Upgrade mod_security to 2.9.5 for fix CVE-2021-42717

(cherry picked from commit d6ee3431721635bfcbbe1e0dbd0ee54beea2aa92)
2021-12-14 16:10:33 +08:00 · 2021-12-14 16:10:33 +08:00 · b495b0af90
commit b495b0af90
parent f7bedeb457
2 changed files with 7 additions and 4 deletions
--- a/mod_security.spec
+++ b/mod_security.spec
@ -6,8 +6,8 @@
 %global mod_audit_log_collector 0

 Name: mod_security
-Version: 2.9.2
-Release: 8
+Version: 2.9.5
+Release: 1
 Summary: Security module for the Apache HTTP Server
 License: ASL 2.0
 URL: http://www.modsecurity.org/
@ -36,7 +36,7 @@ This package collects mod_security audit log.
 %endif

 %prep
-%setup -q -n modsecurity-%{version}
+%autosetup -p1 -n modsecurity-%{version}

 %build
 %configure --with-yajl --with-apxs=%{_httpd_apxs} --enable-pcre-match-limit-recursion=1000000 --enable-pcre-match-limit=1000000
@ -72,7 +72,7 @@ install -m0755 mlogc/mlogc-batch-load.pl %{buildroot}%{_bindir}/mlogc-batch-load
 %endif

 %files
-%doc README.TXT NOTICE LICENSE CHANGES
+%doc README.* NOTICE LICENSE CHANGES
 %{_httpd_moddir}/mod_security2.so
 %config(noreplace) %{_httpd_confdir}/*.conf
 %if "%{_httpd_modconfdir}" != "%{_httpd_confdir}"
@ -95,6 +95,9 @@ install -m0755 mlogc/mlogc-batch-load.pl %{buildroot}%{_bindir}/mlogc-batch-load
 %endif

 %changelog
+* Tue Dec 14 2021 yaoxin <yaoxin30@huawei.com> - 2.9.5-1
+- Upgrade mod_security to 2.9.5 for fix CVE-2021-42717
+
 * Mon May 18 2020 wangchen <wangchen137@huawei.com> - 2.9.2-8
 - rebuild for mod_security

--- a/modsecurity-2.9.5.tar.gz
+++ b/modsecurity-2.9.5.tar.gz