Author: carnil
Date: 2016-11-29 20:28:13 +0000 (Tue, 29 Nov 2016)
New Revision: 46641
Modified:
data/CVE/list
Log:
Mark two mongodb issues as no-dsa
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-11-29 19:59:45 UTC (rev 46640)
+++ data/CVE/list 2016-11-29 20:28:13 UTC (rev 46641)
@@ -10184,6 +10184,7 @@
NOT-FOR-US: Citrix
CVE-2016-XXXX [bruteforcable challenge responses in unprotected logfile]
- mongodb 1:2.6.12-1 (bug #833087)
+ [jessie] - mongodb <no-dsa> (Minor issue, can be fixed via point
release)
[wheezy] - mongodb 1:2.0.6-1.1+deb7u1
NOTE: Fixed in experimental 1:2.6.11-1, first version in unstable
1:2.6.12-1
NOTE: https://jira.mongodb.org/browse/SERVER-9476
@@ -10201,6 +10202,7 @@
CVE-2016-6494 (The client in MongoDB uses world-readable permissions on
.dbshell ...)
{DLA-588-1}
- mongodb 1:2.6.12-3 (bug #832908)
+ [jessie] - mongodb <no-dsa> (Minor issue, can be fixed via point
release)
NOTE: http://www.openwall.com/lists/oss-security/2016/07/29/4
CVE-2016-6491 [Buffer overflow]
RESERVED
_______________________________________________
Secure-testing-commits mailing list
[email protected]
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
