CVE-2020-7925/mongodb: not-affected

author: Sylvain Beucler <beuc@beuc.net> 2020-11-28 09:38:41 +0100
committer: Sylvain Beucler <beuc@beuc.net> 2020-11-28 09:39:13 +0100
commit: 8b86b868ef979c8d54bd7fb2f1232440d9ee63b9 (patch)
tree: df0533f92e2cb7587dc64be3017899ec171b5e12 /data
parent: dd9adb09363323eb46fd6e8c7b8ea5a1e240b70d (diff)
1 files changed, 3 insertions, 0 deletions
diff --git a/data/CVE/list b/data/CVE/list
index 6935aef500..c479db4d6b 100644
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -54202,7 +54202,10 @@ CVE-2020-7926 (A user authorized to perform database queries may cause denial of
 	NOTE: https://jira.mongodb.org/browse/SERVER-50170
 CVE-2020-7925 (Incorrect validation of user input in the role name parser may lead to ...)
 	- mongodb <removed>
+	[stretch] - mongodb <not-affected> (Vulnerable code introduced later)
 	NOTE: https://jira.mongodb.org/browse/SERVER-49142
+	NOTE: https://github.com/mongodb/mongo/commit/8fbd1af03310704de68c22163900636f58f7eba8 (v3.6.19)
+	NOTE: Introduced by: https://github.com/mongodb/mongo/commit/3ca76fd569c94de72c4daf6eef27fbf9bf51233b (v3.6.18)
 CVE-2020-7924
 	RESERVED
 CVE-2020-7923 (A user authorized to perform database queries may cause denial of serv ...)
author	Sylvain Beucler <beuc@beuc.net>	2020-11-28 09:38:41 +0100
committer	Sylvain Beucler <beuc@beuc.net>	2020-11-28 09:39:13 +0100
commit	8b86b868ef979c8d54bd7fb2f1232440d9ee63b9 (patch)
tree	df0533f92e2cb7587dc64be3017899ec171b5e12 /data
parent	dd9adb09363323eb46fd6e8c7b8ea5a1e240b70d (diff)