** Description changed: Hello, please see the following vulnerablitiy: https://www.cvedetails.com/cve/CVE-2017-15535/ + + And the corresponding ticket confirming the vulnerability and the fix: + https://jira.mongodb.org/browse/SERVER-31273 The upcoming Ubuntu 18.04 release will include only MongoDb Version 3.4.7 Is it possible to upgrade the package for bionic to the current latest version 3.6.3. This version also includes the bind to localhost by default, as is the case for the packages in the official Ubuntu repositories. https://docs.mongodb.com/manual/release-notes/3.6-compatibility/ Please consider this upgrade, as it contains many more bugfixes.
-- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1750824 Title: Vulnerability in MongoDb version 3.4 up to 3.4.9 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/mongodb/+bug/1750824/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs