@@ -152,6 +152,9 @@ modsecurity-apache (Tobias Frost)
NOTE: 20230120: From IRC:
NOTE: 20230120: <tobi>: a backport in modsecurity(-apache) is needed as well [...]
NOTE: 20230120: this is in reference to fixing the CVE is in modsecurity-crs.
+ NOTE: 20230120: Requested two CVEs for modecurity-apache (tobi)
+ NOTE: 20230120: 1) for https://github.com/SpiderLabs/ModSecurity/pull/2857 (WAF bypass vulnerabilty)
+ NOTE: 20230120: 2) for https://github.com/SpiderLabs/ModSecurity/pull/2797 (the counterpart of CVE 2022-39956)
--
modsecurity-crs (Tobias Frost)
NOTE: 20221006: Programming language: Other.
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/78dc280a2340ba47b1bfd90018c44b3b72fcd7af
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/78dc280a2340ba47b1bfd90018c44b3b72fcd7af
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230120/957e24d7/attachment.htm>
More information about the debian-security-tracker-commits
mailing list