[Secure-testing-commits] r46641 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue Nov 29 20:28:13 UTC 2016
Author: carnil
Date: 2016-11-29 20:28:13 +0000 (Tue, 29 Nov 2016)
New Revision: 46641
Modified:
data/CVE/list
Log:
Mark two mongodb issues as no-dsa
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-11-29 19:59:45 UTC (rev 46640)
+++ data/CVE/list 2016-11-29 20:28:13 UTC (rev 46641)
@@ -10184,6 +10184,7 @@
NOT-FOR-US: Citrix
CVE-2016-XXXX [bruteforcable challenge responses in unprotected logfile]
- mongodb 1:2.6.12-1 (bug #833087)
+ [jessie] - mongodb <no-dsa> (Minor issue, can be fixed via point release)
[wheezy] - mongodb 1:2.0.6-1.1+deb7u1
NOTE: Fixed in experimental 1:2.6.11-1, first version in unstable 1:2.6.12-1
NOTE: https://jira.mongodb.org/browse/SERVER-9476
@@ -10201,6 +10202,7 @@
CVE-2016-6494 (The client in MongoDB uses world-readable permissions on .dbshell ...)
{DLA-588-1}
- mongodb 1:2.6.12-3 (bug #832908)
+ [jessie] - mongodb <no-dsa> (Minor issue, can be fixed via point release)
NOTE: http://www.openwall.com/lists/oss-security/2016/07/29/4
CVE-2016-6491 [Buffer overflow]
RESERVED
More information about the Secure-testing-commits
mailing list