Skip to content

fix: FP against pattern with = following at arbitrary position #3963

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 2 commits into from
Dec 29, 2024
Merged

fix: FP against pattern with = following at arbitrary position #3963

merged 2 commits into from
Dec 29, 2024

Conversation

theseion
Copy link
Contributor

  • change regular expression to not match any =
  • add FP and true positive tests

Fixes #3961

@theseion
fix: FP against pattern with = following at arbitrary position
57437c1 
- change regular expression to not match any `=`
- add FP and true positive tests

Fixes coreruleset#3961
@theseion theseion requested a review from a team December 26, 2024 15:07
@github-actions GitHub Actions
Copy link
Contributor

github-actions bot commented Dec 26, 2024
edited
Loading

📊 Quantitative test results for language: eng, year: 2023, size: 10K, paranoia level: 1:
🚀 Quantitative testing did not detect new false positives

fzipi
fzipi reviewed Dec 29, 2024
View reviewed changes
@fzipi fzipi added this pull request to the merge queue Dec 29, 2024
Merged via the queue into coreruleset:main with commit 9f0fb2c Dec 29, 2024
6 checks passed
@theseion theseion deleted the fix-fp-against-pattern-in-941130 branch December 30, 2024 07:51
@fzipi fzipi mentioned this pull request Jan 6, 2025
Closed
bmwiedemann pushed a commit to bmwiedemann/openSUSE that referenced this pull request Feb 6, 2025
@bmwiedemann
Update owasp-modsecurity-crs to version 4.10.0 / rev 10 via SR 1241296
d1809c3 
https://build.opensuse.org/request/show/1241296
by user pgajdos + anag+factory
- package cleanup, coordinated with apache2-mod_security2
  cleanup
- version update to 4.10.0
  * New features and detections
    - feat: block CVE-2023-5003 by @azurit in coreruleset/coreruleset#3955
    - feat: prevent accessing PHP variables by @azurit in coreruleset/coreruleset#3965
  * Other Changes
    - fix: FP against `pattern` with `=` following at arbitrary position by @theseion in
      coreruleset/coreruleset#3963 (forwarded request 1240839 from pgajdos)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@fzipi fzipi fzipi approved these changes

Assignees
No one assigned
Labels
release:fix
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

941 reacts to "pattern" in normal text
2 participants
@theseion @fzipi