[CLSA-2026:1783431139] Fix CVE(s): CVE-2026-8199
Type:
security
Severity:
Low
Release date:
2026-07-07 13:32:35 UTC
Description:
* SECURITY UPDATE: DoS via excessive memory use in $bit* match expressions - debian/patches/CVE-2026-8199.patch: limit the number of bit positions a $bitTest expression ($bitsAllSet, $bitsAllClear, $bitsAnySet, $bitsAnyClear) accumulates from a BinData mask via the new internalQueryMaxBitTestIntermediatePositions knob - CVE-2026-8199
CVEs fixed:
Updated packages:
  • mongodb42_4.2.25-1+tuxcare.els13_amd64.deb
    sha:616ca3d11eb41c9306d74933b78f73d2f8406d81
  • mongodb42-mongos_4.2.25-1+tuxcare.els13_amd64.deb
    sha:947fdc55e3b8404efc7aa06916df8d2a651d104b
  • mongodb42-server_4.2.25-1+tuxcare.els13_amd64.deb
    sha:b3119a4693a1d5bbd92d270eca6a41a686f65ec6
  • mongodb42-shell_4.2.25-1+tuxcare.els13_amd64.deb
    sha:af47a77e6bef0d5cee7432e87ca060609ec6f64a
  • mongodb42_4.2.25-1+tuxcare.els13_arm64.deb
    sha:5fc16a30d6a898e36aaa05a1095cb72f742a4b06
  • mongodb42-mongos_4.2.25-1+tuxcare.els13_arm64.deb
    sha:c029f657b6a9ebd2df04bd712060f836037b27da
  • mongodb42-server_4.2.25-1+tuxcare.els13_arm64.deb
    sha:b44ac3a6b49c3b70d93253eec575f9c02f4bffc1
  • mongodb42-shell_4.2.25-1+tuxcare.els13_arm64.deb
    sha:3281674519343fdeae6302fa4b7eede9d2c90169
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.