Release date:
2026-07-03 11:24:05 UTC
Description:
* SECURITY UPDATE: Use-after-free via non-owned BSON in bsonObjToArray
- debian/patches/CVE-2026-11933.patch: ensure owned BSON in
bsonObjToArray before array conversion in
src/mongo/scripting/mozjs/bson.cpp
- CVE-2026-11933
Updated packages:
-
mongodb5_5.0.31-1+tuxcare.els9_amd64.deb
sha:e0b95bd47c234fd71e390b201152401a0314814a
-
mongodb5-mongos_5.0.31-1+tuxcare.els9_amd64.deb
sha:ec9c2927f56da6874b933488981f709091d5f5d2
-
mongodb5-server_5.0.31-1+tuxcare.els9_amd64.deb
sha:d9924f6b30a7028ad0b879f08986434a1ba27424
-
mongodb5-shell_5.0.31-1+tuxcare.els9_amd64.deb
sha:e9436da57fac99bc4bd56d04205a87d22622af10
-
mongodb5_5.0.31-1+tuxcare.els9_arm64.deb
sha:e1e6330ba4fc5c0519b7e50c789eb4474f265c92
-
mongodb5-mongos_5.0.31-1+tuxcare.els9_arm64.deb
sha:72014fa262bca3b85c8376b29f401756eb1f8965
-
mongodb5-server_5.0.31-1+tuxcare.els9_arm64.deb
sha:4dc0e5dab9f63a783bb4df768f9cdc8b62b4e9d9
-
mongodb5-shell_5.0.31-1+tuxcare.els9_arm64.deb
sha:4840d19672461b6d419aa28f7e7deb5bcc4961a8
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.