| Patch | Description | Author | Forwarded | Bugs | Origin | Last update |
|---|---|---|---|---|---|---|
| debian_log_dir.patch | Set correct path to log file =================================================================== |
Alberto Gonzalez Iniesta <agi@inittab.org> | no | |||
| improve_defaults.patch | =================================================================== | no | ||||
| 970833_fix.patch | [PATCH] Fix curl callback function | Felipe Zimmerle <felipe@zimmerle.org> | no | 2018-12-14 | ||
| json_depth_limit.patch | This patch fixes CVE-2021-42717 ModSecurity has a DoS Vulnerability in JSON Parsing. The bug has descibed in CVE-2021-42717. This patch fixes it. |
Ervin Hegedus <airween@gmail.com> | no | |||
| multipart_part_headers.patch | CVE-2022-48279: Multipart parsing fixes and new MULTIPART_PART_HEADERS collection. ModSecurity creates from now a new variable: MULTIPART_PART_HEADERS This needs for some special CoreRuleSet rules, which has allocated CVE's. |
Ervin Hegedus <airween@gmail.com> | no | https://github.com/SpiderLabs/ModSecurity/pull/2797 | ||
| CVE-2023-24021_FILES_TMP_CONTENT.patch | [PATCH] Fix: FILES_TMP_CONTENT may sometimes lack complete content | Martin Vierula <martin.vierula@trustwave.com> | no | debian | https://github.com/SpiderLabs/ModSecurity/pull/2857 | 2023-01-04 |