You are here
Home > Preporuke > Sigurnosni nedostatak programskog paketa mongodb

Sigurnosni nedostatak programskog paketa mongodb

  • Detalji os-a: WN7
  • Važnost: IMP
  • Operativni sustavi: L
  • Kategorije: LFE

Fedora Update Notification
2016-10-06 18:35:51.801194

Name : mongodb
Product : Fedora 24
Version : 3.2.8
Release : 2.fc24
Summary : High-performance, schema-free document-oriented database
Description :
Mongo (from “humongous”) is a high-performance, open source, schema-free
document-oriented database. MongoDB is written in C++ and offers the following
* Collection oriented storage: easy storage of object/JSON-style data
* Dynamic queries
* Full index support, including on inner objects and embedded arrays
* Query profiling
* Replication and fail-over support
* Efficient storage of binary data including large objects (e.g. photos
and videos)
* Auto-sharding for cloud-level scalability (currently in early alpha)
* Commercial Support Available

A key goal of MongoDB is to bridge the gap between key/value stores (which are
fast and highly scalable) and traditional RDBMS systems (which are deep in

Update Information:

Security fix for CVE-2016-6494.

[ 1 ] Bug #1362553 – CVE-2016-6494 mongodb: world-readable .dbshell history file

This update can be installed with the “yum” update program. Use
su -c ‘yum update mongodb’ at the command line.
For more information, refer to “Managing Software with yum”,
available at

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
package-announce mailing list —
To unsubscribe send an email to

AutorMarko Stanec
Cert idNCERT-REF-2016-10-0037-ADV
More in Preporuke
Ranjivost programskog paketa Groovy

Otkrivena je ranjivost u klasi MethodClosure (runtime/ unutar programskog paketa groovy za Gentoo. Ranjivost potencijalnim udaljenim napadačima može omogućiti izvršavanje...