Release date:
2026-06-04 15:24:53 UTC
Description:
* SECURITY UPDATE: Denial of service via malformed BSON in filemd5 command
- debian/patches/CVE-2026-6914.patch: add ssize >= 4 bounds check in
BSONElement::binDataClean() for ByteArrayDeprecated and guard md5_append
caller in filemd5 command to skip empty buffers
- CVE-2026-6914
Updated packages:
-
mongodb44_4.4.29-1+tuxcare.els8_amd64.deb
sha:619aae7d2feccdfd639b7fe1f476e61c7667c3ac
-
mongodb44-mongos_4.4.29-1+tuxcare.els8_amd64.deb
sha:d875adac4e9dc6c29ec8fe46d2421f06da2b1a0c
-
mongodb44-server_4.4.29-1+tuxcare.els8_amd64.deb
sha:aa48a3698ea632bda71ad42f03cce457ca0148e4
-
mongodb44-shell_4.4.29-1+tuxcare.els8_amd64.deb
sha:b32c1a1570ff3be7f7657f76df17bbb16fef0bed
-
mongodb44_4.4.29-1+tuxcare.els8_arm64.deb
sha:4ca29959081d5ebc11cb369ae70a802c1fc86053
-
mongodb44-mongos_4.4.29-1+tuxcare.els8_arm64.deb
sha:093cae25755f0fc578d0b90b66beeb2e20d6e983
-
mongodb44-server_4.4.29-1+tuxcare.els8_arm64.deb
sha:8080d07cae632d5b5d01cd2b06226f2b872a4491
-
mongodb44-shell_4.4.29-1+tuxcare.els8_arm64.deb
sha:2d576c6388572752e3fb158b2c66b662e3012421
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
