Hi Robert,

On Apr 12, 2014, at 8:49 PM, Robert Paprocki <rpaprocki@fearnothingproductions.net> wrote:

I have compiled nginx-1.5.13 with modsecurity-2.7.7 and am seeing
occasional segfaults when sending requests to the server. mod_security
was compiled as a standalone module per the instructions made available
at
https://github.com/SpiderLabs/ModSecurity/wiki/Reference-Manual#Installation_for_NGINX.
The segfaults appear sporadic and do not seem to match up with any given
request. 

Thank you for the report with all the details that we need to investigate the problem.

We have recently received an report of an issues that I believe is similar from what you are facing, the details are available here:
https://github.com/SpiderLabs/ModSecurity/issues/681

As you can see in the issue @akamatgi is suggesting a patch. Also, @p0pr0ck5 is helping with some tests. I have asked @akamatgi to submit the patches in a pull request format this morning. This not went to our buildbots yet.


Br.,
Felipe "Zimmerle" Costa
Security Researcher, SpiderLabs

Trustwave | SMART SECURITY ON DEMAND
www.trustwave.com








This transmission may contain information that is privileged, confidential, and/or exempt from disclosure under applicable law. If you are not the intended recipient, you are hereby notified that any disclosure, copying, distribution, or use of the information contained herein (including any reliance thereon) is strictly prohibited. If you received this transmission in error, please immediately contact the sender and destroy the material in its entirety, whether in electronic or hard copy format.