github_mirrors/ModSecurity
3
0
Fork 1
mirror of https://github.com/owasp-modsecurity/ModSecurity.git synced 2025-08-14 13:56:01 +03:00
Code Issues Packages Projects Releases Wiki Activity
2,079 Commits 55 Branches 109 Tags
Commit Graph

2079 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Felipe Zipitria
bf6bf64cf3
chore: add PR template 
Signed-off-by: Felipe Zipitria <felipe.zipitria@owasp.org>
 2024-05-30 09:45:02 -03:00
Ervin Hegedus
6e82895afc
Merge pull request #3158 from fzipi/add-gitignore 
chore: add gitignore file
 2024-05-29 20:15:22 +02:00
Felipe Zipitria
7f40b4071b
chore: add gitignore file 
Signed-off-by: Felipe Zipitria <felipe.zipitria@owasp.org>
 2024-05-29 14:26:27 -03:00
Ervin Hegedus
8a3b62021e
Merge pull request #3153 from marcstern/v2/LARGE_STREAM_INPUT_nullend 
Missing null byte + optimization
 2024-05-28 22:33:26 +02:00
Ervin Hegedus
719744efdd
Merge pull request #3155 from marcstern/v2/tx_cleanup_null 
Possible double free
 2024-05-28 22:05:23 +02:00
Marc Stern
f08897003b msr->msc_full_request_buffer is freed but not assigned to NULL. It could be freed again later 2024-05-28 16:25:26 +02:00
Marc Stern
4a992b5a16 Replace a memset to 0 by a single assignment and fixing the 0 byte missing at the end when MSC_LARGE_STREAM_INPUT is not defined 2024-05-28 15:41:38 +02:00
Marc Stern
e803cdd802 Merge branch 'v2/master' of https://github.com/marcstern/ModSecurity into v2/master 2024-05-24 10:13:00 +02:00
Ervin Hegedus
30c909c9d2
Merge pull request #3148 from fzipi/update-copyright 
docs: update copyright
 2024-05-23 14:49:24 +02:00
Felipe Zipitria
98dba00231
docs: update README 
Signed-off-by: Felipe Zipitria <felipe.zipitria@owasp.org>
 2024-05-23 09:44:22 -03:00
Ervin Hegedus
2b3d092a29
Merge pull request #3139 from marcstern/v2/mst/SecArgumentsLimit_log 
Enhanced logging [Issue #3107]
 2024-05-16 21:02:19 +02:00
Marc Stern
c7c7881c22 space 2024-05-16 16:56:46 +02:00
Marc Stern
d45c4baa83 spaces 2024-05-16 16:55:31 +02:00
Marc Stern
ca7b4b49bf Merge branch 'v2/master' of https://github.com/marcstern/ModSecurity into v2/master 2024-05-16 16:51:48 +02:00
Marc Stern
746f57f963 Changed indentation 2024-05-16 15:52:31 +02:00
Marc Stern
a61820fe2c Enhanced logging [Issue #3107] 2024-05-10 17:26:23 +02:00
Ervin Hegedus
d9016e21f2
Merge pull request #3120 from marcstern/v2/mst/nullcheck2 
Check for null pointer dereference (almost) everywhere
 2024-05-06 22:21:36 +02:00
Marc Stern
dd400f7fa3 Added --enable-assertions in CI 
Removed useless line
 2024-04-26 17:22:16 +02:00
Marc Stern
4961f46a6f (re)fixed const type 2024-04-16 18:09:00 +02:00
Marc Stern
243ac0563a Merge branch 'v2/mst/nullcheck2' of https://github.com/marcstern/ModSecurity into v2/mst/nullcheck2 2024-04-16 18:02:16 +02:00
Marc Stern
d35018ef3f another null check 2024-04-16 18:02:06 +02:00
Marc Stern
62302c2474
Update apache2/apache2_io.c 
Co-authored-by: Felipe Zipitría <3012076+fzipi@users.noreply.github.com>
 2024-04-16 17:59:43 +02:00
Marc Stern
5122f89005 defined id_log() only once 2024-04-16 13:28:37 +02:00
Marc Stern
556835c6fe Fixed corrupted character 2024-04-12 18:04:16 +02:00
Marc Stern
38d4b5c898 typo 2024-04-12 16:28:45 +02:00
Marc Stern
931c081ba6 Enforcing -DNDEBUG (default normally) 2024-04-11 13:42:37 +02:00
Marc Stern
bd435277a9 Added --enable-assertions configure flag 2024-04-10 17:10:03 +02:00
Marc Stern
a01b9b527e minor fixes 2024-04-10 14:04:34 +02:00
Marc Stern
5f938536a0 fixed a NULL check 2024-04-08 11:01:29 +02:00
Marc Stern
c8e1904da8 Missing function 2024-04-05 18:21:02 +02:00
Marc Stern
1014e479b7
Added missing prototype 2024-04-05 18:17:25 +02:00
Marc Stern
649aea7288
Merge branch 'v2/master' into v2/mst/nullcheck2 2024-04-04 16:08:59 +02:00
Marc Stern
518b8ba6ab more null pointer checks 2024-04-04 16:01:51 +02:00
Marc Stern
538ffa6baa Added some null pointer checks. 
Added a design doc.
 2024-04-04 15:45:55 +02:00
Ervin Hegedus
788c36d343
Merge pull request #3099 from twouters/bugfix/3082 
Fix possible segfault in collection_unpack
 2024-03-03 19:10:19 +01:00
Marc Stern
31bf935f74
Update CHANGES 2024-03-03 16:20:07 +01:00
Thomas Wouters
4f33f5b656 Fix possible segfault in collection_unpack 
When var->value_len somehow becomes 0, we risk wrapping around to 4294967295 due
to it being an unsigned int.

Fixes #3082
 2024-03-01 12:12:19 +01:00
Marc Stern
fa48de055e
Merge pull request #3094 from airween/v2/buildmacros 
fix: Replace obsolote macros
 2024-02-26 16:14:43 +01:00
Ervin Hegedus
1401ad9131
Remove commented line 2024-02-25 20:34:50 +01:00
Ervin Hegedus
b7a4a4428c
Replace obsolote macros 2024-02-25 20:28:12 +01:00
Marc Stern
6b8956e0bb
Merge pull request #3078 from airween/v2/ciworklowinstall 
feat: Add more steps: install built module and restart the server
 2024-02-22 14:54:58 +01:00
Ervin Hegedus
462bf7011a
Add more test cases 2024-02-21 17:43:21 +01:00
Marc Stern
c5a6d6b3a5 Revert to OWASP 2024-02-20 14:09:14 +01:00
Marc Stern
91da5872c1 Many null pointer checks 2024-02-20 13:15:52 +01:00
Ervin Hegedus
6b9ea5a1e6
Add more steps: install built module and restart the server 2024-02-08 23:53:30 +01:00
Ervin Hegedus
705002be2b
Merge pull request #3076 from airween/v2/ciworklow 
Add new configure flag, fixes CI settings.
 2024-02-08 01:03:40 +01:00
Ervin Hegedus
6870df446d Set correct generate script 2024-02-08 01:01:41 +01:00
Ervin Hegedus
92cc83b171 Move ci file to correct directory 2024-02-08 00:53:06 +01:00
Ervin Hegedus
6a34c89a30 Add new flag: --without-lua 2024-02-08 00:46:53 +01:00
Ervin Hegedus
7d601dcbb8
Merge pull request #3075 from airween/v2/ciworklow 
Initial release of CI worklow
 2024-02-08 00:42:31 +01:00