Date: Tue, 23 Jul 2013 08:35:50 +0200 From: Moritz Muehlenhoff <jmm@...ian.org> To: oss-security@...ts.openwall.com Cc: kseifried@...hat.com, Andreas Nilsson <andreas.nilsson@...en.com>, Florian <floriangaultier@...il.com>, "A. Jesse Jiryu Davis" <jesse@...en.com> Subject: Re: CVE Request - MongoDB <=2.4.4 uninitialized object On Thu, Jul 18, 2013 at 08:14:39AM -0400, Dan Pasette wrote: > We already requested CVE-2013-2132 for this and it was fixed in version > 2.4.5. > > We announced it on mongodb-announce and have it listed in our alerts page > here: http://www.mongodb.org/about/alerts/ http://www.mongodb.org/about/alerts/ now lists CVE-2013-3969 for SERVER-9878. So CVE-2013-4142 should be rejected, then. Cheers, Moritz
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.
Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.