Bug 2040257

Summary: A form data, "会社"(Company in Japanese) is forbade with REQUEST-941-APPLICATION-ATTACK-XSS.conf of mod_security_crs-3.3.0-2.el8.
Product: Red Hat Enterprise Linux 8 Reporter: Muneaki Sugaya <msugaya>
Component: mod_security_crsAssignee: Richard Lescak <rlescak>
Status: CLOSED ERRATA QA Contact: icesalov
Severity: medium Docs Contact:
Priority: unspecified    
Version: 8.5CC: jorton, luhliari
Target Milestone: rcKeywords: AutoVerified, Triaged
Target Release: ---Flags: pm-rhel: mirror+
Hardware: x86_64   
OS: Linux   
Whiteboard:
Fixed In Version: mod_security_crs-3.3.4-3.el8 Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2023-11-14 15:37:43 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Comment 8 Richard Lescak 2023-04-04 11:30:30 UTC 
Build -> https://brewweb.engineering.redhat.com/brew/buildinfo?buildID=2450988
Commits -> https://pkgs.devel.redhat.com/cgit/rpms/mod_security_crs/commit/?h=rhel-8-main&id=24147a734863b20d55ebaee228482ed7bb1fa668
           https://pkgs.devel.redhat.com/cgit/rpms/mod_security_crs/commit/?h=rhel-8-main&id=24d0da505c7abccb1a8872d1e4cf64cf8ecffecc
Comment 23 errata-xmlrpc 2023-11-14 15:37:43 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (mod_security_crs bug fix and enhancement update), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHBA-2023:7069