Wiki » Support/Advisories/MGASA-2012-0371

From Mageia wiki

Jump to: navigation, search

MGASA-2012-0371

Date:	December 31st, 2012
Affected releases:	2

Description:
Updated apache-mod_security packages fix security vulnerability:

ModSecurity before 2.7.0 is vulnerable to multipart/invalid part ruleset
bypass (CVE-2012-4528).

Updated Packages:
apache-mod_security-2.6.3-3.3.mga2
mlogc-2.6.3-3.3.mga2

References:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4528
http://lists.fedoraproject.org/pipermail/package-announce/2012-December/093619.html
https://bugs.mageia.org/show_bug.cgi?id=8292

Retrieved from "https://wiki.mageia.org/mw-en/index.php?title=Support/Advisories/MGASA-2012-0371&oldid=13257"