Bug#944119: buster-pu: package modsecurity-crs/3.1.0-1
Control: tags -1 + confirmed
On Mon, 2019-11-04 at 16:41 +0100, Alberto Gonzalez Iniesta wrote:
> This [1] security bug was found in modsecurity-crs.
> After contacting the security team, they said a DSA was not necessary
> and that I should proceed through p-u.
>
> So here's the debdiff. Hope it's all OK.
-modsecurity-crs (3.1.0-1+deb10u1) buster; urgency=medium
-
- * Add upstream patch to fix php script upload rules.
- CVE-2019-13464 (Closes: #943773)
The diff appears to be reversed, but other than that, sure. :-)
Regards,
Adam
Reply to: