cpet/freebsd-ports
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
3050a38d73
freebsd-ports/www/mod_security
History
Pascal Christen ecca07542f www/mod_security: Update to 2.9.6 
ChangeLog: https://github.com/SpiderLabs/ModSecurity/releases/tag/v2.9.6

New features and security impacting issues

    Adjust parser activation rules in modsecurity.conf-recommended
    Multipart parsing fixes and new MULTIPART_PART_HEADERS collection

Bug fixes

 * Limit rsub null termination to where necessary
 * IIS: Update dependencies for next planned release
 * XML parser cleanup: NULL duplicate pointer
 * Properly cleanup XML parser contexts upon completion
 * Fix memory leak in streams
 * Fix: negative usec on log line when data type long is 32b
 * mlogc log-line parsing fails due to enhanced timestamp
 * Allow no-key, single-value JSON body
 * Set SecStatusEngine Off in modsecurity.conf-recommended
 * Fix memory leak that occurs on JSON parsing error
 * Multipart names/filenames may include single quote if double-quote enclosed
 * Add SecRequestBodyJsonDepthLimit to modsecurity.conf-recommended

PR:		266318
Reported by:	pascal.christen@hostpoint.ch
Reviewed by:	tuc03516@gmail.com
Approved by:	joneum@ (maintainer, timeout > 1 month)
2022-10-19 18:11:58 +02:00
..
files
distinfo www/mod_security: Update to 2.9.6 2022-10-19 18:11:58 +02:00
Makefile www/mod_security: Update to 2.9.6 2022-10-19 18:11:58 +02:00
pkg-descr
pkg-plist