Upgrademod_securityto 2.9.5forfixCVE-2021-42717

mod_security.spec

@@ -6,8 +6,8 @@
 %global mod_audit_log_collector 0
 
 Name: mod_security
-Version: 2.9.2
-Release: 7
+Version: 2.9.5
+Release: 1
 Summary: Security module for the Apache HTTP Server
 License: ASL 2.0
 URL: http://www.modsecurity.org/
@@ -19,6 +19,7 @@ Source3: modsecurity_localrules.conf
 Requires: httpd httpd-mmn = %{_httpd_mmn}
 BuildRequires: gcc make perl-generators httpd-devel yajl yajl-devel
 BuildRequires: pkgconfig(lua) pkgconfig(libcurl) pkgconfig(libxml-2.0) pkgconfig(libpcre)
+BuildRequires: autoconf automake libtool
 
 %description
 This software is also called Modsec,it is an open-source web application firewall.
@@ -36,9 +37,10 @@ This package collects mod_security audit log.
 %endif
 
 %prep
-%setup -q -n modsecurity-%{version}
+%autosetup -p1 -n modsecurity-%{version}
 
 %build
+./autogen.sh
 %configure --with-yajl --with-apxs=%{_httpd_apxs} --enable-pcre-match-limit-recursion=1000000 --enable-pcre-match-limit=1000000
 sed -i 's|^hardcode_libdir_flag_spec=.*|hardcode_libdir_flag_spec=""|g' libtool
 sed -i 's|^runpath_var=LD_RUN_PATH|runpath_var=DIE_RPATH_DIE|g' libtool
@@ -72,7 +74,7 @@ install -m0755 mlogc/mlogc-batch-load.pl %{buildroot}%{_bindir}/mlogc-batch-load
 %endif
 
 %files
-%doc README.TXT NOTICE LICENSE CHANGES
+%doc README.* NOTICE LICENSE CHANGES
 %{_httpd_moddir}/mod_security2.so
 %config(noreplace) %{_httpd_confdir}/*.conf
 %if "%{_httpd_modconfdir}" != "%{_httpd_confdir}"
@@ -95,6 +97,9 @@ install -m0755 mlogc/mlogc-batch-load.pl %{buildroot}%{_bindir}/mlogc-batch-load
 %endif
 
 %changelog
+* Tue Dec 14 2021 yaoxin <yaoxin30@huawei.com> - 2.9.5-1
+- Upgrade mod_security to 2.9.5 for fix CVE-2021-42717
+
 * Wed Nov 20 2019 openEuler Buildteam <buildteam@openeuler.org> - 2.9.2-7
 - Type:enhancement
 - Id:NA