Control: tags -1 + moreinfo On 27.03.2013 12:53, John Paul Adrian Glaubitz wrote:
Please unblock package mongodb for t-p-u Upstream has fixed a critical remote vulnerability, see CVE-2013-1892 [1]. I have extracted the patches to fix the issue from upstream and uploaded 2.0.6-1.1 into t-p-u since there is already a newer upstream version of mongodb in unstable.
It would be good if that had been discussed /before/ it was uploaded. :(
As far as I can tell, the package in unstable is still vulnerable. Is there a plan for getting that fixed?
Regards, Adam