Bug 247392 - security/vuxml mongodb issue
Summary: security/vuxml mongodb issue
Status: Closed FIXED
Alias: None
Product: Ports & Packages
Classification: Unclassified
Component: Individual Port(s) (show other bugs)
Version: Latest
Hardware: Any Any
: --- Affects Some People
Assignee: Kurt Jaeger
Keywords: patch, security
Depends on:
Reported: 2020-06-18 19:58 UTC by Ronald Klop
Modified: 2020-06-29 18:00 UTC (History)
2 users (show)

See Also:
bugzilla: maintainer-feedback? (ports-secteam)

vuln.xml (svn diff) (1.48 KB, patch)
2020-06-18 19:58 UTC, Ronald Klop
no flags Details | Diff

Note You need to log in before you can comment on or make changes to this bug.
Description Ronald Klop 2020-06-18 19:58:25 UTC
Created attachment 215750 [details]
vuln.xml (svn diff)

Entry for this issue:

Our mongodb36 port is still vulnerable. Mongodb40 and mongodb42 are up-to-date.
Comment 1 commit-hook freebsd_committer 2020-06-29 16:58:46 UTC
A commit references this bug:

Author: pi
Date: Mon Jun 29 16:58:03 UTC 2020
New revision: 540816
URL: https://svnweb.freebsd.org/changeset/ports/540816

  security/vuxml: add mongodb CVE entry

  - See also: https://jira.mongodb.org/browse/SERVER-45472

  PR:		247392
  Submitted by:	Ronald Klop <ronald-lists@klop.ws>

Comment 2 Kurt Jaeger freebsd_committer 2020-06-29 18:00:20 UTC
Committed, thanks!