Release date:
2026-06-01 10:47:59 UTC
Description:
* SECURITY UPDATE: denial of service via malformed BSON in MD5 checksum
- debian/patches/CVE-2026-6914.patch: bounds-check valuestrsize() in
binDataClean() for ByteArrayDeprecated and guard md5_append() against
zero-length data in src/mongo/bson/bsonelement.h and
src/mongo/db/commands/dbcommands_d.cpp.
- CVE-2026-6914
Updated packages:
-
mongodb5_5.0.31-1+tuxcare.els6_amd64.deb
sha:f4ee6ef97ccd06880c00caeaaaa59385c3b9792d
-
mongodb5-mongos_5.0.31-1+tuxcare.els6_amd64.deb
sha:328f25e57f6684e6a989739b8817982c1212743d
-
mongodb5-server_5.0.31-1+tuxcare.els6_amd64.deb
sha:ade6c395b7a878dc0138d969e8a9d2dac422faaf
-
mongodb5-shell_5.0.31-1+tuxcare.els6_amd64.deb
sha:fd00172c50fed97e3b6d80c5e66331e8bc56081c
-
mongodb5_5.0.31-1+tuxcare.els6_arm64.deb
sha:49f4b907e0ac3940e311be0727732519b26300ad
-
mongodb5-mongos_5.0.31-1+tuxcare.els6_arm64.deb
sha:5e7ed884bf898342f1704da93e272b07ff47e4fc
-
mongodb5-server_5.0.31-1+tuxcare.els6_arm64.deb
sha:d4f8a647e9a2ff548a0f440f89a997b2b00fcb09
-
mongodb5-shell_5.0.31-1+tuxcare.els6_arm64.deb
sha:078d4efee0bcabb25d667e265acd818613a0331f
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
