[SECURITY] Fedora EPEL 4 Update: mod_security-2.5.12-2.el4
updates at fedoraproject.org
updates at fedoraproject.org
Wed Mar 3 00:17:24 UTC 2010
--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2010-2326
2010-03-02 23:41:53
--------------------------------------------------------------------------------
Name : mod_security
Product : Fedora EPEL 4
Version : 2.5.12
Release : 2.el4
URL : http://www.modsecurity.org/
Summary : Security module for the Apache HTTP Server
Description :
ModSecurity is an open source intrusion detection and prevention engine
for web applications. It operates embedded into the web server, acting
as a powerful umbrella - shielding web applications from attacks.
--------------------------------------------------------------------------------
Update Information:
SECURITY: This release fixes several issues including potential rule bypass
and Denial of Service attacks. This also updates the Core Rules to 2.x
with many enhancements. Administrators however should upgrade carefully in
production environments to ensure ongoing application availability
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #563455 - ModSecurity: Multiple security fixes in version v2.5.12
https://bugzilla.redhat.com/show_bug.cgi?id=563455
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update mod_security' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
More information about the epel-package-announce
mailing list