NodeJS/mongoose/3.6.6

Mongoose MongoDB ODM

Repo Link: https://www.npmjs.com/package/mongoose
License: MIT

6 Security Vulnerabilities

Improper Input Validation in Automattic Mongoose

Published date: 2019-10-22T20:19:54Z

CVE: CVE-2019-17426

Links:

Automattic Mongoose through 5.7.4 allows attackers to bypass access control (in some applications) because any query object with a _bsontype attribute is ignored. For example, adding "_bsontype":"a" can sometimes interfere with a query filter. NOTE: this CVE is about Mongoose's failure to work around this _bsontype special case that exists in older versions of the bson parser (aka the mongodb/js-bson project).

Secure versions: [6.0.0-rc0, 6.0.0-rc1, 6.0.0-rc2, 7.0.0-rc0, 7.3.3, 6.11.3, 5.13.20, 7.3.4, 6.11.4, 7.4.0, 7.4.1, 6.11.5, 7.4.2, 7.4.3, 6.11.6, 7.4.4, 6.12.0, 7.4.5, 7.5.0, 7.5.1, 7.5.2, 7.5.3, 7.5.4, 7.6.0, 7.6.1, 6.12.1, 7.6.2, 7.6.3, 5.13.21, 8.0.0-rc0, 6.12.2, 7.6.4, 8.0.0, 6.12.3, 7.6.5, 8.0.1, 7.6.6, 8.0.2, 7.6.7, 8.0.3, 6.12.4, 5.13.22, 6.12.5, 7.6.8, 8.0.4, 8.1.0, 6.12.6, 8.1.1, 8.1.2, 8.1.3, 8.2.0, 7.6.9, 6.12.7, 8.2.1, 7.6.10, 8.2.2, 8.2.3, 8.2.4, 8.3.0, 8.3.1, 6.12.8, 7.6.11, 8.3.2, 8.3.3, 8.3.4, 8.3.5, 8.4.0, 7.6.12, 6.12.9, 8.4.1, 7.6.13, 6.13.0]

Recommendation: Update to version 8.4.1.

Mongoose Prototype Pollution vulnerability

Published date: 2023-07-17T03:30:20Z

CVE: CVE-2023-3696

Links:

Prototype Pollution in GitHub repository automattic/mongoose prior to 7.3.3, 6.11.3, and 5.13.20.

Affected versions: ["0.0.1", "0.0.2", "0.0.3", "0.0.4", "0.0.5", "1.0.0", "1.0.1", "1.0.2", "0.0.6", "1.0.3", "1.0.4", "1.0.5", "1.0.6", "1.0.7", "1.0.8", "1.0.10", "1.0.11", "1.0.12", "1.0.13", "1.0.14", "1.0.15", "1.0.16", "1.1.0", "1.1.1", "1.1.2", "1.1.3", "1.1.4", "1.1.5", "1.1.6", "1.1.7", "1.1.8", "1.1.9", "1.1.10", "1.1.11", "1.1.12", "1.1.13", "1.1.14", "1.1.15", "1.1.16", "1.1.17", "1.1.18", "1.1.19", "1.1.20", "1.1.21", "1.1.22", "1.1.23", "1.1.24", "1.1.25", "1.2.0", "1.3.0", "1.3.1", "1.3.2", "1.3.3", "1.3.4", "1.3.5", "1.3.6", "1.3.7", "1.4.0", "1.5.0", "1.6.0", "1.7.2", "1.7.3", "1.7.4", "1.8.0", "1.8.1", "1.8.2", "1.8.3", "1.8.4", "2.0.0", "2.0.1", "2.0.2", "2.0.3", "2.0.4", "2.1.0", "2.1.1", "2.1.2", "2.1.3", "2.1.4", "2.2.0", "2.2.1", "2.2.2", "2.2.3", "2.2.4", "2.3.0", "2.3.1", "2.3.2", "2.3.3", "2.3.4", "2.3.5", "2.3.6", "2.3.7", "2.3.8", "2.3.9", "2.3.10", "2.3.11", "2.3.12", "2.3.13", "2.4.0", "2.4.1", "2.4.2", "2.4.3", "2.4.4", "2.4.5", "2.4.6", "2.4.7", "2.4.8", "2.4.9", "2.4.10", "2.5.0", "2.5.1", "2.5.2", "2.5.3", "2.5.4", "2.5.5", "2.5.6", "2.5.7", "2.5.8", "2.5.9", "2.5.10", "2.5.11", "2.5.12", "2.5.13", "2.5.14", "2.6.0", "2.6.1", "2.6.2", "2.6.3", "2.6.4", "2.6.5", "2.6.6", "2.6.7", "2.6.8", "2.7.0", "2.7.1", "2.7.2", "2.7.4", "2.7.3", "3.0.0", "3.0.1", "3.0.2", "2.8.0", "3.0.3", "3.1.0", "2.8.1", "3.1.1", "2.8.2", "2.8.3", "2.9.0", "3.2.0", "2.9.1", "3.2.1", "2.9.2", "3.2.2", "3.3.0", "3.3.1", "2.9.3", "3.4.0", "2.9.4", "2.9.5", "3.5.0", "3.5.1", "3.5.2", "3.5.3", "2.9.6", "2.9.7", "3.5.4", "3.5.5", "2.9.8", "2.9.9", "3.5.6", "3.5.7", "3.5.8", "2.9.10", "3.5.9", "3.6.2", "3.5.10", "3.6.3", "3.5.11", "3.6.4", "3.6.5", "3.6.6", "3.6.7", "3.5.12", "3.6.8", "3.6.9", "3.6.10", "3.5.13", "3.5.14", "3.6.11", "3.6.12", "3.6.13", "3.6.14", "3.6.15", "3.5.15", "3.7.0", "3.6.16", "3.5.16", "3.6.17", "3.7.2", "3.0.0-alpha1", "3.0.0-alpha2", "3.0.0-rc0", "3.6.0-rc0", "3.6.0-rc1", "3.6.18", "3.7.3", "3.6.19", "3.6.20", "3.7.4", "3.8.0", "3.8.1", "3.8.2", "3.8.3", "3.8.4", "3.8.5", "3.8.6", "3.8.7", "3.8.8", "3.8.9", "3.8.10", "3.8.11", "3.9.0", "3.8.12", "3.8.13", "3.8.14", "3.8.15", "3.9.1", "3.8.16", "3.9.2", "3.8.17", "3.9.3", "3.8.18", "3.9.4", "3.8.19", "3.9.5", "3.8.20", "3.9.6", "3.8.21", "3.9.7", "3.8.22", "4.0.0-rc0", "4.0.0-rc1", "3.8.23", "4.0.0-rc2", "3.8.24", "4.0.0-rc3", "3.8.25", "4.0.0-rc4", "4.0.0", "4.0.1", "3.8.26", "3.8.27", "4.0.2", "3.8.28", "4.0.3", "3.8.29", "4.0.4", "3.8.30", "4.0.5", "3.8.31", "4.0.6", "3.8.33", "4.0.7", "3.8.34", "4.0.8", "4.1.0", "4.1.1", "4.1.2", "3.8.35", "4.1.3", "4.1.5", "4.1.6", "4.1.7", "4.1.8", "4.1.9", "4.1.10", "4.1.11", "3.8.36", "4.1.12", "4.2.0", "4.2.1", "4.2.2", "4.2.3", "4.2.4", "4.2.5", "3.8.37", "4.2.6", "4.2.7", "4.2.8", "4.2.9", "4.2.10", "4.3.0", "4.3.1", "4.3.2", "4.3.3", "4.3.4", "3.8.38", "4.3.5", "4.3.6", "3.8.39", "4.3.7", "4.4.0", "4.4.1", "4.4.2", "4.4.3", "4.4.4", "4.4.5", "4.4.6", "4.4.7", "4.4.8", "4.4.9", "4.4.10", "4.4.11", "4.4.12", "4.4.13", "3.8.40", "4.4.14", "4.4.15", "4.4.16", "4.4.17", "4.4.18", "4.4.19", "4.4.20", "4.5.0", "4.5.1", "4.5.2", "4.5.3", "4.5.4", "4.5.5", "4.5.6", "4.5.7", "4.5.8", "4.5.9", "4.5.10", "4.6.0", "4.6.1", "4.6.2", "4.6.3", "4.6.4", "4.6.5", "4.6.6", "4.6.7", "4.6.8", "4.7.0", "4.7.1", "4.7.2", "4.7.3", "4.7.4", "4.7.5-pre", "4.7.5", "4.7.6", "4.7.7", "4.7.8", "4.7.9", "4.8.0", "4.8.1", "4.8.2", "4.8.3", "4.8.4", "4.8.5", "4.8.6", "4.8.7", "4.9.0", "4.9.1", "4.9.2", "4.9.3", "4.9.4", "4.9.5", "4.9.6", "4.9.7", "4.9.8", "4.9.9", "4.9.10", "4.10.0", "4.10.1", "4.10.2", "4.10.3", "4.10.4", "4.10.5", "4.10.6", "4.10.7", "4.10.8", "4.11.0", "4.11.1", "4.11.2", "4.11.3", "4.11.4", "4.11.5", "4.11.6", "4.11.7", "4.11.8", "4.11.9", "4.11.10", "4.11.11", "4.11.12", "4.11.13", "4.11.14", "4.12.0", "4.12.1", "4.12.2", "4.12.3", "4.12.4", "4.12.5", "4.12.6", "4.13.0", "4.13.1", "4.13.2", "4.13.3", "4.13.4", "4.13.5", "4.13.6", "4.13.7", "4.13.8", "5.0.0-rc0", "5.0.0-rc1", "5.0.0-rc2", "4.13.9", "5.0.0", "5.0.1", "4.13.10", "5.0.2", "5.0.3", "4.13.11", "5.0.4", "5.0.5", "5.0.6", "5.0.7", "5.0.8", "5.0.9", "5.0.10", "4.13.12", "5.0.11", "5.0.12", "5.0.13", "5.0.14", "5.0.15", "5.0.16", "5.0.17", "5.0.18", "5.1.0", "5.1.1", "4.13.13", "5.1.2", "4.13.14", "5.1.3", "5.1.4", "5.1.5", "5.1.6", "5.1.7", "5.1.8", "5.2.0", "5.2.1", "5.2.2", "5.2.3", "5.2.4", "5.2.5", "5.2.6", "5.2.7", "5.2.8", "4.13.15", "5.2.9", "5.2.10", "4.13.16", "5.2.11", "4.13.17", "5.2.12", "5.2.13", "5.2.14", "5.2.15", "5.2.16", "5.2.17", "5.2.18", "5.3.0", "5.3.1", "5.3.2", "5.3.3", "5.3.4", "5.3.5", "5.3.6", "5.3.7", "5.3.8", "5.3.9", "5.3.10", "5.3.11", "5.3.12", "5.3.13", "5.3.14", "5.3.15", "5.3.16", "5.4.0", "5.4.1", "5.4.2", "5.4.3", "5.4.4", "5.4.5", "4.13.18", "5.4.6", "5.4.7", "5.4.8", "5.4.9", "5.4.10", "5.4.11", "5.4.12", "5.4.13", "5.4.14", "5.4.15", "5.4.16", "5.4.17", "5.4.18", "5.4.19", "5.4.20", "5.4.21", "5.4.22", "5.4.23", "5.5.0", "5.5.1", "5.5.2", "5.5.3", "5.5.4", "5.5.5", "5.5.6", "5.5.7", "5.5.8", "5.5.9", "5.5.10", "5.5.11", "5.5.12", "5.5.13", "5.5.14", "5.5.15", "5.6.0", "5.6.1", "5.6.2", "5.6.3", "5.6.4", "5.6.5", "4.13.19", "5.6.6", "5.6.7", "5.6.8", "5.6.9", "5.6.10", "5.6.11", "5.6.12", "5.6.13", "5.7.0", "5.7.1", "5.7.3", "5.7.4", "5.7.5", "5.7.6", "5.7.7", "5.7.8", "5.7.9", "5.7.10", "5.7.11", "5.7.12", "5.7.13", "5.7.14", "5.8.0", "5.8.1", "5.8.2", "5.8.3", "5.8.4", "5.8.5", "4.13.20", "5.8.6", "5.8.7", "5.8.9", "5.8.10", "5.8.11", "5.8.12", "5.8.13", "5.9.0", "5.9.1", "5.9.2", "5.9.3", "5.9.4", "5.9.5", "5.9.6", "5.9.7", "5.9.9", "5.9.10", "5.9.11", "5.9.12", "5.9.13", "5.9.14", "5.9.15", "5.9.16", "5.9.17", "5.9.18", "5.9.19", "5.9.20", "5.9.21", "5.9.22", "5.9.23", "4.13.21", "5.9.24", "5.9.25", "5.9.26", "5.9.27", "5.9.28", "5.9.29", "5.10.0", "5.10.1", "5.10.2", "5.10.3", "5.10.4", "5.10.5", "5.10.6", "5.10.7", "5.10.8", "5.10.9", "5.10.10", "5.10.11", "5.10.12", "5.10.13", "5.10.14", "5.10.15", "5.10.16", "5.10.17", "5.10.18", "5.10.19", "5.11.0", "5.11.1", "5.11.2", "5.11.3", "5.11.4", "5.11.5", "5.11.6", "5.11.7", "5.11.8", "5.11.9", "5.11.10", "5.11.11", "5.11.12", "5.11.13", "5.11.14", "5.11.15", "5.11.16", "5.11.17", "5.11.18", "5.11.19", "5.11.20", "5.12.0", "5.12.1", "5.12.2", "5.12.3", "5.12.4", "5.12.5", "5.12.6", "5.12.7", "5.12.8", "5.12.9", "5.12.10", "5.12.11", "5.12.12", "5.12.13", "5.12.14", "5.12.15", "5.13.0", "5.13.1", "5.13.2", "5.13.3", "5.13.4", "5.13.5", "5.13.6", "5.13.7", "5.13.8", "5.13.9", "5.13.10", "5.13.11", "5.13.12", "5.13.13", "5.13.14", "5.13.15", "5.13.16", "5.13.17", "5.13.18", "5.13.19", "6.0.0", "6.0.1", "6.0.2", "6.0.3", "6.0.4", "6.0.5", "6.0.6", "6.0.7", "6.0.8", "6.0.9", "6.0.10", "6.0.11", "6.0.12", "6.0.13", "6.0.14", "6.0.15", "6.1.0", "6.1.1", "6.1.2", "6.1.3", "6.1.4", "6.1.5", "6.1.6", "6.1.7", "6.1.8", "6.1.9", "6.1.10", "6.2.0", "6.2.1", "6.2.2", "6.2.3", "6.2.4", "6.2.5", "6.2.6", "6.2.7", "6.2.8", "6.2.9", "6.2.10", "6.2.11", "6.3.0", "6.3.1", "6.3.2", "6.3.3", "6.3.4", "6.3.5", "6.3.6", "6.3.7", "6.3.8", "6.3.9", "6.4.0", "6.4.1", "6.4.2", "6.4.3", "6.4.4", "6.4.5", "6.4.6", "6.4.7", "6.5.0", "6.5.1", "6.5.2", "6.5.3", "6.5.4", "6.5.5", "6.6.0", "6.6.1", "6.6.2", "6.6.3", "6.6.4", "6.6.5", "6.6.6", "6.6.7", "6.7.0", "6.7.1", "6.7.2", "6.7.3", "6.7.4", "6.7.5", "6.8.0", "6.8.1", "6.8.2", "6.8.3", "6.8.4", "6.9.0", "6.9.1", "6.9.2", "6.9.3", "6.10.0", "6.10.1", "6.10.2", "6.10.3", "6.10.4", "6.10.5", "6.11.0", "6.11.1", "6.11.2", "7.0.0", "7.0.1", "7.0.2", "7.0.3", "7.0.4", "7.0.5", "7.1.0", "7.1.1", "7.1.2", "7.2.0", "7.2.1", "7.2.2", "7.2.3", "7.2.4", "7.3.0", "7.3.1", "7.3.2"]

Recommendation: Update to version 8.4.1.

automattic/mongoose vulnerable to Prototype pollution via Schema.path

Published date: 2022-07-29T00:00:18Z

CVE: CVE-2022-2564

Links:

Mongoose is a MongoDB object modeling tool designed to work in an asynchronous environment. Affected versions of this package are vulnerable to Prototype Pollution. The Schema.path() function is vulnerable to prototype pollution when setting the schema object. This vulnerability allows modification of the Object prototype and could be manipulated into a Denial of Service (DoS) attack.

Affected versions: ["0.0.1", "0.0.2", "0.0.3", "0.0.4", "0.0.5", "1.0.0", "1.0.1", "1.0.2", "0.0.6", "1.0.3", "1.0.4", "1.0.5", "1.0.6", "1.0.7", "1.0.8", "1.0.10", "1.0.11", "1.0.12", "1.0.13", "1.0.14", "1.0.15", "1.0.16", "1.1.0", "1.1.1", "1.1.2", "1.1.3", "1.1.4", "1.1.5", "1.1.6", "1.1.7", "1.1.8", "1.1.9", "1.1.10", "1.1.11", "1.1.12", "1.1.13", "1.1.14", "1.1.15", "1.1.16", "1.1.17", "1.1.18", "1.1.19", "1.1.20", "1.1.21", "1.1.22", "1.1.23", "1.1.24", "1.1.25", "1.2.0", "1.3.0", "1.3.1", "1.3.2", "1.3.3", "1.3.4", "1.3.5", "1.3.6", "1.3.7", "1.4.0", "1.5.0", "1.6.0", "1.7.2", "1.7.3", "1.7.4", "1.8.0", "1.8.1", "1.8.2", "1.8.3", "1.8.4", "2.0.0", "2.0.1", "2.0.2", "2.0.3", "2.0.4", "2.1.0", "2.1.1", "2.1.2", "2.1.3", "2.1.4", "2.2.0", "2.2.1", "2.2.2", "2.2.3", "2.2.4", "2.3.0", "2.3.1", "2.3.2", "2.3.3", "2.3.4", "2.3.5", "2.3.6", "2.3.7", "2.3.8", "2.3.9", "2.3.10", "2.3.11", "2.3.12", "2.3.13", "2.4.0", "2.4.1", "2.4.2", "2.4.3", "2.4.4", "2.4.5", "2.4.6", "2.4.7", "2.4.8", "2.4.9", "2.4.10", "2.5.0", "2.5.1", "2.5.2", "2.5.3", "2.5.4", "2.5.5", "2.5.6", "2.5.7", "2.5.8", "2.5.9", "2.5.10", "2.5.11", "2.5.12", "2.5.13", "2.5.14", "2.6.0", "2.6.1", "2.6.2", "2.6.3", "2.6.4", "2.6.5", "2.6.6", "2.6.7", "2.6.8", "2.7.0", "2.7.1", "2.7.2", "2.7.4", "2.7.3", "3.0.0", "3.0.1", "3.0.2", "2.8.0", "3.0.3", "3.1.0", "2.8.1", "3.1.1", "2.8.2", "2.8.3", "2.9.0", "3.2.0", "2.9.1", "3.2.1", "2.9.2", "3.2.2", "3.3.0", "3.3.1", "2.9.3", "3.4.0", "2.9.4", "2.9.5", "3.5.0", "3.5.1", "3.5.2", "3.5.3", "2.9.6", "2.9.7", "3.5.4", "3.5.5", "2.9.8", "2.9.9", "3.5.6", "3.5.7", "3.5.8", "2.9.10", "3.5.9", "3.6.2", "3.5.10", "3.6.3", "3.5.11", "3.6.4", "3.6.5", "3.6.6", "3.6.7", "3.5.12", "3.6.8", "3.6.9", "3.6.10", "3.5.13", "3.5.14", "3.6.11", "3.6.12", "3.6.13", "3.6.14", "3.6.15", "3.5.15", "3.7.0", "3.6.16", "3.5.16", "3.6.17", "3.7.2", "3.0.0-alpha1", "3.0.0-alpha2", "3.0.0-rc0", "3.6.0-rc0", "3.6.0-rc1", "3.6.18", "3.7.3", "3.6.19", "3.6.20", "3.7.4", "3.8.0", "3.8.1", "3.8.2", "3.8.3", "3.8.4", "3.8.5", "3.8.6", "3.8.7", "3.8.8", "3.8.9", "3.8.10", "3.8.11", "3.9.0", "3.8.12", "3.8.13", "3.8.14", "3.8.15", "3.9.1", "3.8.16", "3.9.2", "3.8.17", "3.9.3", "3.8.18", "3.9.4", "3.8.19", "3.9.5", "3.8.20", "3.9.6", "3.8.21", "3.9.7", "3.8.22", "4.0.0-rc0", "4.0.0-rc1", "3.8.23", "4.0.0-rc2", "3.8.24", "4.0.0-rc3", "3.8.25", "4.0.0-rc4", "4.0.0", "4.0.1", "3.8.26", "3.8.27", "4.0.2", "3.8.28", "4.0.3", "3.8.29", "4.0.4", "3.8.30", "4.0.5", "3.8.31", "4.0.6", "3.8.33", "4.0.7", "3.8.34", "4.0.8", "4.1.0", "4.1.1", "4.1.2", "3.8.35", "4.1.3", "4.1.5", "4.1.6", "4.1.7", "4.1.8", "4.1.9", "4.1.10", "4.1.11", "3.8.36", "4.1.12", "4.2.0", "4.2.1", "4.2.2", "4.2.3", "4.2.4", "4.2.5", "3.8.37", "4.2.6", "4.2.7", "4.2.8", "4.2.9", "4.2.10", "4.3.0", "4.3.1", "4.3.2", "4.3.3", "4.3.4", "3.8.38", "4.3.5", "4.3.6", "3.8.39", "4.3.7", "4.4.0", "4.4.1", "4.4.2", "4.4.3", "4.4.4", "4.4.5", "4.4.6", "4.4.7", "4.4.8", "4.4.9", "4.4.10", "4.4.11", "4.4.12", "4.4.13", "3.8.40", "4.4.14", "4.4.15", "4.4.16", "4.4.17", "4.4.18", "4.4.19", "4.4.20", "4.5.0", "4.5.1", "4.5.2", "4.5.3", "4.5.4", "4.5.5", "4.5.6", "4.5.7", "4.5.8", "4.5.9", "4.5.10", "4.6.0", "4.6.1", "4.6.2", "4.6.3", "4.6.4", "4.6.5", "4.6.6", "4.6.7", "4.6.8", "4.7.0", "4.7.1", "4.7.2", "4.7.3", "4.7.4", "4.7.5-pre", "4.7.5", "4.7.6", "4.7.7", "4.7.8", "4.7.9", "4.8.0", "4.8.1", "4.8.2", "4.8.3", "4.8.4", "4.8.5", "4.8.6", "4.8.7", "4.9.0", "4.9.1", "4.9.2", "4.9.3", "4.9.4", "4.9.5", "4.9.6", "4.9.7", "4.9.8", "4.9.9", "4.9.10", "4.10.0", "4.10.1", "4.10.2", "4.10.3", "4.10.4", "4.10.5", "4.10.6", "4.10.7", "4.10.8", "4.11.0", "4.11.1", "4.11.2", "4.11.3", "4.11.4", "4.11.5", "4.11.6", "4.11.7", "4.11.8", "4.11.9", "4.11.10", "4.11.11", "4.11.12", "4.11.13", "4.11.14", "4.12.0", "4.12.1", "4.12.2", "4.12.3", "4.12.4", "4.12.5", "4.12.6", "4.13.0", "4.13.1", "4.13.2", "4.13.3", "4.13.4", "4.13.5", "4.13.6", "4.13.7", "4.13.8", "5.0.0-rc0", "5.0.0-rc1", "5.0.0-rc2", "4.13.9", "5.0.0", "5.0.1", "4.13.10", "5.0.2", "5.0.3", "4.13.11", "5.0.4", "5.0.5", "5.0.6", "5.0.7", "5.0.8", "5.0.9", "5.0.10", "4.13.12", "5.0.11", "5.0.12", "5.0.13", "5.0.14", "5.0.15", "5.0.16", "5.0.17", "5.0.18", "5.1.0", "5.1.1", "4.13.13", "5.1.2", "4.13.14", "5.1.3", "5.1.4", "5.1.5", "5.1.6", "5.1.7", "5.1.8", "5.2.0", "5.2.1", "5.2.2", "5.2.3", "5.2.4", "5.2.5", "5.2.6", "5.2.7", "5.2.8", "4.13.15", "5.2.9", "5.2.10", "4.13.16", "5.2.11", "4.13.17", "5.2.12", "5.2.13", "5.2.14", "5.2.15", "5.2.16", "5.2.17", "5.2.18", "5.3.0", "5.3.1", "5.3.2", "5.3.3", "5.3.4", "5.3.5", "5.3.6", "5.3.7", "5.3.8", "5.3.9", "5.3.10", "5.3.11", "5.3.12", "5.3.13", "5.3.14", "5.3.15", "5.3.16", "5.4.0", "5.4.1", "5.4.2", "5.4.3", "5.4.4", "5.4.5", "4.13.18", "5.4.6", "5.4.7", "5.4.8", "5.4.9", "5.4.10", "5.4.11", "5.4.12", "5.4.13", "5.4.14", "5.4.15", "5.4.16", "5.4.17", "5.4.18", "5.4.19", "5.4.20", "5.4.21", "5.4.22", "5.4.23", "5.5.0", "5.5.1", "5.5.2", "5.5.3", "5.5.4", "5.5.5", "5.5.6", "5.5.7", "5.5.8", "5.5.9", "5.5.10", "5.5.11", "5.5.12", "5.5.13", "5.5.14", "5.5.15", "5.6.0", "5.6.1", "5.6.2", "5.6.3", "5.6.4", "5.6.5", "4.13.19", "5.6.6", "5.6.7", "5.6.8", "5.6.9", "5.6.10", "5.6.11", "5.6.12", "5.6.13", "5.7.0", "5.7.1", "5.7.3", "5.7.4", "5.7.5", "5.7.6", "5.7.7", "5.7.8", "5.7.9", "5.7.10", "5.7.11", "5.7.12", "5.7.13", "5.7.14", "5.8.0", "5.8.1", "5.8.2", "5.8.3", "5.8.4", "5.8.5", "4.13.20", "5.8.6", "5.8.7", "5.8.9", "5.8.10", "5.8.11", "5.8.12", "5.8.13", "5.9.0", "5.9.1", "5.9.2", "5.9.3", "5.9.4", "5.9.5", "5.9.6", "5.9.7", "5.9.9", "5.9.10", "5.9.11", "5.9.12", "5.9.13", "5.9.14", "5.9.15", "5.9.16", "5.9.17", "5.9.18", "5.9.19", "5.9.20", "5.9.21", "5.9.22", "5.9.23", "4.13.21", "5.9.24", "5.9.25", "5.9.26", "5.9.27", "5.9.28", "5.9.29", "5.10.0", "5.10.1", "5.10.2", "5.10.3", "5.10.4", "5.10.5", "5.10.6", "5.10.7", "5.10.8", "5.10.9", "5.10.10", "5.10.11", "5.10.12", "5.10.13", "5.10.14", "5.10.15", "5.10.16", "5.10.17", "5.10.18", "5.10.19", "5.11.0", "5.11.1", "5.11.2", "5.11.3", "5.11.4", "5.11.5", "5.11.6", "5.11.7", "5.11.8", "5.11.9", "5.11.10", "5.11.11", "5.11.12", "5.11.13", "5.11.14", "5.11.15", "5.11.16", "5.11.17", "5.11.18", "5.11.19", "5.11.20", "5.12.0", "5.12.1", "5.12.2", "5.12.3", "5.12.4", "5.12.5", "5.12.6", "5.12.7", "5.12.8", "5.12.9", "5.12.10", "5.12.11", "5.12.12", "5.12.13", "5.12.14", "5.12.15", "5.13.0", "5.13.1", "5.13.2", "5.13.3", "5.13.4", "5.13.5", "5.13.6", "5.13.7", "5.13.8", "5.13.9", "5.13.10", "5.13.11", "5.13.12", "5.13.13", "5.13.14", "6.0.0", "6.0.1", "6.0.2", "6.0.3", "6.0.4", "6.0.5", "6.0.6", "6.0.7", "6.0.8", "6.0.9", "6.0.10", "6.0.11", "6.0.12", "6.0.13", "6.0.14", "6.0.15", "6.1.0", "6.1.1", "6.1.2", "6.1.3", "6.1.4", "6.1.5", "6.1.6", "6.1.7", "6.1.8", "6.1.9", "6.1.10", "6.2.0", "6.2.1", "6.2.2", "6.2.3", "6.2.4", "6.2.5", "6.2.6", "6.2.7", "6.2.8", "6.2.9", "6.2.10", "6.2.11", "6.3.0", "6.3.1", "6.3.2", "6.3.3", "6.3.4", "6.3.5", "6.3.6", "6.3.7", "6.3.8", "6.3.9", "6.4.0", "6.4.1", "6.4.2", "6.4.3", "6.4.4", "6.4.5"]

Recommendation: Update to version 8.4.1.

Mongoose Vulnerable to Prototype Pollution in Schema Object

Published date: 2022-08-27T00:00:54Z

CVE: CVE-2022-24304

Links:

Description

Mongoose is a MongoDB object modeling tool designed to work in an asynchronous environment.

Affected versions of this package are vulnerable to Prototype Pollution. The Schema.path() function is vulnerable to prototype pollution when setting the schema object. This vulnerability allows modification of the Object prototype and could be manipulated into a Denial of Service (DoS) attack.

Proof of Concept

// poc.js
const mongoose = require('mongoose');
const schema = new mongoose.Schema();

malicious_payload = '__proto__.toString'

schema.path(malicious_payload, [String])

x = {}
console.log(x.toString()) // crashed (Denial of service (DoS) attack)

Impact

This vulnerability can be manipulated to exploit other types of attacks, such as Denial of service (DoS), Remote Code Execution, or Property Injection.

Affected versions: ["0.0.1", "0.0.2", "0.0.3", "0.0.4", "0.0.5", "1.0.0", "1.0.1", "1.0.2", "0.0.6", "1.0.3", "1.0.4", "1.0.5", "1.0.6", "1.0.7", "1.0.8", "1.0.10", "1.0.11", "1.0.12", "1.0.13", "1.0.14", "1.0.15", "1.0.16", "1.1.0", "1.1.1", "1.1.2", "1.1.3", "1.1.4", "1.1.5", "1.1.6", "1.1.7", "1.1.8", "1.1.9", "1.1.10", "1.1.11", "1.1.12", "1.1.13", "1.1.14", "1.1.15", "1.1.16", "1.1.17", "1.1.18", "1.1.19", "1.1.20", "1.1.21", "1.1.22", "1.1.23", "1.1.24", "1.1.25", "1.2.0", "1.3.0", "1.3.1", "1.3.2", "1.3.3", "1.3.4", "1.3.5", "1.3.6", "1.3.7", "1.4.0", "1.5.0", "1.6.0", "1.7.2", "1.7.3", "1.7.4", "1.8.0", "1.8.1", "1.8.2", "1.8.3", "1.8.4", "2.0.0", "2.0.1", "2.0.2", "2.0.3", "2.0.4", "2.1.0", "2.1.1", "2.1.2", "2.1.3", "2.1.4", "2.2.0", "2.2.1", "2.2.2", "2.2.3", "2.2.4", "2.3.0", "2.3.1", "2.3.2", "2.3.3", "2.3.4", "2.3.5", "2.3.6", "2.3.7", "2.3.8", "2.3.9", "2.3.10", "2.3.11", "2.3.12", "2.3.13", "2.4.0", "2.4.1", "2.4.2", "2.4.3", "2.4.4", "2.4.5", "2.4.6", "2.4.7", "2.4.8", "2.4.9", "2.4.10", "2.5.0", "2.5.1", "2.5.2", "2.5.3", "2.5.4", "2.5.5", "2.5.6", "2.5.7", "2.5.8", "2.5.9", "2.5.10", "2.5.11", "2.5.12", "2.5.13", "2.5.14", "2.6.0", "2.6.1", "2.6.2", "2.6.3", "2.6.4", "2.6.5", "2.6.6", "2.6.7", "2.6.8", "2.7.0", "2.7.1", "2.7.2", "2.7.4", "2.7.3", "3.0.0", "3.0.1", "3.0.2", "2.8.0", "3.0.3", "3.1.0", "2.8.1", "3.1.1", "2.8.2", "2.8.3", "2.9.0", "3.2.0", "2.9.1", "3.2.1", "2.9.2", "3.2.2", "3.3.0", "3.3.1", "2.9.3", "3.4.0", "2.9.4", "2.9.5", "3.5.0", "3.5.1", "3.5.2", "3.5.3", "2.9.6", "2.9.7", "3.5.4", "3.5.5", "2.9.8", "2.9.9", "3.5.6", "3.5.7", "3.5.8", "2.9.10", "3.5.9", "3.6.2", "3.5.10", "3.6.3", "3.5.11", "3.6.4", "3.6.5", "3.6.6", "3.6.7", "3.5.12", "3.6.8", "3.6.9", "3.6.10", "3.5.13", "3.5.14", "3.6.11", "3.6.12", "3.6.13", "3.6.14", "3.6.15", "3.5.15", "3.7.0", "3.6.16", "3.5.16", "3.6.17", "3.7.2", "3.0.0-alpha1", "3.0.0-alpha2", "3.0.0-rc0", "3.6.0-rc0", "3.6.0-rc1", "3.6.18", "3.7.3", "3.6.19", "3.6.20", "3.7.4", "3.8.0", "3.8.1", "3.8.2", "3.8.3", "3.8.4", "3.8.5", "3.8.6", "3.8.7", "3.8.8", "3.8.9", "3.8.10", "3.8.11", "3.9.0", "3.8.12", "3.8.13", "3.8.14", "3.8.15", "3.9.1", "3.8.16", "3.9.2", "3.8.17", "3.9.3", "3.8.18", "3.9.4", "3.8.19", "3.9.5", "3.8.20", "3.9.6", "3.8.21", "3.9.7", "3.8.22", "4.0.0-rc0", "4.0.0-rc1", "3.8.23", "4.0.0-rc2", "3.8.24", "4.0.0-rc3", "3.8.25", "4.0.0-rc4", "4.0.0", "4.0.1", "3.8.26", "3.8.27", "4.0.2", "3.8.28", "4.0.3", "3.8.29", "4.0.4", "3.8.30", "4.0.5", "3.8.31", "4.0.6", "3.8.33", "4.0.7", "3.8.34", "4.0.8", "4.1.0", "4.1.1", "4.1.2", "3.8.35", "4.1.3", "4.1.5", "4.1.6", "4.1.7", "4.1.8", "4.1.9", "4.1.10", "4.1.11", "3.8.36", "4.1.12", "4.2.0", "4.2.1", "4.2.2", "4.2.3", "4.2.4", "4.2.5", "3.8.37", "4.2.6", "4.2.7", "4.2.8", "4.2.9", "4.2.10", "4.3.0", "4.3.1", "4.3.2", "4.3.3", "4.3.4", "3.8.38", "4.3.5", "4.3.6", "3.8.39", "4.3.7", "4.4.0", "4.4.1", "4.4.2", "4.4.3", "4.4.4", "4.4.5", "4.4.6", "4.4.7", "4.4.8", "4.4.9", "4.4.10", "4.4.11", "4.4.12", "4.4.13", "3.8.40", "4.4.14", "4.4.15", "4.4.16", "4.4.17", "4.4.18", "4.4.19", "4.4.20", "4.5.0", "4.5.1", "4.5.2", "4.5.3", "4.5.4", "4.5.5", "4.5.6", "4.5.7", "4.5.8", "4.5.9", "4.5.10", "4.6.0", "4.6.1", "4.6.2", "4.6.3", "4.6.4", "4.6.5", "4.6.6", "4.6.7", "4.6.8", "4.7.0", "4.7.1", "4.7.2", "4.7.3", "4.7.4", "4.7.5-pre", "4.7.5", "4.7.6", "4.7.7", "4.7.8", "4.7.9", "4.8.0", "4.8.1", "4.8.2", "4.8.3", "4.8.4", "4.8.5", "4.8.6", "4.8.7", "4.9.0", "4.9.1", "4.9.2", "4.9.3", "4.9.4", "4.9.5", "4.9.6", "4.9.7", "4.9.8", "4.9.9", "4.9.10", "4.10.0", "4.10.1", "4.10.2", "4.10.3", "4.10.4", "4.10.5", "4.10.6", "4.10.7", "4.10.8", "4.11.0", "4.11.1", "4.11.2", "4.11.3", "4.11.4", "4.11.5", "4.11.6", "4.11.7", "4.11.8", "4.11.9", "4.11.10", "4.11.11", "4.11.12", "4.11.13", "4.11.14", "4.12.0", "4.12.1", "4.12.2", "4.12.3", "4.12.4", "4.12.5", "4.12.6", "4.13.0", "4.13.1", "4.13.2", "4.13.3", "4.13.4", "4.13.5", "4.13.6", "4.13.7", "4.13.8", "5.0.0-rc0", "5.0.0-rc1", "5.0.0-rc2", "4.13.9", "5.0.0", "5.0.1", "4.13.10", "5.0.2", "5.0.3", "4.13.11", "5.0.4", "5.0.5", "5.0.6", "5.0.7", "5.0.8", "5.0.9", "5.0.10", "4.13.12", "5.0.11", "5.0.12", "5.0.13", "5.0.14", "5.0.15", "5.0.16", "5.0.17", "5.0.18", "5.1.0", "5.1.1", "4.13.13", "5.1.2", "4.13.14", "5.1.3", "5.1.4", "5.1.5", "5.1.6", "5.1.7", "5.1.8", "5.2.0", "5.2.1", "5.2.2", "5.2.3", "5.2.4", "5.2.5", "5.2.6", "5.2.7", "5.2.8", "4.13.15", "5.2.9", "5.2.10", "4.13.16", "5.2.11", "4.13.17", "5.2.12", "5.2.13", "5.2.14", "5.2.15", "5.2.16", "5.2.17", "5.2.18", "5.3.0", "5.3.1", "5.3.2", "5.3.3", "5.3.4", "5.3.5", "5.3.6", "5.3.7", "5.3.8", "5.3.9", "5.3.10", "5.3.11", "5.3.12", "5.3.13", "5.3.14", "5.3.15", "5.3.16", "5.4.0", "5.4.1", "5.4.2", "5.4.3", "5.4.4", "5.4.5", "4.13.18", "5.4.6", "5.4.7", "5.4.8", "5.4.9", "5.4.10", "5.4.11", "5.4.12", "5.4.13", "5.4.14", "5.4.15", "5.4.16", "5.4.17", "5.4.18", "5.4.19", "5.4.20", "5.4.21", "5.4.22", "5.4.23", "5.5.0", "5.5.1", "5.5.2", "5.5.3", "5.5.4", "5.5.5", "5.5.6", "5.5.7", "5.5.8", "5.5.9", "5.5.10", "5.5.11", "5.5.12", "5.5.13", "5.5.14", "5.5.15", "5.6.0", "5.6.1", "5.6.2", "5.6.3", "5.6.4", "5.6.5", "4.13.19", "5.6.6", "5.6.7", "5.6.8", "5.6.9", "5.6.10", "5.6.11", "5.6.12", "5.6.13", "5.7.0", "5.7.1", "5.7.3", "5.7.4", "5.7.5", "5.7.6", "5.7.7", "5.7.8", "5.7.9", "5.7.10", "5.7.11", "5.7.12", "5.7.13", "5.7.14", "5.8.0", "5.8.1", "5.8.2", "5.8.3", "5.8.4", "5.8.5", "4.13.20", "5.8.6", "5.8.7", "5.8.9", "5.8.10", "5.8.11", "5.8.12", "5.8.13", "5.9.0", "5.9.1", "5.9.2", "5.9.3", "5.9.4", "5.9.5", "5.9.6", "5.9.7", "5.9.9", "5.9.10", "5.9.11", "5.9.12", "5.9.13", "5.9.14", "5.9.15", "5.9.16", "5.9.17", "5.9.18", "5.9.19", "5.9.20", "5.9.21", "5.9.22", "5.9.23", "4.13.21", "5.9.24", "5.9.25", "5.9.26", "5.9.27", "5.9.28", "5.9.29", "5.10.0", "5.10.1", "5.10.2", "5.10.3", "5.10.4", "5.10.5", "5.10.6", "5.10.7", "5.10.8", "5.10.9", "5.10.10", "5.10.11", "5.10.12", "5.10.13", "5.10.14", "5.10.15", "5.10.16", "5.10.17", "5.10.18", "5.10.19", "5.11.0", "5.11.1", "5.11.2", "5.11.3", "5.11.4", "5.11.5", "5.11.6", "5.11.7", "5.11.8", "5.11.9", "5.11.10", "5.11.11", "5.11.12", "5.11.13", "5.11.14", "5.11.15", "5.11.16", "5.11.17", "5.11.18", "5.11.19", "5.11.20", "5.12.0", "5.12.1", "5.12.2", "5.12.3", "5.12.4", "5.12.5", "5.12.6", "5.12.7", "5.12.8", "5.12.9", "5.12.10", "5.12.11", "5.12.12", "5.12.13", "5.12.14", "5.12.15", "5.13.0", "5.13.1", "5.13.2", "5.13.3", "5.13.4", "5.13.5", "5.13.6", "5.13.7", "5.13.8", "5.13.9", "5.13.10", "5.13.11", "5.13.12", "5.13.13", "5.13.14", "6.0.0", "6.0.1", "6.0.2", "6.0.3", "6.0.4", "6.0.5", "6.0.6", "6.0.7", "6.0.8", "6.0.9", "6.0.10", "6.0.11", "6.0.12", "6.0.13", "6.0.14", "6.0.15", "6.1.0", "6.1.1", "6.1.2", "6.1.3", "6.1.4", "6.1.5", "6.1.6", "6.1.7", "6.1.8", "6.1.9", "6.1.10", "6.2.0", "6.2.1", "6.2.2", "6.2.3", "6.2.4", "6.2.5", "6.2.6", "6.2.7", "6.2.8", "6.2.9", "6.2.10", "6.2.11", "6.3.0", "6.3.1", "6.3.2", "6.3.3", "6.3.4", "6.3.5", "6.3.6", "6.3.7", "6.3.8", "6.3.9", "6.4.0", "6.4.1", "6.4.2", "6.4.3", "6.4.4", "6.4.5"]

Recommendation: Update to version 8.4.1.

Remote Memory Exposure in mongoose

Published date: 2020-09-01T19:39:37Z

Links:

Versions of mongoose before 4.3.6, 3.8.39 are vulnerable to remote memory exposure.

Trying to save a number to a field of type Buffer on the affected mongoose versions allocates a chunk of uninitialized memory and stores it in the database.

Recommendation

Update to version 4.3.6, 3.8.39 or later.

Affected versions: ["4.0.0", "4.0.1", "4.0.2", "4.0.3", "4.0.4", "4.0.5", "4.0.6", "4.0.7", "4.0.8", "4.1.0", "4.1.1", "4.1.2", "4.1.3", "4.1.5", "4.1.6", "4.1.7", "4.1.8", "4.1.9", "4.1.10", "4.1.11", "4.1.12", "4.2.0", "4.2.1", "4.2.2", "4.2.3", "4.2.4", "4.2.5", "4.2.6", "4.2.7", "4.2.8", "4.2.9", "4.2.10", "4.3.0", "4.3.1", "4.3.2", "4.3.3", "4.3.4", "4.3.5", "3.5.5", "3.5.6", "3.5.7", "3.5.8", "3.5.9", "3.6.2", "3.5.10", "3.6.3", "3.5.11", "3.6.4", "3.6.5", "3.6.6", "3.6.7", "3.5.12", "3.6.8", "3.6.9", "3.6.10", "3.5.13", "3.5.14", "3.6.11", "3.6.12", "3.6.13", "3.6.14", "3.6.15", "3.5.15", "3.7.0", "3.6.16", "3.5.16", "3.6.17", "3.7.2", "3.6.0-rc0", "3.6.0-rc1", "3.6.18", "3.7.3", "3.6.19", "3.6.20", "3.7.4", "3.8.0", "3.8.1", "3.8.2", "3.8.3", "3.8.4", "3.8.5", "3.8.6", "3.8.7", "3.8.8", "3.8.9", "3.8.10", "3.8.11", "3.8.12", "3.8.13", "3.8.14", "3.8.15", "3.8.16", "3.8.17", "3.8.18", "3.8.19", "3.8.20", "3.8.21", "3.8.22", "3.8.23", "3.8.24", "3.8.25", "3.8.26", "3.8.27", "3.8.28", "3.8.29", "3.8.30", "3.8.31", "3.8.33", "3.8.34", "3.8.35", "3.8.36", "3.8.37", "3.8.38"]

Recommendation: Update to version 8.4.1.

Remote Memory Exposure

Published date: 2016-01-15

CVSS Score: 6.5

CVSS Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:H

Links:

Trying to save a number to a field of type Buffer on the affected mongoose versions allocates a chunk of uninitialized memory and stores it in the database.

Affected versions: ["3.5.5", "3.5.6", "3.5.7", "3.5.8", "3.5.9", "3.6.2", "3.5.10", "3.6.3", "3.5.11", "3.6.4", "3.6.5", "3.6.6", "3.6.7", "3.5.12", "3.6.8", "3.6.9", "3.6.10", "3.5.13", "3.5.14", "3.6.11", "3.6.12", "3.6.13", "3.6.14", "3.6.15", "3.5.15", "3.7.0", "3.6.16", "3.5.16", "3.6.17", "3.7.2", "3.6.0-rc0", "3.6.0-rc1", "3.6.18", "3.7.3", "3.6.19", "3.6.20", "3.7.4", "3.8.0", "3.8.1", "3.8.2", "3.8.3", "3.8.4", "3.8.5", "3.8.6", "3.8.7", "3.8.8", "3.8.9", "3.8.10", "3.8.11", "3.8.12", "3.8.13", "3.8.14", "3.8.15", "3.8.16", "3.8.17", "3.8.18", "3.8.19", "3.8.20", "3.8.21", "3.8.22", "3.8.23", "3.8.24", "3.8.25", "3.8.26", "3.8.27", "3.8.28", "3.8.29", "3.8.30", "3.8.31", "3.8.33", "3.8.34", "3.8.35", "3.8.36", "3.8.37", "3.8.38", "4.0.0", "4.0.1", "4.0.2", "4.0.3", "4.0.4", "4.0.5", "4.0.6", "4.0.7", "4.0.8", "4.1.0", "4.1.1", "4.1.2", "4.1.3", "4.1.5", "4.1.6", "4.1.7", "4.1.8", "4.1.9", "4.1.10", "4.1.11", "4.1.12", "4.2.0", "4.2.1", "4.2.2", "4.2.3", "4.2.4", "4.2.5", "4.2.6", "4.2.7", "4.2.8", "4.2.9", "4.2.10", "4.3.0", "4.3.1", "4.3.2", "4.3.3", "4.3.4", "4.3.5"]

Recommendation: update mongoose to 4.3.6 or higher

864 Other Versions

Version	License	Security	Released
3.2.2	MIT	4	2012-10-08 - 18:24	over 11 years
3.2.1	MIT	4	2012-09-29 - 15:01	over 11 years
3.2.0	MIT	4	2012-09-27 - 17:23	over 11 years
3.1.1	MIT	4	2012-09-01 - 01:18	almost 12 years
3.1.0	MIT	4	2012-08-29 - 18:34	almost 12 years
3.0.3	MIT	4	2012-08-23 - 21:02	almost 12 years
3.0.2	MIT	4	2012-08-17 - 16:57	almost 12 years
3.0.1	MIT	4	2012-08-13 - 03:31	almost 12 years
3.0.0	MIT	4	2012-08-07 - 23:42	almost 12 years
3.0.0-rc0	MIT	4	2013-08-16 - 18:47	almost 11 years
3.0.0-alpha2	MIT	4	2013-08-16 - 18:47	almost 11 years
3.0.0-alpha1	MIT	4	2013-08-16 - 18:47	almost 11 years
2.9.10	MIT	4	2013-03-14 - 17:14	about 11 years
2.9.9	MIT	4	2013-02-13 - 20:18	over 11 years
2.9.8	MIT	4	2013-02-07 - 18:18	over 11 years
2.9.7	MIT	4	2013-01-07 - 22:07	over 11 years
2.9.6	MIT	4	2012-12-26 - 18:57	over 11 years
2.9.5	MIT	4	2012-12-10 - 20:00	over 11 years
2.9.4	MIT	4	2012-12-05 - 19:48	over 11 years
2.9.3	MIT	4	2012-11-10 - 19:27	over 11 years
2.9.2	MIT	4	2012-10-08 - 18:23	over 11 years
2.9.1	MIT	4	2012-09-29 - 15:01	over 11 years
2.9.0	MIT	4	2012-09-27 - 17:05	over 11 years
2.8.3	MIT	4	2012-09-10 - 23:35	over 11 years
2.8.2	MIT	4	2012-09-01 - 04:48	almost 12 years
2.8.1	MIT	4	2012-08-29 - 21:01	almost 12 years
2.8.0	MIT	4	2012-08-23 - 16:47	almost 12 years
2.7.4	MIT	4	2012-08-02 - 21:41	almost 12 years
2.7.3	MIT	4	2012-08-02 - 22:56	almost 12 years
2.7.2	MIT	4	2012-07-18 - 16:30	almost 12 years
2.7.1	MIT	4	2012-06-28 - 17:45	almost 12 years
2.7.0	MIT	4	2012-06-15 - 01:36	almost 12 years
2.6.8	MIT	4	2012-06-15 - 01:36	almost 12 years
2.6.7	MIT	4	2012-06-08 - 17:30	about 12 years
2.6.6	MIT	4	2012-06-06 - 22:23	about 12 years
2.6.5	MIT	4	2012-05-24 - 20:32	about 12 years
2.6.4	MIT	4	2012-05-15 - 18:45	about 12 years
2.6.3	MIT	4	2012-05-03 - 18:26	about 12 years
2.6.2	MIT	4	2012-05-01 - 03:28	about 12 years
2.6.1	MIT	4	2012-04-30 - 17:55	about 12 years
2.6.0	MIT	4	2012-04-19 - 23:56	about 12 years
2.5.14	MIT	4	2012-04-13 - 17:11	about 12 years
2.5.13	MIT	4	2012-03-22 - 14:29	about 12 years
2.5.12	MIT	4	2012-03-21 - 12:32	about 12 years
2.5.11	MIT	4	2012-03-15 - 17:43	about 12 years
2.5.10	MIT	4	2012-03-06 - 13:45	over 12 years
2.5.9	MIT	4	2012-02-22 - 22:19	over 12 years
2.5.8	MIT	4	2012-02-21 - 20:20	over 12 years
2.5.7	MIT	4	2012-02-09 - 14:30	over 12 years
2.5.6	MIT	4	2012-02-09 - 13:10	over 12 years
2.5.5	MIT	4	2012-02-03 - 22:09	over 12 years
2.5.4	MIT	4	2012-02-03 - 21:18	over 12 years
2.5.3	MIT	4	2012-02-02 - 13:27	over 12 years
2.5.2	MIT	4	2012-01-30 - 16:52	over 12 years
2.5.1	MIT	4	2012-01-27 - 19:50	over 12 years
2.5.0	MIT	4	2012-01-26 - 06:13	over 12 years
2.4.10	MIT	4	2012-01-10 - 16:32	over 12 years
2.4.9	MIT	4	2012-01-04 - 16:08	over 12 years
2.4.8	MIT	4	2011-12-22 - 18:26	over 12 years
2.4.7	MIT	4	2011-12-16 - 17:14	over 12 years
2.4.6	MIT	4	2011-12-16 - 12:52	over 12 years
2.4.5	MIT	4	2011-12-14 - 21:57	over 12 years
2.4.4	MIT	4	2011-12-14 - 21:09	over 12 years
2.4.3	MIT	4	2011-12-14 - 16:59	over 12 years
2.4.2	MIT	4	2011-12-12 - 15:23	over 12 years
2.4.1	MIT	4	2011-12-02 - 15:17	over 12 years
2.4.0	MIT	4	2011-11-30 - 03:05	over 12 years
2.3.13	MIT	4	2011-11-15 - 15:29	over 12 years
2.3.12	MIT	4	2011-11-09 - 18:36	over 12 years
2.3.11	MIT	4	2011-11-08 - 22:00	over 12 years
2.3.10	MIT	4	2011-11-05 - 20:05	over 12 years
2.3.9	MIT	4	2011-11-04 - 15:45	over 12 years
2.3.8	MIT	4	2011-10-26 - 20:52	over 12 years
2.3.7	MIT	4	2011-10-24 - 15:20	over 12 years
2.3.6	MIT	4	2011-10-21 - 16:40	over 12 years
2.3.5	MIT	4	2011-10-19 - 15:56	over 12 years
2.3.4	MIT	4	2011-10-18 - 16:52	over 12 years
2.3.3	MIT	4	2011-10-12 - 16:47	over 12 years
2.3.2	MIT	4	2011-10-11 - 19:48	over 12 years
2.3.1	MIT	4	2011-10-10 - 22:12	over 12 years
2.3.0	MIT	4	2011-10-04 - 16:45	over 12 years
2.2.4	MIT	4	2011-10-03 - 20:06	over 12 years
2.2.3	MIT	4	2011-09-29 - 18:41	over 12 years
2.2.2	MIT	4	2011-09-28 - 20:58	over 12 years
2.2.1	MIT	4	2011-09-27 - 16:17	over 12 years
2.2.0	MIT	4	2011-09-23 - 02:06	over 12 years
2.1.4	MIT	4	2011-09-20 - 19:26	over 12 years
2.1.3	MIT	4	2011-09-16 - 17:41	over 12 years
2.1.2	MIT	4	2011-09-07 - 21:48	almost 13 years
2.1.1	MIT	4	2011-09-07 - 17:48	almost 13 years
2.1.0	MIT	4	2011-09-02 - 03:09	almost 13 years
2.0.4	MIT	4	2011-08-29 - 18:12	almost 13 years
2.0.3	MIT	4	2011-08-28 - 19:32	almost 13 years
2.0.2	MIT	4	2011-08-26 - 21:57	almost 13 years
2.0.1	MIT	4	2011-08-25 - 16:54	almost 13 years
2.0.0	MIT	4	2011-08-25 - 06:29	almost 13 years
1.8.4	MIT	4	2011-08-22 - 00:51	almost 13 years
1.8.3	MIT	4	2011-08-19 - 19:43	almost 13 years
1.8.2	MIT	4	2011-08-17 - 13:56	almost 13 years
1.8.1	MIT	4	2011-08-10 - 19:35	almost 13 years