Release date:
2026-06-04 16:48:02 UTC
Description:
* SECURITY UPDATE: Denial of service via malformed BSON in filemd5 command
- debian/patches/CVE-2026-6914.patch: add ssize >= 4 bounds check in
BSONElement::binDataClean() for ByteArrayDeprecated and guard md5_append
caller in filemd5 command to skip empty buffers
- CVE-2026-6914
Updated packages:
-
mongodb44_4.4.29-1+tuxcare.els8_amd64.deb
sha:619aae7d2feccdfd639b7fe1f476e61c7667c3ac
-
mongodb44-mongos_4.4.29-1+tuxcare.els8_amd64.deb
sha:9f277dbc60737532f91970b40822273b339dabc4
-
mongodb44-server_4.4.29-1+tuxcare.els8_amd64.deb
sha:7c9468aee2e7a198cb94c7abd6f3eb5f79ced8e4
-
mongodb44-shell_4.4.29-1+tuxcare.els8_amd64.deb
sha:01f38d717abf57d2d63784c839bacb1b52558772
-
mongodb44_4.4.29-1+tuxcare.els8_arm64.deb
sha:4ca29959081d5ebc11cb369ae70a802c1fc86053
-
mongodb44-mongos_4.4.29-1+tuxcare.els8_arm64.deb
sha:fb1cb40744d9fe7b7c6a957ca587f61bcfea2e4f
-
mongodb44-server_4.4.29-1+tuxcare.els8_arm64.deb
sha:876900138b51eda56afd8badb1a86e957680499f
-
mongodb44-shell_4.4.29-1+tuxcare.els8_arm64.deb
sha:59cb2009616e04614383e369652924211846f6ca
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
