1
PublicDateAtUSN: 2013-06-03
2
Candidate: CVE-2013-2132
5
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2132
6
https://usn.ubuntu.com/usn/usn-1897-1
8
bson/_cbsonmodule.c in the mongo-python-driver (aka. pymongo) before 2.5.2,
9
as used in MongoDB, allows context-dependent attackers to cause a denial of
10
service (NULL pointer dereference and crash) via vectors related to
11
decoding of an "invalid DBRef."
15
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=710597
16
https://jira.mongodb.org/browse/PYTHON-532
18
Discovered-by: Jibbers McGee
22
upstream: https://github.com/mongodb/mongo-python-driver/commit/a060c15ef87e0f0e72974c7c0e57fe811bbd06a2
23
upstream_pymongo: released (2.5.2-1)
25
precise_pymongo: released (2.1-1ubuntu0.1)
26
quantal_pymongo: released (2.2-2ubuntu0.1)
27
raring_pymongo: released (2.2-4ubuntu0.1)
28
devel_pymongo: not-affected (2.5.2-1)