The ModSecurity Development Team has released version 2.6.6 in response to a multipart bypass vulnerability that was disclosed to us. 
Users are strongly encouraged to update. Please see the release notes included into CHANGES file.
For known problems and more information about bug fixes, please see the online ModSecurity Jira
Please report any bug to mod-security-developers@lists.sourceforge.net

Thanks

Breno Silva