Debian Security Update DSA-5023 modsecurity-apache - security update

Thread starter LinuxBot
Start date Dec 19, 2021

LinuxBot

Member

Dec 19, 2021

It was discovered that modsecurity-apache, an Apache module to tighten the Web application security, does not properly handles excessively nested JSON objects, which could result in denial of service. The update introduces a new SecRequestBodyJsonDepthLimit option to limit the maximum request body JSON parsing depth which ModSecurity will accept (defaults to 10000).

Continue reading...

You must log in or register to reply here.

Facebook X (Twitter) Reddit Pinterest Tumblr WhatsApp Email Link

Members online

Total: 953 (members: 7, guests: 946)

Latest posts

Not exactly security related But!
- Latest: blunix
- 2 minutes ago
Linux Security
A
Brightness Issue
- Latest: AprilF00lz
- 11 minutes ago
General Linux Questions
M
firefox "server not found" problem
- Latest: magniv
- 51 minutes ago
Getting Started
Linux journey from scratch
- Latest: dos2unix
- 56 minutes ago
Member Introductions
Corel Video Editor
- Latest: Terminal Velocity
- Today at 12:30 PM
General Linux Questions

Top