-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2010-1903 2010-02-16 10:47:05 --------------------------------------------------------------------------------
Name : mod_security Product : Fedora 12 Version : 2.5.12 Release : 1.fc12 URL : http://www.modsecurity.org/ Summary : Security module for the Apache HTTP Server Description : ModSecurity is an open source intrusion detection and prevention engine for web applications. It operates embedded into the web server, acting as a powerful umbrella - shielding web applications from attacks. -------------------------------------------------------------------------------- Update Information: SECURITY: This release fixes several issues including potential rule bypass and Denial of Service attacks. -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 13 2010 Michael Fleming <[email protected]> - 2.5.12-1 - Update to latest upstream release - SECURITY: Fix potential rules bypass and denial of service (bz#563576) * Fri Nov 6 2009 Michael Fleming <[email protected]> - 2.5.10-2 - Fix rules and Apache configuration (bz#533124) * Thu Oct 8 2009 Michael Fleming <[email protected]> - 2.5.10-1 - Upgrade to 2.5.10 (with Core Rules v2) -------------------------------------------------------------------------------- References: [ 1 ] Bug #563455 - ModSecurity: Multiple security fixes in version v2.5.12 https://bugzilla.redhat.com/show_bug.cgi?id=563455 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update mod_security' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at http://fedoraproject.org/keys -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list [email protected] https://admin.fedoraproject.org/mailman/listinfo/package-announce
