v2.9.12

airween released this 05 Aug 19:21

· 2107 commits to v3/master since this release

18cae50

There is an improper error handling in previous versions, see CVE 2025-54571. This release includes a fix for it.

Full list of changes:

fix: Improper error handling
[PR from private repo - @orangetw, @pgajdos, @ylavic, @theseion, @fzipi, @airween
fixed CVE-2025-54571]
fix: mod_security2's regression tests [Issue #3425 - @airween]
fix: remove unused condition from msc_status_engine.c [Issue #3412 - @airween]
fix: remove unwanted '\0' string terminator from argument's value [Issue #3411 - @airween]

Contributors

airween, theseion, and 4 other contributors

Assets 5