Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

Fedora 41: 2025-719f4a7313 moderate: mod_security DoS vulnerability

fedora
Calendar Grey June 7, 2025
Dist Fedora Esm H88
The release of Fedora 41 includes an updated mod_security version 2.9.9, which mitigates service disruption threats and implements essential bug corrections.

This update includes mod_security version 2.9.9 which addresses CVE-2025-47947 and includes various bug fixes

Summary

ModSecurity is an open source intrusion detection and prevention engine

for web applications. It operates embedded into the web server, acting

as a powerful umbrella - shielding web applications from attacks.

Update Information:

This update includes mod_security version 2.9.9 which addresses CVE-2025-47947 and includes various bug fixes. See https://github.com/owasp-modsecurity/ModSecurity/releases/tag/v2.9.9 for more information on the changes in this release.

Topics%20covered

Topics Covered

security advisory software update Fedora bug fix DoS attack mod_security

Change Log

* Thu May 29 2025 Joe Orton <jorton@redhat.com> - 2.9.9-1 - update to 2.9.9 (#2367908) - add bconds for yajl, ssdeep dependencies * Wed May 21 2025 Joe Orton <jorton@redhat.com> - 2.9.8-3 - updated warning fixes, synced with upstream PR 3372 * Fri May 9 2025 Joe Orton <jorton@redhat.com> - 2.9.8-2 - fix variety of compiler warnings * Fri May 9 2025 Joe Orton <jorton@redhat.com> - 2.9.8-1 - rebase to 2.9.8 * Fri May 9 2025 Joe Orton <jorton@redhat.com> - 2.9.7-10 - fix issues with piped logging (by Tomas Korbar, upstream #2823) * Sat Feb 1 2025 Björn Esser <besser82@fedoraproject.org> - 2.9.7-9 - Add explicit BR: libxcrypt-devel * Fri Jan 17 2025 Fedora Release Engineering <releng@fedoraproject.org> - 2.9.7-8 - Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild

References


[ 1 ] Bug #2367907 - CVE-2025-47947 mod_security: ModSecurity Has Possible DoS Vulnerability [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2367907

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-719f4a7313' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Name: mod_security
Product: Fedora 41
Version: 2.9.9
Release: 1.fc41
URL: https://modsecurity.org/
Summary: Security module for the Apache HTTP Server

Topics%20covered

Topics Covered

security advisory software update Fedora bug fix DoS attack mod_security

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here