[Secure-testing-commits] r23042 - data/CVE

[Moritz Muehlenhoff]

Author: jmm
Date: 2013-07-23 06:42:53 +0000 (Tue, 23 Jul 2013)
New Revision: 23042

Modified:
   data/CVE/list
Log:
fix mongodb CVE ID, see my posting on oss-sec


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2013-07-23 05:25:13 UTC (rev 23041)
+++ data/CVE/list	2013-07-23 06:42:53 UTC (rev 23042)
@@ -1556,9 +1556,8 @@
 	RESERVED
 	NOT-FOR-US: xlockmore
 	NOTE: http://openwall.com/lists/oss-security/2013/07/16/8
-CVE-2013-4142 [mongodb: databasespraying remote code execution]
+CVE-2013-4142
 	RESERVED
-	- mongodb <unfixed> (high; bug #717173)
 CVE-2013-4141
 	REJECTED
 CVE-2013-4140
@@ -2015,6 +2014,10 @@
 	NOT-FOR-US: Juniper Junos Pulse Secure Access Service
 CVE-2013-3969
 	RESERVED
+	- mongodb 1:2.4.5-1 (bug #715007; bug #717173)
+	[squeeze] - mongodb <not-affected> (Only affects 2.4.x)
+	[wheezy] - mongodb <not-affected> (Only affects 2.4.x)
+	NOTE: http://www.mongodb.org/about/alerts/ SERVER-9878
 CVE-2013-3968
 	RESERVED
 CVE-2013-3967