[Mod-security-developers] ModSecurity 2.6.7: PCRE version check
Brought to you by:
victorhora,
zimmerletw
Menu
▾
▴
[Mod-security-developers] ModSecurity 2.6.7: PCRE version check
|
From: Peter H. <hei...@we...> - 2012-08-02 07:20:20
|
The PCRE version check produces spurious warnings
(x.0 does not match x.00).
% diff modsecurity-apache_2.6.6/apache2/mod_security2.c
modsecurity-apache_2.6.7/apache2/mod_security2.c
87c87
< pcre_vrs = apr_psprintf(mp,"%d.%d", PCRE_MAJOR, PCRE_MINOR);
---
> pcre_vrs = apr_psprintf(mp,"%d.%02d", PCRE_MAJOR, PCRE_MINOR);
The comparison in line 93
if (strstr(pcre_version(),pcre_vrs) == NULL) {
fails for single-digit minor versions.
I think the change in line 87 should be reverted.
--
Peter Heimann
|
