Bug 247392

Summary: security/vuxml mongodb issue
Product: Ports & Packages Reporter: Ronald Klop <ronald-lists>
Component: Individual Port(s)Assignee: Kurt Jaeger <pi>
Status: Closed FIXED    
Severity: Affects Some People CC: pi, ronald-lists
Priority: --- Keywords: patch, security
Version: LatestFlags: bugzilla: maintainer-feedback? (ports-secteam)
Hardware: Any   
OS: Any   
Attachments:
Description Flags
vuln.xml (svn diff) none

Description Ronald Klop 2020-06-18 19:58:25 UTC 
Created attachment 215750 [details]
vuln.xml (svn diff)

Entry for this issue:
https://jira.mongodb.org/browse/SERVER-45472

Our mongodb36 port is still vulnerable. Mongodb40 and mongodb42 are up-to-date.
Comment 1 commit-hook freebsd_committer freebsd_triage 2020-06-29 16:58:46 UTC 
A commit references this bug:

Author: pi
Date: Mon Jun 29 16:58:03 UTC 2020
New revision: 540816
URL: https://svnweb.freebsd.org/changeset/ports/540816

Log:
  security/vuxml: add mongodb CVE entry

  - See also: https://jira.mongodb.org/browse/SERVER-45472

  PR:		247392
  Submitted by:	Ronald Klop <ronald-lists@klop.ws>

Changes:
  head/security/vuxml/vuln.xml
Comment 2 Kurt Jaeger freebsd_committer freebsd_triage 2020-06-29 18:00:20 UTC 
Committed, thanks!