[CLSA-2026:1783075096] Fix CVE(s): CVE-2026-8202, CVE-2026-8336
Type:
security
Severity:
Moderate
Release date:
2026-07-03 10:38:32 UTC
Description:
* SECURITY UPDATE: Denial of service via $trim with an oversized chars mask - debian/patches/CVE-2026-8202.patch: reject $trim/$ltrim/$rtrim when the 'chars' mask string exceeds 4096 bytes in ExpressionTrim::evaluate - CVE-2026-8202
Updated packages:
  • mongodb44_4.4.29-1+tuxcare.els10_amd64.deb
    sha:8c487776c6571b5d4808a2d859d9629255f1a4fb
  • mongodb44-mongos_4.4.29-1+tuxcare.els10_amd64.deb
    sha:b409d98332b853a469c156199db2aa8a3c615ae2
  • mongodb44-server_4.4.29-1+tuxcare.els10_amd64.deb
    sha:94ed1b03e9fed614b36125802843c8d6a5ac2f34
  • mongodb44-shell_4.4.29-1+tuxcare.els10_amd64.deb
    sha:ffa1a1769f14404763d899d3158391e4234504c2
  • mongodb44_4.4.29-1+tuxcare.els10_arm64.deb
    sha:8ffb22217fb20c18126c382e1cde551dc6eb056d
  • mongodb44-mongos_4.4.29-1+tuxcare.els10_arm64.deb
    sha:94b21464641de139ac16355c83a61722550fc54c
  • mongodb44-server_4.4.29-1+tuxcare.els10_arm64.deb
    sha:9b04d2a56644c1ae562775fde2ff68cdfd3fd683
  • mongodb44-shell_4.4.29-1+tuxcare.els10_arm64.deb
    sha:9f5a66af86510b56677964fc85eec34570470f21
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.