[Secure-testing-commits] r43866 - data/CVE
security tracker role
sectracker at moszumanska.debian.org
Mon Aug 8 09:10:12 UTC 2016
Author: sectracker
Date: 2016-08-08 09:10:12 +0000 (Mon, 08 Aug 2016)
New Revision: 43866
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-08-08 08:58:10 UTC (rev 43865)
+++ data/CVE/list 2016-08-08 09:10:12 UTC (rev 43866)
@@ -404,7 +404,7 @@
RESERVED
CVE-2016-XXXX [bruteforcable challenge responses in unprotected logfile]
- mongodb 1:2.6.12-1 (bug #833087)
- [wheezy] - mongodb 2.0.6-1+deb7u1
+ [wheezy] - mongodb 2.0.6-1+deb7u1
NOTE: Fixed in experimental 1:2.6.11-1, first version in unstable 1:2.6.12-1
NOTE: https://jira.mongodb.org/browse/SERVER-9476
NOTE: Fixed by: https://github.com/mongodb/mongo/commit/f85ceb17b37210eef71e8113162c41368bfd5c12
@@ -419,6 +419,7 @@
RESERVED
CVE-2016-6494 [world-readable .dbshell history file]
RESERVED
+ {DLA-588-1}
- mongodb <unfixed> (bug #832908)
NOTE: http://www.openwall.com/lists/oss-security/2016/07/29/4
CVE-2016-6491 [Buffer overflow]
@@ -3874,6 +3875,7 @@
NOTE: Fixed in 7.0.9, 5.6.24, 5.5.38
CVE-2016-5384 [possible double free due to insufficiently validated cache files]
RESERVED
+ {DLA-587-1}
- fontconfig 2.11.0-6.5 (bug #833570)
NOTE: https://lists.freedesktop.org/archives/fontconfig/2016-August/005792.html
NOTE: Fixed by: https://cgit.freedesktop.org/fontconfig/commit/?id=7a4a5bd7897d216f0794ca9dbce0a4a5c9d14940 (2.12.1)
More information about the Secure-testing-commits
mailing list