Debian Security Update DSA-5023 modsecurity-apache - security update

Thread starter LinuxBot
Start date Dec 19, 2021

LinuxBot

Member

Dec 19, 2021

#1

It was discovered that modsecurity-apache, an Apache module to tighten the Web application security, does not properly handles excessively nested JSON objects, which could result in denial of service. The update introduces a new SecRequestBodyJsonDepthLimit option to limit the maximum request body JSON parsing depth which ModSecurity will accept (defaults to 10000).

Continue reading...

You must log in or register to reply here.

Similar threads

Debian Security Update DSA-6105-1 modsecurity-crs - security update

Replies: 0

Views: 100

Jan 22, 2026

LinuxBot

Debian Security Update DSA-5940-1 modsecurity-apache - security update

Replies: 0

Views: 154

Jun 9, 2025

LinuxBot

Ubuntu Security Update USN-8338-2: Apache HTTP Server regression

Replies: 0

Views: 76

May 29, 2026

LinuxBot

Debian Security Update DSA-6199-1 trafficserver - security update

Replies: 0

Views: 136

Apr 6, 2026

LinuxBot

Debian Security Update DSA-6259-1 pyjwt - security update

Replies: 0

Views: 92

May 9, 2026

LinuxBot

Share:

Facebook X Bluesky LinkedIn Reddit Pinterest Tumblr WhatsApp Email Link

Follow Linux.org

Linux.org YouTube Channel

Staff online

KGIII
Administrator

Members online

Total: 1,678 (members: 4, guests: 1,674)

Latest posts

Cannot install any Linux
- Latest: KGIII
- 16 minutes ago
Getting Started
What are Your Takes On "GNU Purism"
- Latest: piorunz
- 35 minutes ago
General Computing
Files missing
- Latest: piorunz
- 40 minutes ago
Mint
Linux Mint - can't access terminal
- Latest: piorunz
- 41 minutes ago
Getting Started
Update Chrome ASAP to Protect Yourself From This Active ExploitIf you use Chrome, you're vulnerable until you install this update. Jun 11, 2026
- Latest: craigevil
- Today at 12:55 PM
Linux Security

Top