FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

couchdb -- information sharing via couchjs processes

Affected packages
couchdb < 3.3.2,2

Details

VuXML ID fd47fcfe-ec69-4000-b9ce-e5e62102c1c7
Discovery 2023-05-02
Entry 2023-12-17

Nick Vatamane reports:

Design documents with matching document IDs, from databases on the same cluster, may share a mutable Javascript environment when using various design document functions.

[source]

References

CVE Name CVE-2023-26268
URL https://docs.couchdb.org/en/stable/cve/2023-26268.html

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.