The various bsonappend functions in the MongoDB C driver library may be susceptible to buffer overflow when performing operations that could result in a final BSON document which exceeds the maximum allowable size (INT32MAX), resulting in a segmentation fault and possible application crash. This issue affected libbson versions prior to 1.27.5, MongoDB Server v8.0 versions prior to 8.0.1 and MongoDB Server v7.0 versions prior to 7.0.16
{ "ubuntu_priority": "medium", "availability": "No subscription required", "binaries": [ { "binary_name": "libbson-1.0-0t64", "binary_version": "1.27.5-1" }, { "binary_name": "libbson-1.0-0t64-dbgsym", "binary_version": "1.27.5-1" }, { "binary_name": "libbson-dev", "binary_version": "1.27.5-1" }, { "binary_name": "libbson-doc", "binary_version": "1.27.5-1" }, { "binary_name": "libmongoc-1.0-0t64", "binary_version": "1.27.5-1" }, { "binary_name": "libmongoc-1.0-0t64-dbgsym", "binary_version": "1.27.5-1" }, { "binary_name": "libmongoc-dev", "binary_version": "1.27.5-1" }, { "binary_name": "libmongoc-doc", "binary_version": "1.27.5-1" } ] }
{ "ubuntu_priority": "medium", "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro", "binaries": [ { "binary_name": "libbson-1.0-0t64", "binary_version": "1.26.0-1.1ubuntu2+esm1" }, { "binary_name": "libbson-1.0-0t64-dbgsym", "binary_version": "1.26.0-1.1ubuntu2+esm1" }, { "binary_name": "libbson-dev", "binary_version": "1.26.0-1.1ubuntu2+esm1" }, { "binary_name": "libbson-doc", "binary_version": "1.26.0-1.1ubuntu2+esm1" }, { "binary_name": "libmongoc-1.0-0t64", "binary_version": "1.26.0-1.1ubuntu2+esm1" }, { "binary_name": "libmongoc-1.0-0t64-dbgsym", "binary_version": "1.26.0-1.1ubuntu2+esm1" }, { "binary_name": "libmongoc-dev", "binary_version": "1.26.0-1.1ubuntu2+esm1" }, { "binary_name": "libmongoc-doc", "binary_version": "1.26.0-1.1ubuntu2+esm1" } ] }