Mandriva Update For Apache-mod_security MDVSA-2010:050 (apache-mod_security) Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

This release fixes several important issues to help prevent a detection bypass and denial of service attacks against ModSecurity. Quite a few small but notable bugs were fixed. The latest Core Ruleset (2.0.5) is included. This update provides mod_security 2.5.12, which is not vulnerable to these issues.

Affected

apache-mod_security on Mandriva Enterprise Server 5, Mandriva Enterprise Server 5/X86_64

Severity

Classification

CVSS Base Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Mandrake Security Advisory MDVSA-2009:164 (jasper)
Mandrake Security Advisory MDVSA-2009:062 (shadow-utils)
Mandrake Security Advisory MDVSA-2009:150 (libtiff)
Mandrake Security Advisory MDVSA-2009:075 (firefox)
Mandrake Security Advisory MDVSA-2009:021 (php)

Mandriva Update for apache-mod_security MDVSA-2010:050 (apache-mod_security)

Take action and discover your vulnerabilities