1
Candidate: CVE-2016-3104
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3104
5
https://jira.mongodb.org/browse/SERVER-24378
7
mongod in MongoDB 2.6, when using 2.4-style users, and 2.4 allow remote
8
attackers to cause a denial of service (memory consumption and process
9
termination) by leveraging in-memory database representation when
10
authenticating against a non-existent database.
13
ratliff> The mongodb advisory recommend upgrading to latest 2.6. No 2.4 patch
20
upstream_mongodb: needs-triage
21
precise_mongodb: ignored (reached end-of-life)
22
precise/esm_mongodb: DNE (precise was needs-triage)
23
trusty_mongodb: needed
24
vivid/stable-phone-overlay_mongodb: DNE
25
vivid/ubuntu-core_mongodb: DNE
26
xenial_mongodb: needed
27
yakkety_mongodb: ignored (reached end-of-life)
28
zesty_mongodb: ignored (reached end-of-life)
29
artful_mongodb: needed
30
bionic_mongodb: needed