Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
debianDebianDEBIAN:DSA-4765-1:959D3
HistorySep 18, 2020 - 5:24 p.m.

[SECURITY] [DSA 4765-1] modsecurity security update

2020-09-1817:24:24
lists.debian.org
32

0.017 Low

EPSS

Percentile

87.7%

JSON

Debian Security Advisory DSA-4765-1 [email protected]
https://www.debian.org/security/ Moritz Muehlenhoff
September 18, 2020 https://www.debian.org/security/faq

Package : modsecurity
CVE ID : CVE-2020-15598

Ervin Hegedues discovered that ModSecurity v3 enabled global regular
expression matching which could result in denial of service. For
additional information please refer to
https://coreruleset.org/20200914/cve-2020-15598/

For the stable distribution (buster), this problem has been fixed in
version 3.0.3-1+deb10u2.

We recommend that you upgrade your modsecurity packages.

For the detailed security status of modsecurity please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/modsecurity

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: [email protected]

OSVersionArchitecturePackageVersionFilename
Debian10mips64ellibmodsecurity3-dbgsym< 3.0.3-1+deb10u2libmodsecurity3-dbgsym_3.0.3-1+deb10u2_mips64el.deb
Debian10mipslibmodsecurity3-dbgsym< 3.0.3-1+deb10u2libmodsecurity3-dbgsym_3.0.3-1+deb10u2_mips.deb
Debian10mips64ellibmodsecurity3< 3.0.3-1+deb10u2libmodsecurity3_3.0.3-1+deb10u2_mips64el.deb
Debian10armhflibmodsecurity-dev< 3.0.3-1+deb10u2libmodsecurity-dev_3.0.3-1+deb10u2_armhf.deb
Debian10i386libmodsecurity-dev< 3.0.3-1+deb10u2libmodsecurity-dev_3.0.3-1+deb10u2_i386.deb
Debian10arm64libmodsecurity3< 3.0.3-1+deb10u2libmodsecurity3_3.0.3-1+deb10u2_arm64.deb
Debian10mipsellibmodsecurity3-dbgsym< 3.0.3-1+deb10u2libmodsecurity3-dbgsym_3.0.3-1+deb10u2_mipsel.deb
Debian10s390xlibmodsecurity-dev< 3.0.3-1+deb10u2libmodsecurity-dev_3.0.3-1+deb10u2_s390x.deb
Debian10i386libmodsecurity3< 3.0.3-1+deb10u2libmodsecurity3_3.0.3-1+deb10u2_i386.deb
Debian10ppc64ellibmodsecurity-dev< 3.0.3-1+deb10u2libmodsecurity-dev_3.0.3-1+deb10u2_ppc64el.deb
Rows per page:
1-10 of 311

Related

osv 3
cvelist 1
prion 1
nessus 3
cve 1
openvas 3
debiancve 1
zdt 1
ubuntucve 1
osv
osv
modsecurity - security update
2020-09-18 00:00:00
BIT-modsecurity-2020-15598
2024-03-06 10:57:17
BIT-modsecurity2-2020-15598
2024-03-06 10:57:22
cvelist
cvelist
CVE-2020-15598
2020-10-06 13:38:50
prion
prion
Default configuration
2020-10-06 14:15:00
nessus
nessus
Debian DSA-4765-1 : modsecurity - security update
2020-09-21 00:00:00
openSUSE 15 Security Update : modsecurity (openSUSE-SU-2023:0257-1)
2023-09-26 00:00:00
openSUSE 15 Security Update : modsecurity (openSUSE-SU-2023:0269-1)
2023-09-27 00:00:00
cve
cve
CVE-2020-15598
2020-10-06 14:15:00
openvas
openvas
Debian: Security Advisory (DSA-4765-1)
2020-09-20 00:00:00
openSUSE: Security Advisory for modsecurity (openSUSE-SU-2023:0269-1)
2024-03-04 00:00:00
openSUSE: Security Advisory for modsecurity (openSUSE-SU-2023:0257-1)
2024-03-04 00:00:00
debiancve
debiancve
CVE-2020-15598
2020-10-06 14:15:00
zdt
zdt
ModSecurity 3.0.x Denial Of Service Vulnerability
2020-09-16 00:00:00
ubuntucve
ubuntucve
CVE-2020-15598
2020-10-06 00:00:00

0.017 Low

EPSS

Percentile

87.7%

JSON
Related for DEBIAN:DSA-4765-1:959D3
osv3cvelist1prion1nessus3cve1openvas3debiancve1zdt1ubuntucve1