NetCube-Systems-Austria/kumquat-buildroot
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
c6ee0ea47c
kumquat-buildroot/package/modsecurity2/Config.in
Fabrice Fontaine 42e34cf10f package/modsecurity2: security bump to version 2.9.7 
- Fix CVE-2023-24021: Incorrect handling of '\0' bytes in file uploads
  in ModSecurity before 2.9.7 may allow for Web Application Firewall
  bypasses and buffer overflows on the Web Application Firewall when
  executing rules that read the FILES_TMP_CONTENT collection.
- host-pkgconf is mandatory and used to find libxml2 since
  baa38ddbaf
- pcre2 is supported since:
  8fc0b519b7

https://github.com/SpiderLabs/ModSecurity/blob/v2.9.7/CHANGES

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
2023-02-05 15:24:39 +01:00

14 lines
487 B
Plaintext
Raw Blame History

config BR2_PACKAGE_MODSECURITY2
bool "modsecurity2"
depends on BR2_PACKAGE_APACHE
select BR2_PACKAGE_LIBXML2
select BR2_PACKAGE_PCRE2
help
ModSecurity is an open source, cross-platform web application
firewall (WAF) module. Known as the "Swiss Army Knife" of
WAFs, it enables web application defenders to gain visibility
into HTTP(S) traffic and provides a power rules language and
API to implement advanced protections.
https://github.com/SpiderLabs/ModSecurity
Reference in New Issue View Git Blame Copy Permalink