home-assistant
/
buildroot
mirror of https://github.com/home-assistant/buildroot.git
0
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
buildroot/package/libmodsecurity
History
Frank Vanbever f6f9b0938b package/libmodsecurity: security bump to version 3.0.9 
Fixes the following security issue:
- CVE-2023-28882: Trustwave ModSecurity 3.0.5 through 3.0.8 before 3.0.9 allows
  a denial of service (worker crash and unresponsiveness) because some inputs
  cause a segfault in the Transaction class for some configurations.

  https://security-tracker.debian.org/tracker/CVE-2023-28882

- Drop 0003-Revert-Fix-maxminddb-link-on-FreeBSD.patch, handling of libmaxminddb
  was fixed upstream in d2b700d
- Drop 0004-build-pcre.m4-fix-build-without-pcre.patch, handling of PCRE was
  fixed upstream in 791964a

Signed-off-by: Frank Vanbever <frank.vanbever@mind.be>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
(cherry picked from commit a1e0e7276c)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
 		2023-08-31 14:28:25 +02:00
..
0001-configure.ac-drop-usage-of-git-at-configure-time.patch
0002-modsecurity.pc.in-add-lstdc.patch
Config.in
libmodsecurity.hash package/libmodsecurity: security bump to version 3.0.9 2023-08-31 14:28:25 +02:00
libmodsecurity.mk package/libmodsecurity: security bump to version 3.0.9 2023-08-31 14:28:25 +02:00