[ubuntu/precise-security] mongodb 1:2.0.4-1ubuntu2.1 (Accepted)
Jamie Strandboge
jamie at ubuntu.com
Mon Apr 1 20:51:37 UTC 2013
mongodb (1:2.0.4-1ubuntu2.1) precise-security; urgency=low
* SECURITY UPDATE: Remote code execution vulnerability in Spidermonkey
JavaScript engine (LP: #1160893).
- d/p/CVE-2013-1892.1.patch: Avoid raw pointers for SM's nativeHelper.
Cherry picked from upstream VCS.
- d/p/CVE-2013-1892.2.patch: Cast id to double before converting to
JS. Cherry picked from upstream VCS.
- https://jira.mongodb.org/browse/SERVER-9124
- CVE-2013-1892
Date: 2013-04-01 15:10:11.698589+00:00
Changed-By: James Page <james.page at ubuntu.com>
Signed-By: Jamie Strandboge <jamie at ubuntu.com>
https://launchpad.net/ubuntu/precise/+source/mongodb/1:2.0.4-1ubuntu2.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the Precise-changes
mailing list