Overview

File _patchinfo of Package patchinfo.38967

<patchinfo incident="38967">
  <issue tracker="cve" id="2025-48866"/>
  <issue tracker="cve" id="2025-47947"/>
  <issue tracker="bnc" id="1243976">VUL-0: CVE-2025-48866: apache2-mod_security2,modsecurity: excessive number of arguments in sanitiseArg can lead to a denial of service due to high memory consumption</issue>
  <issue tracker="bnc" id="1243978">VUL-0: CVE-2025-47947: apache2-mod_security2: DoS through sanitiseMatchedBytes</issue>
  <packager>pgajdos</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for apache2-mod_security2</summary>
  <description>This update for apache2-mod_security2 fixes the following issues:

- CVE-2025-47947: Fixed denial of service through sanitiseMatchedBytes (bsc#1243978).
- CVE-2025-48866: Fixed denial of service via excessive number of arguments in sanitiseArg (bsc#1243976).
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places