Описание
The bson_string_append function in MongoDB C Driver may be vulnerable to a buffer overflow where the function might attempt to allocate too small of buffer and may lead to memory corruption of neighbouring heap memory. This issue affects libbson versions prior to 1.27.1
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| esm-apps/bionic | needs-triage | |
| esm-apps/xenial | needs-triage | |
| esm-infra/focal | DNE | |
| focal | DNE | |
| jammy | DNE | |
| mantic | DNE | |
| noble | DNE | |
| oracular | DNE | |
| plucky | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 1.30.4-1ubuntu1 |
| esm-apps/focal | ignored | changes too intrusive |
| esm-apps/jammy | ignored | changes too intrusive |
| esm-apps/noble | released | 1.26.0-1.1ubuntu2+esm1 |
| focal | ignored | end of standard support, was needs-triage |
| jammy | ignored | changes too intrusive |
| mantic | ignored | end of life, was needs-triage |
| noble | needed | |
| oracular | not-affected | 1.27.5-1 |
| plucky | not-affected | 1.30.2-1 |
Показывать по
EPSS
5.3 Medium
CVSS3
Связанные уязвимости
The bson_string_append function in MongoDB C Driver may be vulnerable to a buffer overflow where the function might attempt to allocate too small of buffer and may lead to memory corruption of neighbouring heap memory. This issue affects libbson versions prior to 1.27.1
The bson_string_append function in MongoDB C Driver may be vulnerable ...
The bson_string_append function in MongoDB C Driver may be vulnerable to a buffer overflow where the function might attempt to allocate too small of buffer and may lead to memory corruption of neighbouring heap memory. This issue affects libbson versions prior to 1.27.1
Уязвимость функции bson_string_append библиотеки libbson драйвера системы управления базами данных MongoDB C Driver, позволяющая нарушителю вызвать отказ в обслуживании или повредить память
EPSS
5.3 Medium
CVSS3