Advisories » MGASA-2025-0192

Updated apache-mod_security packages fix security vulnerabilities

Publication date: 25 Jun 2025
Modification date: 25 Jun 2025
Type: security
Affected Mageia releases : 9
CVE: CVE-2025-47947 , CVE-2025-48866

Description

ModSecurity Has Possible DoS Vulnerability. (CVE-2025-47947)
ModSecurity has possible DoS vulnerability in sanitiseArg action.
(CVE-2025-48866)
                

References

• https://bugs.mageia.org/show_bug.cgi?id=34362
• https://lists.debian.org/debian-security-announce/2025/msg00104.html
• https://ubuntu.com/security/notices/USN-7567-1
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-47947
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48866

SRPMS

9/core

• apache-mod_security-2.9.7-1.1.mga9