Release date:
2026-04-14 09:36:01 UTC
Description:
* SECURITY UPDATE: Fix missing authorization check for profile filter parameter
- debian/patches/CVE-2026-25609.patch: Extract isReadOnly() function and add
!request.getFilter() to the read-only check in profile command auth logic
- CVE-2026-25609
Updated packages:
-
mongodb6_6.0.26-1+tuxcare.els5_amd64.deb
sha:730dcfbeb2887741b5cdaa81086833f41efedb71
-
mongodb6-mongos_6.0.26-1+tuxcare.els5_amd64.deb
sha:909594e4ebb2a2ad72e3b6b242ae75956a4b6ec4
-
mongodb6-server_6.0.26-1+tuxcare.els5_amd64.deb
sha:8989c749c38b120570096f1a0de71ee34e77f593
-
mongodb6-shell_6.0.26-1+tuxcare.els5_amd64.deb
sha:c7a8df055dff7d9c0980f45762eef6a034996b5a
-
mongodb6_6.0.26-1+tuxcare.els5_arm64.deb
sha:d862b70b8bd50413faa3655bf3ef307dcb20f823
-
mongodb6-mongos_6.0.26-1+tuxcare.els5_arm64.deb
sha:f659ff709b64967a5d1343d5da296afa46389d40
-
mongodb6-server_6.0.26-1+tuxcare.els5_arm64.deb
sha:517de8ff3ab7d05bcee1ee6db75c7240a1959618
-
mongodb6-shell_6.0.26-1+tuxcare.els5_arm64.deb
sha:79d5557e98fd9d8863887f2f1292bd18bc5f78a5
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
