Index: security/vuxml/vuln.xml =================================================================== --- security/vuxml/vuln.xml +++ security/vuxml/vuln.xml @@ -58,6 +58,35 @@ * Do not forget port variants (linux-f10-libxml2, libxml2, etc.) --> + + couchdb -- administrator privilege escalation + + + couchdb + 2.2.0,2 + + + + +

Apache CouchDB PMC reports:

+
+

Database Administrator could achieve privilege escalation to + the account that CouchDB runs under, by abusing insufficient validation + in the HTTP API, escaping security controls implemented in previous + releases.

+
+ +
+ + http://docs.couchdb.org/en/stable/cve/2018-11769.html + CVE-2018-11769 + + + 2018-06-05 + 2018-08-08 + +
+ botan2 -- ECDSA side channel @@ -1694,7 +1723,7 @@ couchdb - 1.7.2 + 1.7.2,2