Loading...

XML

Word

Printable

JSON

Type: Task
Resolution: Fixed
Priority: Major - P3
Fix Version/s: 4.1.6
Affects Version/s: None
Component/s: Security
Labels:
None

Backwards Compatibility:
Fully Compatible
Sprint:
Security 2018-09-24, Security 2018-10-08, Security 2018-10-22, Security 2018-11-05, Security 2018-11-19, Security 2018-12-03
Confidence Status:
None
Work Order:
3

Aha! Reference:
None
Tracking Level:
None
Risk Status:
None
Exec Notes:
None
Goal Name:
None
Goal Link:
None

A user should be able to kill any cursor they spawned, regardless of the privileges they possess, and reguardless of what aggregation stage or command produced the cursor.

related to

SERVER-36266 Add auth rules for $backupCursor aggregation stage

Closed

Assignee:: Spencer Jackson
Reporter:: Spencer Jackson
Participants:: Githook User, Spencer Jackson
Votes:: 0 Vote for this issue
Watchers:: 8 Start watching this issue

Created:: Aug 23 2018 07:38:37 PM UTC
Updated:: Oct 29 2023 10:28:42 PM UTC
Resolved:: Nov 21 2018 05:02:50 PM UTC
Confidence Status Last Update:: 25/Sep/18 3:46 PM

Details

Description

Attachments

Issue Links

Activity

People

Dates