Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild

Clear original response code in send_error_bucket function
2024-01-25 07:50:26 +00:00 · 2024-01-21 08:30:31 +00:00 · 2024-01-02 17:37:45 +01:00 · 2023-07-20 15:38:17 +00:00 · 2023-06-02 21:29:13 +02:00
2 changed files with 48 additions and 2 deletions
--- a/mod_security-2.9.7-send_error_bucket.patch
+++ b/mod_security-2.9.7-send_error_bucket.patch
@ -0,0 +1,30 @@
+From b2fa083522c70368c7ab911696dcb87dde5dc688 Mon Sep 17 00:00:00 2001
+From: Tomas Korbar <tkorbar@redhat.com>
+Date: Thu, 22 Dec 2022 14:49:34 +0100
+Subject: [PATCH] Clear original response code in send_error_bucket function
+
+If this is left intact, then apache thinks that this code
+was generated during processing of ErrorDocument and does not
+handle it properly
+
+Fix #2849
+---
+ apache2/apache2_util.c | 5 +++++
+ 1 file changed, 5 insertions(+)
+
+diff --git a/apache2/apache2_util.c b/apache2/apache2_util.c
+index cdae2b580..520a30f2f 100644
+--- a/apache2/apache2_util.c
+++ b/apache2/apache2_util.c
+@@ -31,6 +31,11 @@ apr_status_t send_error_bucket(modsec_rec *msr, ap_filter_t *f, int status) {
+     /* Set the status line explicitly for the error document */
+     f->r->status_line = ap_get_status_line(status);
+ 
+    /* Clear previously set response code to make clear that this is
+     * not a recursive error
+     */
+    f->r->status = 200;
+
+     brigade = apr_brigade_create(f->r->pool, f->r->connection->bucket_alloc);
+     if (brigade == NULL) return APR_EGENERAL;
+ 
--- a/mod_security.spec
+++ b/mod_security.spec
@ -10,8 +10,8 @@
 Summary: Security module for the Apache HTTP Server
 Name: mod_security
 Version: 2.9.7
-Release: 1%{?dist}
-License: ASL 2.0
+Release: 6%{?dist}
+License: Apache-2.0
 URL: http://www.modsecurity.org/
 Source: https://github.com/SpiderLabs/ModSecurity/releases/download/v%{version}/modsecurity-%{version}.tar.gz
 Source1: mod_security.conf
@ -20,6 +20,7 @@ Source3: modsecurity_localrules.conf
 Patch0: modsecurity-2.9.3-lua-54.patch
 Patch1: modsecurity-2.9.3-apulibs.patch
 Patch2: mod_security-2.9.3-remote-rules-timeout.patch
+Patch3: mod_security-2.9.7-send_error_bucket.patch

 Requires: httpd httpd-mmn = %{_httpd_mmn}
 %if 0%{?fedora} || 0%{?rhel} > 7
@ -144,6 +145,21 @@ install -m0644 mlogc/mlogc-default.conf %{buildroot}%{_sysconfdir}/mlogc.conf
 %endif

 %changelog
+* Thu Jan 25 2024 Fedora Release Engineering <releng@fedoraproject.org> - 2.9.7-6
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
+
+* Sun Jan 21 2024 Fedora Release Engineering <releng@fedoraproject.org> - 2.9.7-5
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
+
+* Tue Jan 02 2024 Tomas Korbar <tkorbar@redhat.com> - 2.9.7-4
+- Clear original response code in send_error_bucket function
+
+* Thu Jul 20 2023 Fedora Release Engineering <releng@fedoraproject.org> - 2.9.7-3
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
+
+* Fri Jun 02 2023 Luboš Uhliarik <luhliari@redhat.com> - 2.9.7-2
+- SPDX migration
+
 * Thu Apr 13 2023 Luboš Uhliarik <luhliari@redhat.com> - 2.9.7-1
 - new version 2.9.7
 - use pcre2 instead of deprecated pcre (rhbz #2128330)
Author	SHA1	Message	Date
Fedora Release Engineering	ed7c45cdf0	Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild	2024-01-25 07:50:26 +00:00
Fedora Release Engineering	f14eac0415	Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild	2024-01-21 08:30:31 +00:00
Tomas Korbar	5a3bce7f1f	Clear original response code in send_error_bucket function	2024-01-02 17:37:45 +01:00
Fedora Release Engineering	b6d5b74493	Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>	2023-07-20 15:38:17 +00:00
Luboš Uhliarik	9a283bc767	SPDX migration	2023-06-02 21:29:13 +02:00