Release date:
2026-04-19 11:31:54 UTC
Description:
* SECURITY UPDATE: Uncontrolled recursion in ExpressionReduce::evaluate()
- debian/patches/CVE-2026-1849.patch: add Value::depth() method and periodic
depth check in the $reduce accumulation loop to throw Overflow error when
accumulated value exceeds maximum allowable BSON depth
- CVE-2026-1849
Updated packages:
-
mongodb44_4.4.29-1+tuxcare.els6_amd64.deb
sha:1751e3274527984ca8a1f88545fbfe27284db8a1
-
mongodb44-mongos_4.4.29-1+tuxcare.els6_amd64.deb
sha:be2284ce6beae7d6d5f1ea08e16e10b3d8af4207
-
mongodb44-server_4.4.29-1+tuxcare.els6_amd64.deb
sha:adf8966136afb49151f7496bc66251f1e356ff54
-
mongodb44-shell_4.4.29-1+tuxcare.els6_amd64.deb
sha:5f110be5a4fb9d15c7e4409991c33238802f6ef7
-
mongodb44_4.4.29-1+tuxcare.els6_arm64.deb
sha:098e2b3a0b5fb6a2448bf4d8856aed5dd5e78a55
-
mongodb44-mongos_4.4.29-1+tuxcare.els6_arm64.deb
sha:e2c5fddc41c4a9c0b762a8bdfc73a032bc6e2033
-
mongodb44-server_4.4.29-1+tuxcare.els6_arm64.deb
sha:b439c68ae59f160e919287fe5d271b2be32c7c52
-
mongodb44-shell_4.4.29-1+tuxcare.els6_arm64.deb
sha:1cd37a4db2ebc7936da195b32b323b09093231d0
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
