In MongoDB libbson 1.7.0, the bsonitercodewscope function in bson-iter.c miscalculates a bsonutf8validate length argument, which allows remote attackers to cause a denial of service (heap-based buffer over-read in the bsonutf8validate function in bson-utf8.c), as demonstrated by bson-to-json.c.
{ "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro", "binaries": [ { "binary_name": "libbson-1.0-0", "binary_version": "1.3.1-1ubuntu0.1~esm1" }, { "binary_name": "libbson-1.0-0-dbgsym", "binary_version": "1.3.1-1ubuntu0.1~esm1" }, { "binary_name": "libbson-dbg", "binary_version": "1.3.1-1ubuntu0.1~esm1" }, { "binary_name": "libbson-dev", "binary_version": "1.3.1-1ubuntu0.1~esm1" }, { "binary_name": "libbson-dev-dbgsym", "binary_version": "1.3.1-1ubuntu0.1~esm1" }, { "binary_name": "libbson-doc", "binary_version": "1.3.1-1ubuntu0.1~esm1" } ] }
{ "availability": "No subscription required", "binaries": [ { "binary_name": "libbson-1.0-0", "binary_version": "1.9.2-1" }, { "binary_name": "libbson-1.0-0-dbgsym", "binary_version": "1.9.2-1" }, { "binary_name": "libbson-dev", "binary_version": "1.9.2-1" }, { "binary_name": "libbson-doc", "binary_version": "1.9.2-1" } ] }