Release date:
2026-06-01 09:49:08 UTC
Description:
* SECURITY UPDATE: denial of service via malformed BSON in MD5 checksum
- debian/patches/CVE-2026-6914.patch: bounds-check valuestrsize() in
binDataClean() for ByteArrayDeprecated and guard md5_append() against
zero-length data in src/mongo/bson/bsonelement.h and
src/mongo/db/commands/dbcommands_d.cpp.
- CVE-2026-6914
Updated packages:
-
mongodb5_5.0.31-1+tuxcare.els6_amd64.deb
sha:f4ee6ef97ccd06880c00caeaaaa59385c3b9792d
-
mongodb5-mongos_5.0.31-1+tuxcare.els6_amd64.deb
sha:a04b0f0c0b14eab6214618c8ddd15ea8bb0fbbe9
-
mongodb5-server_5.0.31-1+tuxcare.els6_amd64.deb
sha:a683fc0a55d489af8f014bcd35ca69c3466680aa
-
mongodb5-shell_5.0.31-1+tuxcare.els6_amd64.deb
sha:2cf5bf36bbb23fc83c1a1bbfe7def38ab199157b
-
mongodb5_5.0.31-1+tuxcare.els6_arm64.deb
sha:49f4b907e0ac3940e311be0727732519b26300ad
-
mongodb5-mongos_5.0.31-1+tuxcare.els6_arm64.deb
sha:6eb9a93d6f5d4bcf811b039c5d2440c1996faa73
-
mongodb5-server_5.0.31-1+tuxcare.els6_arm64.deb
sha:f69cb4b53fb5734af8cea1ebfeb488fcc642a162
-
mongodb5-shell_5.0.31-1+tuxcare.els6_arm64.deb
sha:8c3aa60e70ad842e3c703ac6d03081c383b53a79
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
