Your message dated Wed, 4 Jul 2012 15:15:45 +0300
with message-id <20120704121545.ga3...@lakka.kapsi.fi>
and subject line closing fixed bug
has caused the Debian Bug report #678529,
regarding [CVE-2012-2751] mod_security multi-part bypass
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)
--
678529: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=678529
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Package: libapache-mod-security
Severity: grave
Tags: security patch
The following vulnerability had been reported against mod-security:
http://www.openwall.com/lists/oss-security/2012/06/22/1
The patch can be found in the report.
Please use CVE-2012-2751 for this issue.
Cheers,
luciano
--- End Message ---
--- Begin Message ---
http://www.debian.org/security/2012/dsa-2506 seems to fix this issue.
- Henri Salo
--- End Message ---
