CVE-2021-20326: A user authorized to performing a specific type of find query may trigger a denial of service. This issue affects: MongoDB Inc. MongoDB Server v4.4 versions prior to 4.4.4. Please stabilize mongodb-4.4.4.
(Removing glibc-2.34 blocker bug).
Shall we? (Please file a new bug and have this bug depend on it.)
I'd wait for https://github.com/gentoo/gentoo/pull/22052 being merged and then stabilize the latest 4.2 and 4.4.
I'm also doing a binary package to deploy on some servers to test the glibc-2.34 patch (probably during the next week).
I cleaned up some useless versions already, please proceed
It's unclear to me which versions are actually fixed for each branch (and thus need stabilization). CVE/issue says 4.4.4, but there are obviously other branches, what's the fixed version for 4.2.x?
(In reply to John Helmert III from comment #6) > It's unclear to me which versions are actually fixed for each branch (and > thus need stabilization). CVE/issue says 4.4.4, but there are obviously > other branches, what's the fixed version for 4.2.x? We have branches 4.2, 4.4 and 5.0 in portage. We are not going to stabilize 5.0 yet, so that's why the latest 4.2 and 4.4 versions are marked for stabilization.
Resetting sanity check; package list is empty or all packages are done.
Please cleanup.
cleanup done
Thanks!