You are here
Home > Preporuke > Sigurnosni nedostatak programskog paketa mongodb

Sigurnosni nedostatak programskog paketa mongodb

  • Detalji os-a: WN7
  • Važnost: IMP
  • Operativni sustavi: L
  • Kategorije: LFE

Fedora Update Notification
2015-03-19 14:10:18

Name : mongodb
Product : Fedora 21
Version : 2.4.13
Release : 1.fc21
Summary : High-performance, schema-free document-oriented database
Description :
Mongo (from “humongous”) is a high-performance, open source, schema-free
document-oriented database. MongoDB is written in C++ and offers the following
* Collection oriented storage: easy storage of object/JSON-style data
* Dynamic queries
* Full index support, including on inner objects and embedded arrays
* Query profiling
* Replication and fail-over support
* Efficient storage of binary data including large objects (e.g. photos
and videos)
* Auto-sharding for cloud-level scalability (currently in early alpha)
* Commercial Support Available

A key goal of MongoDB is to bridge the gap between key/value stores (which are
fast and highly scalable) and traditional RDBMS systems (which are deep in

Update Information:

Security fix for CVE-2015-1609

* Mon Mar 16 2015 Marek Skalicky <> – 2.4.13-1
– Fixed CVE-2015-1609 (#1200447)
– Upgrade to 2.4.13-1

[ 1 ] Bug #1200446 – CVE-2015-1609 mongodb: DoS due to improper BSON validation

This update can be installed with the “yum” update program. Use
su -c ‘yum update mongodb’ at the command line.
For more information, refer to “Managing Software with yum”,
available at

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
package-announce mailing list

AutorMarko Stanec
Cert idNCERT-REF-2015-03-0042-ADV
More in Preporuke
Sigurnosni nedostatak programskog paketa mingw-xerces-c

Otkriven je sigurnosni nedostatak u programskom paketu mingw-xerces-c. Otkriveni nedostatak potencijalnim napadačima omogućuje uskraćivanje usluge. Svim korisnicima savjetuje se nadogradnja.