15 matches found
Mageia: Security Advisory (MGASA-2013-0179)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2013:1406-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE Security Update : apache2-mod_security2 (openSUSE-SU-2013:1331-1)
complete overhaul of this package, with update to 2.7.5. - ruleset update to 2.2.8-0-g0f07cbb. - new configuration framework private to modsecurity2: /etc/apache2/conf.d/modsecurity2.conf loads /usr/share/apache2-modsecurity2/rules/modsecuritycrs1 0setup.conf, then...
SuSE 11.3 Security Update : apache2-mod_security2 (SAT Patch Number 8149)
This update of modsecurity2 fixed a NULL pointer dereference crash CVE-2013-2765 and a memory issue double free. bnc822664 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 11 update information. The text itself is...
CVE-2013-2765
The ModSecurity module before 2.7.4 for the Apache HTTP Server allows remote attackers to cause a denial of service NULL pointer dereference, process crash, and disk consumption via a POST request with a large body and a crafted Content-Type header...
CVE-2013-2765
CVE-2013-2765 affects the ModSecurity module for the Apache HTTP Server (before 2.7.4). The vulnerability allows remote attackers to cause a denial of service via a POST request with a large body and a crafted Content-Type header, resulting in a NULL pointer dereference, process crash, and disk c...
Fedora 18 : mod_security-2.7.3-2.fc18 (2013-9519)
Fix NULL pointer dereference DoS, crash CVE-2013-2765 and a possible memory leak. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without...
Fedora 19 : mod_security-2.7.3-2.fc19 (2013-9583)
Fix NULL pointer dereference DoS, crash CVE-2013-2765 and a possible memory leak. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without...
Mandriva Linux Security Advisory : apache-mod_security (MDVSA-2013:187)
Updated apache-modsecurity packages fix security vulnerability : When ModSecurity receives a request body with a size bigger than the value set by the SecRequestBodyInMemoryLimit and with a Content-Type that has no request body processor mapped to it, ModSecurity will systematically crash on ever...
apache-mod_security new security issue CVE-2013-2765
Updated apache-modsecurity packages fix security vulnerability: When ModSecurity receives a request body with a size bigger than the value set by the "SecRequestBodyInMemoryLimit" and with a "Content-Type" that has no request body processor mapped to it, ModSecurity will systematically crash on...
MGASA-2013-0179 apache-mod_security new security issue CVE-2013-2765
Updated apache-modsecurity packages fix security vulnerability: When ModSecurity receives a request body with a size bigger than the value set by the "SecRequestBodyInMemoryLimit" and with a "Content-Type" that has no request body processor mapped to it, ModSecurity will systematically crash on...
Fedora Update for mod_security FEDORA-2013-9518
Check for the Version of modsecurity OpenVAS Vulnerability Test Fedora Update for modsecurity FEDORA-2013-9518 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it unde...
Fedora Update for mod_security FEDORA-2013-9519
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY][CVE-2013-2765][ModSecurity] Remote Null Pointer Dereference
CVE Number: CVE-2013-2765 / ModSecurity Remote Null Pointer Dereference When ModSecurity receives a request body with a size bigger than the value set by the "SecRequestBodyInMemoryLimit" and with a "Content-Type" that has no request body processor mapped to it, ModSecurity will systematically...
ModSecurity 空指针间接引用远程拒绝服务漏洞(CVE-2013-2765)
BUGTRAQ ID: 60182 CVECAN ID: CVE-2013-2765 ModSecurity 2.7.4之前版本存在拒绝服务漏洞,攻击者可利用此漏洞使Apache Web服务器崩溃。此漏洞源于"forceRequestBodyVariable"操作内的处理错误,通过特制的HTTP请求可造成空指针间接引用。 0 modsecurity 2.x 厂商补丁: modsecurity ----------- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://sourceforge.net/projects/mod-security/...