Control: tags -1 + confirmed On Mon, 2019-11-04 at 16:41 +0100, Alberto Gonzalez Iniesta wrote: > This [1] security bug was found in modsecurity-crs. > After contacting the security team, they said a DSA was not necessary > and that I should proceed through p-u. > > So here's the debdiff. Hope it's all OK.
-modsecurity-crs (3.1.0-1+deb10u1) buster; urgency=medium - - * Add upstream patch to fix php script upload rules. - CVE-2019-13464 (Closes: #943773) The diff appears to be reversed, but other than that, sure. :-) Regards, Adam
