[CLSA-2026:1783338119] Fix CVE(s): CVE-2026-4147, CVE-2026-8200
Type:
security
Severity:
Moderate
Release date:
2026-07-06 11:42:18 UTC
Description:
* SECURITY UPDATE: sensitive data exposure in document validation log messages - debian/patches/CVE-2026-8200.patch: redact 'consideredValue' and 'consideredValues' fields in the document validation failure warning log (LOGV2 id 20294) when log redaction is enabled, via a new DocumentValidationFailureInfo::getRedactedDetails() in src/mongo/db/matcher/doc_validation_error.{cpp,h} used by src/mongo/db/catalog/collection_impl.cpp - CVE-2026-8200
Updated packages:
  • mongodb5_5.0.31-1+tuxcare.els12_amd64.deb
    sha:3b4c235f414e922195545504bd65ce5252ad53fc
  • mongodb5-mongos_5.0.31-1+tuxcare.els12_amd64.deb
    sha:f4224227564e71a7aff290227c0df5e4e5d715cc
  • mongodb5-server_5.0.31-1+tuxcare.els12_amd64.deb
    sha:6a712602d883b44a963248fa75e9d76cb78c42bf
  • mongodb5-shell_5.0.31-1+tuxcare.els12_amd64.deb
    sha:4f75fac8000c792ab4c16b586497b4cad069d0a9
  • mongodb5_5.0.31-1+tuxcare.els12_arm64.deb
    sha:90c9f76bfb76a2ef6202782f1bd843c4c584e496
  • mongodb5-mongos_5.0.31-1+tuxcare.els12_arm64.deb
    sha:3755958ea5dd8b87680b995f2f970c7f58a83b2b
  • mongodb5-server_5.0.31-1+tuxcare.els12_arm64.deb
    sha:965291680345810d0b1a694ffbbbab4ef603c707
  • mongodb5-shell_5.0.31-1+tuxcare.els12_arm64.deb
    sha:bceffcd14e79d4b3ea1fc110860a8f78e04cdccf
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.