42e34cf10f
- Fix CVE-2023-24021: Incorrect handling of '\0' bytes in file uploads in ModSecurity before 2.9.7 may allow for Web Application Firewall bypasses and buffer overflows on the Web Application Firewall when executing rules that read the FILES_TMP_CONTENT collection. - host-pkgconf is mandatory and used to find libxml2 sincebaa38ddbaf- pcre2 is supported since:8fc0b519b7https://github.com/SpiderLabs/ModSecurity/blob/v2.9.7/CHANGES Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com> Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
28 lines
954 B
Makefile
28 lines
954 B
Makefile
################################################################################
|
|
#
|
|
# modsecurity2
|
|
#
|
|
################################################################################
|
|
|
|
MODSECURITY2_VERSION = 2.9.7
|
|
MODSECURITY2_SOURCE = modsecurity-$(MODSECURITY2_VERSION).tar.gz
|
|
MODSECURITY2_SITE = https://github.com/SpiderLabs/ModSecurity/releases/download/v$(MODSECURITY2_VERSION)
|
|
MODSECURITY2_LICENSE = Apache-2.0
|
|
MODSECURITY2_LICENSE_FILES = LICENSE
|
|
MODSECURITY2_CPE_ID_VENDOR = trustwave
|
|
MODSECURITY2_CPE_ID_PRODUCT = modsecurity
|
|
MODSECURITY2_INSTALL_STAGING = YES
|
|
MODSECURITY2_DEPENDENCIES = host-pkgconf apache libxml2 pcre2
|
|
|
|
MODSECURITY2_CONF_OPTS = \
|
|
--with-pcre2=$(STAGING_DIR)/usr/bin/pcre2-config \
|
|
--with-apr=$(STAGING_DIR)/usr/bin/apr-1-config \
|
|
--with-apu=$(STAGING_DIR)/usr/bin/apu-1-config \
|
|
--with-apxs=$(STAGING_DIR)/usr/bin/apxs \
|
|
--without-curl \
|
|
--without-lua \
|
|
--without-yajl \
|
|
--without-ssdeep
|
|
|
|
$(eval $(autotools-package))
|