[CLSA-2026:1783339723] Fix CVE(s): CVE-2026-4147, CVE-2026-8053, CVE-2026-8200
Type:
security
Severity:
Moderate
Release date:
2026-07-06 12:09:03 UTC
Description:
* SECURITY UPDATE: sensitive data exposure in document validation log messages - debian/patches/CVE-2026-8200.patch: redact 'consideredValue' and 'consideredValues' fields in the document validation failure warning log (LOGV2 id 20294) when log redaction is enabled, via a new DocumentValidationFailureInfo::getRedactedDetails() in src/mongo/db/matcher/doc_validation_error.{cpp,h} used by src/mongo/db/catalog/collection_impl.cpp - CVE-2026-8200
Updated packages:
  • mongodb5_5.0.31-1+tuxcare.els12_amd64.deb
    sha:3b4c235f414e922195545504bd65ce5252ad53fc
  • mongodb5-mongos_5.0.31-1+tuxcare.els12_amd64.deb
    sha:5ea6adb1239eae7c906b8caf23979f15f82aa311
  • mongodb5-server_5.0.31-1+tuxcare.els12_amd64.deb
    sha:68b7d4c41d601a834f74f612fcaea4c64c6aa3c7
  • mongodb5-shell_5.0.31-1+tuxcare.els12_amd64.deb
    sha:e63c93d8dda12c7190e9788f0a28292da6419aa7
  • mongodb5_5.0.31-1+tuxcare.els12_arm64.deb
    sha:90c9f76bfb76a2ef6202782f1bd843c4c584e496
  • mongodb5-mongos_5.0.31-1+tuxcare.els12_arm64.deb
    sha:c6528bd7ac776b9cf2234da27d44d3bb8e114ef1
  • mongodb5-server_5.0.31-1+tuxcare.els12_arm64.deb
    sha:20319a538c6bd554b5f55562fb467f001cb84eb0
  • mongodb5-shell_5.0.31-1+tuxcare.els12_arm64.deb
    sha:2dcf365e5ee0e10909138ba45541e83e656ca186
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.