FreeBSD : www/mod_security -- NULL pointer dereference DoS (9dfb63b8-8f36-11e2-b34d-000c2957946c)
Medium Nessus Plugin ID 66770
SynopsisThe remote FreeBSD host is missing a security-related update.
DescriptionSecurityFocus reports :
When ModSecurity receives a request body with a size bigger than the value set by the 'SecRequestBodyInMemoryLimit' and with a 'Content-Type' that has no request body processor mapped to it, ModSecurity will systematically crash on every call to 'forceRequestBodyVariable'.
SolutionUpdate the affected package.