"new" issues in mongodb drivers

author: Moritz Muehlenhoff <jmm@debian.org> 2023-09-04 12:58:04 +0200
committer: Moritz Muehlenhoff <jmm@debian.org> 2023-09-04 12:59:49 +0200
commit: 373c4df57e12d7339f8a786a5a0a0a08ff1c3861 (patch)
tree: e985f6a0494477fc5fb8be9c0f040bdce528d51f /data
parent: 653297d601c73f51176d8eac23734a5ed27a9630 (diff)
1 files changed, 14 insertions, 1 deletions
diff --git a/data/CVE/list b/data/CVE/list
index 889f337771..ab76ca5bae 100644
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -164733,7 +164733,20 @@ CVE-2021-32052 (In Django 2.2 before 2.2.22, 3.1 before 3.1.10, and 3.2 before 3
 CVE-2021-32051 (Hexagon G!nius Auskunftsportal before 5.0.0.0 allows SQL injection via ...)
 	NOT-FOR-US: Hexagon G!nius Auskunftsportal
 CVE-2021-32050 (Some MongoDB Drivers may erroneously publish events containing authent ...)
-	TODO: check
+	- php-mongodb 1.11.1+1.9.2+1.7.5-4
+	[bullseye] - php-mongodb <no-dsa> (Minor issue)
+	- mongo-c-driver 1.18.0-1
+	[bullseye] - mongo-c-driver <no-dsa> (Minor issue)
+	- node-mongodb <unfixed>
+	[bookworm] - node-mongodb <no-dsa> (Minor issue)
+	[bullseye] - node-mongodb <no-dsa> (Minor issue)
+	NOTE: https://jira.mongodb.org/browse/PHPC-1869
+	NOTE: https://github.com/mongodb/mongo-php-driver/pull/1235
+	NOTE: https://jira.mongodb.org/browse/NODE-3356
+	NOTE: https://github.com/mongodb/node-mongodb-native/commit/8c8b4c3b8c55f10fb96f63d3bbfa5d408b4ed7d0
+	NOTE: https://github.com/mongodb/node-mongodb-native/commit/b98f2061de9e8b0a814e3e7d39a0e914245953d0
+	NOTE: https://jira.mongodb.org/browse/CDRIVER-3797
+	NOTE: https://github.com/mongodb/mongo-c-driver/commit/6d8fc7eaadea8a0dab163e88b91244af12e0c97a (1.18.0)
 CVE-2021-32049
 	RESERVED
 CVE-2021-32048
author	Moritz Muehlenhoff <jmm@debian.org>	2023-09-04 12:58:04 +0200
committer	Moritz Muehlenhoff <jmm@debian.org>	2023-09-04 12:59:49 +0200
commit	373c4df57e12d7339f8a786a5a0a0a08ff1c3861 (patch)
tree	e985f6a0494477fc5fb8be9c0f040bdce528d51f /data
parent	653297d601c73f51176d8eac23734a5ed27a9630 (diff)