11 matches found
quokka (>=0.0.1.dev84 <=0.4.1.dev22) potentially affected by CVE-2013-2132 via pymongo (=2.4.1)
pymongo PYPI version =2.4.1 is affected by a known vulnerability. The following packages have a transitive dependency on pymongo and may be impacted: - quokka =0.0.1.dev84, =0.4.1.dev22 Source cves: CVE-2013-2132 Source advisory: OSV:GHSA-X33V-F3GP-GW2C...
Mageia: Security Advisory (MGASA-2013-0201)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
RHEL 6 : mongodb and pymongo (RHSA-2013:1170)
Updated mongodb and pymongo packages that fix two security issues and add one enhancement are now available for Red Hat Enterprise MRG 2.3 for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring...
openSUSE Security Update : python-pymongo / python3-pymongo (openSUSE-SU-2013:1064-1)
This update of pymongo fixes a NULL pointer issue. - Add Fix-null-pointer-when-decoding-invalid-DBRef.patch - Fixed user-triggerable NULL pointer dereference due to utter plebbery CVE-2013-2132, bnc822798 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks...
Important: Red Hat Security Advisory: mongodb and pymongo security and enhancement update
Updated mongodb and pymongo packages that fix two security issues and add one enhancement are now available for Red Hat Enterprise MRG 2.3 for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring...
CVE-2013-2132
bson/cbsonmodule.c in the mongo-python-driver aka. pymongo before 2.5.2, as used in MongoDB, allows context-dependent attackers to cause a denial of service NULL pointer dereference and crash via vectors related to decoding of an "invalid DBRef."...
CVE-2013-2132
bson/cbsonmodule.c in the mongo-python-driver aka. pymongo before 2.5.2, as used in MongoDB, allows context-dependent attackers to cause a denial of service NULL pointer dereference and crash via vectors related to decoding of an "invalid DBRef."...
CVE-2013-2132
The CVE-2013-2132 issue affects the pymongo driver (mongo-python-driver) up to version 2.5.2, where bson/_cbsonmodule.c decoding of an invalid DBRef could trigger a context-dependent NULL pointer dereference, causing a denial-of-service crash. This vulnerability is associated with PyMongo used in...
MGASA-2013-0201 Updated python-pymongo packages fix CVE-2013-2132
PyMongo before 2.5.2 is prone to a denial-of-service vulnerability. An attacker can remotely trigger a NULL pointer dereference causing MongoDB to crash CVE-2013-2132...
Updated python-pymongo packages fix CVE-2013-2132
PyMongo before 2.5.2 is prone to a denial-of-service vulnerability. An attacker can remotely trigger a NULL pointer dereference causing MongoDB to crash CVE-2013-2132...
MongoDB 空指针引用拒绝服务漏洞(CVE-2013-2132)
Bugtraq ID:60252 CVE ID:CVE-2013-2132 MongoDB是一个基于分布式文件存储的数据库。由C++语言编写 在解析非法DBref记录时MongoDB存在一个安全漏洞,允许远程攻击者利用漏洞触发一个空指针引用错误,可使应用程序崩溃 0 MongoDB 厂商解决方案 用户可参考如下厂商提供的安全公告获得补丁信息: https://github.com/mongodb/mongo-python-driver/commit/a060c15ef87e0f0e72974c7c0e57fe811bbd06a2...