apache2-mod_security2

pool/apache2-mod_security2

SHA256

Fork 1

Commit Graph

Author	SHA256	Message	Date
Petr Gajdos	76aae411f6	Accepting request 1239893 from home:pgajdos - package cleanup, coordinated with owasp-modsecurity-crs cleanup - version update to 2.9.8 (changed upstream: Trustwave -> OWASP) * Fixed ap_log_perror() usage * Memory leaks + enhanced logging * CI improvement: First check syntax & always display error/audit logs * Fixed assert() usage * Removed useless code * feat: Check if the MP header contains invalid character * Use standard httpd logging format in error log * fix msc_regexec() != PCRE_ERROR_NOMATCH strict check * Move xmlFree() call to the right place * Add collection size in log in case of writing error * Passing address of lock instead of lock in acquire_global_lock() * Invalid pointer access in case rule id == NOT_SET_P * Show error.log after httpd start in CI * chore: add pull request template * chore: add gitignore file * Possible double free * Set 'jit' variable's initial value * Missing null byte + optimization * fix: remove usage of insecure tmpname * docs: update copyright * Enhanced logging [Issue #3107] * Check for null pointer dereference (almost) everywhere * Fix possible segfault in collection_unpack * fix: Replace obsolete macros * chore: update bug-report-for-version-2-x.md * feat: Add more steps: install built module and restart the server * Add new flag: --without-lua * Initial release of CI worklow OBS-URL: https://build.opensuse.org/request/show/1239893 OBS-URL: https://build.opensuse.org/package/show/Apache:Modules/apache2-mod_security2?expand=0&rev=97	2025-01-27 09:41:24 +00:00
Danilo Spinella	2a11cb654d	Accepting request 1101664 from Apache:Modules revert to 87 OBS-URL: https://build.opensuse.org/request/show/1101664 OBS-URL: https://build.opensuse.org/package/show/Apache:Modules/apache2-mod_security2?expand=0&rev=89	2023-08-01 09:41:33 +00:00
Danilo Spinella	59a8a1a4af	Accepting request 1099113 from home:dirkmueller:Factory - reenable tests - switch to SpiderLabs owasp 3.2.0 release (final release, upstream archived the project, please switch to coreruleset instead): * Various security fixes, see * https://raw.githubusercontent.com/SpiderLabs/owasp-modsecurity-crs/v3.2.0/CHANGES - introduce supply chain security by adding gpg signature and keyring OBS-URL: https://build.opensuse.org/request/show/1099113 OBS-URL: https://build.opensuse.org/package/show/Apache:Modules/apache2-mod_security2?expand=0&rev=88	2023-08-01 09:14:57 +00:00

Author

SHA256

Message

Date

Petr Gajdos

76aae411f6

Accepting request 1239893 from home:pgajdos

- package cleanup, coordinated with owasp-modsecurity-crs cleanup
- version update to 2.9.8 (changed upstream: Trustwave -> OWASP)
  * Fixed ap_log_perror() usage
  * Memory leaks + enhanced logging
  * CI improvement: First check syntax & always display error/audit logs
  * Fixed assert() usage
  * Removed useless code
  * feat: Check if the MP header contains invalid character
  * Use standard httpd logging format in error log
  * fix msc_regexec() != PCRE_ERROR_NOMATCH strict check
  * Move xmlFree() call to the right place
  * Add collection size in log in case of writing error
  * Passing address of lock instead of lock in acquire_global_lock()
  * Invalid pointer access in case rule id == NOT_SET_P
  * Show error.log after httpd start in CI
  * chore: add pull request template
  * chore: add gitignore file
  * Possible double free
  * Set 'jit' variable's initial value
  * Missing null byte + optimization
  * fix: remove usage of insecure tmpname
  * docs: update copyright
  * Enhanced logging [Issue #3107]
  * Check for null pointer dereference (almost) everywhere
  * Fix possible segfault in collection_unpack
  * fix: Replace obsolete macros
  * chore: update bug-report-for-version-2-x.md
  * feat: Add more steps: install built module and restart the server
  * Add new flag: --without-lua
  * Initial release of CI worklow

OBS-URL: https://build.opensuse.org/request/show/1239893
OBS-URL: https://build.opensuse.org/package/show/Apache:Modules/apache2-mod_security2?expand=0&rev=97

2025-01-27 09:41:24 +00:00

Danilo Spinella

2a11cb654d

Accepting request 1101664 from Apache:Modules

revert to 87

OBS-URL: https://build.opensuse.org/request/show/1101664
OBS-URL: https://build.opensuse.org/package/show/Apache:Modules/apache2-mod_security2?expand=0&rev=89

2023-08-01 09:41:33 +00:00

Danilo Spinella

59a8a1a4af

Accepting request 1099113 from home:dirkmueller:Factory

- reenable tests
- switch to SpiderLabs owasp 3.2.0 release (final release, upstream
  archived the project, please switch to coreruleset instead):
  * Various security fixes, see 
  * https://raw.githubusercontent.com/SpiderLabs/owasp-modsecurity-crs/v3.2.0/CHANGES
- introduce supply chain security by adding gpg signature and keyring

OBS-URL: https://build.opensuse.org/request/show/1099113
OBS-URL: https://build.opensuse.org/package/show/Apache:Modules/apache2-mod_security2?expand=0&rev=88

2023-08-01 09:14:57 +00:00

3 Commits