Fedora 38: FEDORA-2024-698e541c52 Moderate: libmodsecurity WAF Bypass
fedora
February 20, 2024
Update to 3.0.12 Security fix for CVE-2024-1019
Summary
Libmodsecurity is one component of the ModSecurity v3 project.
The library codebase serves as an interface to ModSecurity Connectors
taking in web traffic and applying traditional ModSecurity processing.
In general, it provides the capability to load/interpret rules written
in the ModSecurity SecRules format and apply them to HTTP content provided
by your application via Connectors.
Update Information:
Update to 3.0.12 Security fix for CVE-2024-1019
Topics Covered
Change Log
* Sun Feb 11 2024 Mikel Olasagasti Uranga
References
[ 1 ] Bug #2262018 - CVE-2024-1019 libmodsecurity: WAF bypass for path-based payloads [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2262018
Update Instructions
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-698e541c52' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Name: libmodsecurity
Product: Fedora 38
Version: 3.0.12
Release: 1.fc38
Summary: A library that loads/interprets rules written in the ModSecurity SecRules
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!