mod_security-2.6.8-6.el5 | Build Info

Information for build mod_security-2.6.8-6.el5

511769

Package Name

mod_security

Version

2.6.8

Release

6.el5

Epoch

Summary

Security module for the Apache HTTP Server

Description

ModSecurity is an open source intrusion detection and prevention engine for web applications. It operates embedded into the web server, acting as a powerful umbrella - shielding web applications from attacks.

Built by

athmane

State

complete

Volume

DEFAULT

Started

Fri, 18 Apr 2014 16:10:36 UTC

Completed

Fri, 18 Apr 2014 16:12:34 UTC

Task

build (el5-candidate, /mod_security:b964b09c4dc6b699a8e85230aa898009dff42f36)

Tags

dist-5E-epel

RPMs

src
	mod_security-2.6.8-6.el5.src.rpm (info) (download)
i386
	mlogc-2.6.8-6.el5.i386.rpm (info) (download)
	mod_security-2.6.8-6.el5.i386.rpm (info) (download)
	mod_security-debuginfo-2.6.8-6.el5.i386.rpm (info) (download)
ppc
	mlogc-2.6.8-6.el5.ppc.rpm (info) (download)
	mod_security-2.6.8-6.el5.ppc.rpm (info) (download)
	mod_security-debuginfo-2.6.8-6.el5.ppc.rpm (info) (download)
x86_64
	mlogc-2.6.8-6.el5.x86_64.rpm (info) (download)
	mod_security-2.6.8-6.el5.x86_64.rpm (info) (download)
	mod_security-debuginfo-2.6.8-6.el5.x86_64.rpm (info) (download)

Logs

ppc
	root.log
	state.log
	build.log
x86_64
	state.log
	build.log
	root.log
i386
	state.log
	root.log
	build.log

Changelog

* Fri Apr 18 2014 Athmane Madjoudj <athmane@fedoraproject.org> 2.6.8-6 - Fix m_strcasestr not defined in old mod_security branch issue (RHBZ #1089343) * Tue Apr 01 2014 Athmane Madjoudj <athmane@fedoraproject.org> 2.6.8-5 - Fix Chunked string case sensitive issue (CVE-2013-5705, RHBZ #1082904 #1082905 #1082906) * Tue May 28 2013 Athmane Madjoudj <athmane@fedoraproject.org> 2.6.8-4 - Fix NULL pointer dereference (DoS, crash) (CVE-2013-2765) (RHBZ #967615) * Wed Apr 03 2013 Athmane Madjoudj <athmane@fedoraproject.org> 2.6.8-3 - Backport security patch from 2.7.3 (RHBZ #947842) * Sat Nov 17 2012 Athmane Madjoudj <athmane@fedoraproject.org> 2.6.8-2 - Add some missing directives RHBZ #569360 - Backport the fix multipart/invalid part ruleset bypass issue (CVE-2012-4528) (RHBZ #867424, #867773, #867774) * Fri Sep 28 2012 Athmane Madjoudj <athmane@fedoraproject.org> 2.6.8-1 - Update to 2.6.8 * Sat Aug 25 2012 Athmane Madjoudj <athmane@fedoraproject.org> 2.6.7-1 - Update to 2.6.7 * Fri Jul 20 2012 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.6.6-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild * Fri Jun 22 2012 Peter Vrabec <pvrabec@redhat.com> - 2.6.6-2 - mlogc subpackage is not provided on RHEL * Thu Jun 21 2012 Peter Vrabec <pvrabec@redhat.com> - 2.6.6-1 - upgrade * Mon May 07 2012 Joe Orton <jorton@redhat.com> - 2.6.5-3 - packaging fixes * Fri Apr 27 2012 Peter Vrabec <pvrabec@redhat.com> 2.6.5-2 - fix license tag * Thu Apr 05 2012 Peter Vrabec <pvrabec@redhat.com> 2.6.5-1 - upgrade & move rules into new package mod_security_crs * Fri Feb 10 2012 Petr Pisar <ppisar@redhat.com> - 2.5.13-3 - Rebuild against PCRE 8.30 - Do not install non-existing files * Fri Jan 13 2012 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.5.13-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild * Tue May 03 2011 Michael Fleming <mfleming+rpm@thatfleminggent.com> - 2.5.13-1 - Newer upstream version * Wed Jun 30 2010 Michael Fleming <mfleming+rpm@thatfleminggent.com> - 2.5.12-3 - Fix log dirs and files ordering per bz#569360 * Thu Apr 29 2010 Michael Fleming <mfleming+rpm@thatfleminggent.com> - 2.5.12-2 - Fix SecDatadir and minimal config per bz #569360 * Sat Feb 13 2010 Michael Fleming <mfleming+rpm@thatfleminggent.com> - 2.5.12-1 - Update to latest upstream release - SECURITY: Fix potential rules bypass and denial of service (bz#563576) * Fri Nov 06 2009 Michael Fleming <mfleming+rpm@thatfleminggent.com> - 2.5.10-2 - Fix rules and Apache configuration (bz#533124) * Thu Oct 08 2009 Michael Fleming <mfleming+rpm@thatfleminggent.com> - 2.5.10-1 - Upgrade to 2.5.10 (with Core Rules v2) * Sat Jul 25 2009 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.5.9-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild * Thu Mar 12 2009 Michael Fleming <mfleming+rpm@thatfleminggent.com> 2.5.9-1 - Update to upstream release 2.5.9 - Fixes potential DoS' in multipart request and PDF XSS handling * Wed Feb 25 2009 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.5.7-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild * Mon Dec 29 2008 Michael Fleming <mfleming+rpm@enlartenment.com> 2.5.7-1 - Update to upstream 2.5.7 - Reinstate mlogc * Sat Aug 02 2008 Michael Fleming <mfleming+rpm@enlartenment.com> 2.5.6-1 - Update to upstream 2.5.6 - Remove references to mlogc, it no longer ships in the main tarball. - Link correctly vs. libxml2 and lua (bz# 445839) - Remove bogus LoadFile directives as they're no longer needed. * Sun Apr 13 2008 Michael Fleming <mfleming+rpm@enlartenment.com> 2.1.7-1 - Update to upstream 2.1.7 * Sat Feb 23 2008 Michael Fleming <mfleming+rpm@enlartenment.com> 2.1.6-1 - Update to upstream 2.1.6 (Extra features including SecUploadFileMode) * Tue Feb 19 2008 Fedora Release Engineering <rel-eng@fedoraproject.org> - 2.1.5-3 - Autorebuild for GCC 4.3 * Sun Jan 27 2008 Michael Fleming <mfleming+rpm@enlartenment.com> 2.1.5-2 - Update to 2.1.5 (bz#425986) - "blocking" -> "optional_rules" per tarball ;-) * Thu Sep 13 2007 Michael Fleming <mfleming+rpm@enlartenment.com> 2.1.3-1 - Update to 2.1.3 - Update License tag per guidelines. * Mon Sep 03 2007 Joe Orton <jorton@redhat.com> 2.1.1-3 - rebuild for fixed 32-bit APR (#254241) * Wed Aug 29 2007 Fedora Release Engineering <rel-eng at fedoraproject dot org> - 2.1.1-2 - Rebuild for selinux ppc32 issue. * Tue Jun 19 2007 Michael Fleming <mfleming+rpm@enlartenment.com> 2.1.1-1 - New upstream release - Drop ASCIIZ rule (fixed upstream) - Re-enable protocol violation/anomalies rules now that REQUEST_FILENAME is fixed upstream. * Sun Apr 01 2007 Michael Fleming <mfleming+rpm@enlartenment.com> 2.1.0-3 - Automagically configure correct library path for libxml2 library. - Add LoadModule for mod_unique_id as the logging wants this at runtime * Mon Mar 26 2007 Michael Fleming <mfleming+rpm@enlartenment.com> 2.1.0-2 - Fix DSO permissions (bz#233733) * Tue Mar 13 2007 Michael Fleming <mfleming+rpm@enlartenment.com> 2.1.0-1 - New major release - 2.1.0 - Fix CVE-2007-1359 with a local rule courtesy of Ivan Ristic - Addition of core ruleset - (Build)Requires libxml2 and pcre added. * Sun Sep 03 2006 Michael Fleming <mfleming+rpm@enlartenment.com> 1.9.4-2 - Rebuild - Fix minor longstanding braino in included sample configuration (bz #203972) * Mon May 15 2006 Michael Fleming <mfleming+rpm@enlartenment.com> 1.9.4-1 - New upstream release * Tue Apr 11 2006 Michael Fleming <mfleming+rpm@enlartenment.com> 1.9.3-1 - New upstream release - Trivial spec tweaks * Wed Mar 01 2006 Michael Fleming <mfleming+rpm@enlartenment.com> 1.9.2-3 - Bump for FC5 * Fri Feb 10 2006 Michael Fleming <mfleming+rpm@enlartenment.com> 1.9.2-2 - Bump for newer gcc/glibc * Wed Jan 18 2006 Michael Fleming <mfleming+rpm@enlartenment.com> 1.9.2-1 - New upstream release * Fri Dec 16 2005 Michael Fleming <mfleming+rpm@enlartenment.com> 1.9.1-2 - Bump for new httpd * Thu Dec 01 2005 Michael Fleming <mfleming+rpm@enlartenment.com> 1.9.1-1 - New release 1.9.1 * Wed Nov 09 2005 Michael Fleming <mfleming+rpm@enlartenment.com> 1.9-1 - New stable upstream release 1.9 * Sat Jul 09 2005 Michael Fleming <mfleming+rpm@enlartenment.com> 1.8.7-4 - Add Requires: httpd-mmn to get the appropriate "module magic" version (thanks Ville Skytta) - Disabled an overly-agressive rule or two.. * Sat Jul 09 2005 Michael Fleming <mfleming+rpm@enlartenment.com> 1.8.7-3 - Correct Buildroot - Some sensible and safe rules for common apps in mod_security.conf * Thu May 19 2005 Michael Fleming <mfleming+rpm@enlartenment.com> 1.8.7-2 - Don't strip the module (so we can get a useful debuginfo package) * Thu May 19 2005 Michael Fleming <mfleming+rpm@enlartenment.com> 1.8.7-1 - Initial spin for Extras