[Secure-testing-commits] r31089 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Jan 2 09:38:33 UTC 2015
Author: carnil
Date: 2015-01-02 09:30:23 +0000 (Fri, 02 Jan 2015)
New Revision: 31089
Modified:
data/CVE/list
Log:
Update CVE-2014-3971/mongodb
Not affecting versions in Debian since X.509 certificate authentication
introduced in version 2.6.x.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-01-02 07:39:24 UTC (rev 31088)
+++ data/CVE/list 2015-01-02 09:30:23 UTC (rev 31089)
@@ -14317,7 +14317,9 @@
CVE-2014-3972
RESERVED
CVE-2014-3971 (The CmdAuthenticate::_authenticateX509 function in ...)
- TODO: check
+ - mongodb <not-affected> (X.509 certifictate authentication introduced in 2.6.x)
+ NOTE: https://jira.mongodb.org/browse/SERVER-13753
+ NOTE: https://github.com/mongodb/mongo/commit/c151e0660b9736fe66b224f1129a16871165251b
CVE-2014-3965
RESERVED
CVE-2014-3964
More information about the Secure-testing-commits
mailing list