Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 476
Alerts This Week
Warning Icon 1 476

Fedora 24 High Severity Advisory: MongoDB Update for CVE-2016-6494

fedora
Calendar Grey October 6, 2016
Dist Fedora Esm H88
Fedora 24's latest MongoDB security patch tackles CVE-2016-6494 by implementing essential protocols to enhance database protection.
Security fix for CVE-2016-6494.

Summary

Mongo (from "humongous") is a high-performance, open source, schema-free

document-oriented database. MongoDB is written in C++ and offers the following

features:

* Collection oriented storage: easy storage of object/JSON-style data

* Dynamic queries

* Full index support, including on inner objects and embedded arrays

* Query profiling

* Replication and fail-over support

* Efficient storage of binary data including large objects (e.g. photos

and videos)

* Auto-sharding for cloud-level scalability (currently in early alpha)

* Commercial Support Available

A key goal of MongoDB is to bridge the gap between key/value stores (which are

fast and highly scalable) and traditional RDBMS systems (which are deep in

functionality).

Update Information:

Security fix for CVE-2016-6494.

Change Log

References


[ 1 ] Bug #1362553 - CVE-2016-6494 mongodb: world-readable .dbshell history file https://bugzilla.redhat.com/show_bug.cgi?id=1362553

Update Instructions

This update can be installed with the "yum" update program. Use su -c 'yum update mongodb' at the command line. For more information, refer to "Managing Software with yum", available at .

Severity
important
Lowest
Low
Medium
High
Critical

Name: mongodb
Product: Fedora 24
Version: 3.2.8
Release: 2.fc24
Summary: High-performance, schema-free document-oriented database

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.