19159 – mongodb new security issue CVE-2016-6494

Bug 19159 - mongodb new security issue CVE-2016-6494

Summary: mongodb new security issue CVE-2016-6494

Status:	RESOLVED INVALID

Alias:	None

Product:	Mageia
Classification:	Unclassified
Component:	Security (show other bugs)
Version:	Cauldron
Hardware:	All Linux

Priority:	Normal Severity: normal
Target Milestone:	---
Assignee:	Joseph Wang
QA Contact:	Sec team

URL:	http://lwn.net/Vulnerabilities/696696/
Whiteboard:	MGA5TOO
Keywords:

Depends on:
Blocks:

Reported:	2016-08-08 22:05 CEST by David Walser
Modified:	2016-11-18 01:43 CET (History)
CC List:	1 user (show)

See Also:
Source RPM:	mongodb-3.2.5-3.mga6.src.rpm
CVE:
Status comment:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Description David Walser 2016-08-08 22:05:25 CEST

Debian-LTS has issued an advisory today (August 8):
http://lwn.net/Alerts/696673/

Mageia 5 is also affected.

David Walser 2016-08-08 22:05:31 CEST

Whiteboard: (none) => MGA5TOO

Comment 1 Nicolas Lécureuil 2016-11-18 01:43:01 CET

https://bugzilla.suse.com/show_bug.cgi?id=991387

i will use the same conclusion: 


"reading upstream discussion this looks like a non issue (umask)"

same is done in RHEL

Status: NEW => RESOLVED
CC: (none) => mageia
Resolution: (none) => INVALID

Note You need to log in before you can comment on or make changes to this bug.