[CLSA-2026:1783433150] Fix CVE(s): CVE-2026-8199
Type:
security
Severity:
Low
Release date:
2026-07-07 14:06:05 UTC
Description:
* SECURITY UPDATE: DoS via excessive memory use in $bit* match expressions - debian/patches/CVE-2026-8199.patch: limit the number of bit positions a $bitTest expression ($bitsAllSet, $bitsAllClear, $bitsAnySet, $bitsAnyClear) accumulates from a BinData mask via the new internalQueryMaxBitTestIntermediatePositions knob - CVE-2026-8199
CVEs fixed:
Updated packages:
  • mongodb42_4.2.25-1+tuxcare.els13_amd64.deb
    sha:616ca3d11eb41c9306d74933b78f73d2f8406d81
  • mongodb42-mongos_4.2.25-1+tuxcare.els13_amd64.deb
    sha:2784bf35480ffd5e607b518c03644a93f73216e3
  • mongodb42-server_4.2.25-1+tuxcare.els13_amd64.deb
    sha:8ac3cda766fbb8d60eaeefc61234e2dc0ca8457a
  • mongodb42-shell_4.2.25-1+tuxcare.els13_amd64.deb
    sha:138a73844630ee6241eb9322f82232ad20ea5914
  • mongodb42_4.2.25-1+tuxcare.els13_arm64.deb
    sha:5fc16a30d6a898e36aaa05a1095cb72f742a4b06
  • mongodb42-mongos_4.2.25-1+tuxcare.els13_arm64.deb
    sha:cb290149f286849a207bbb7a82cf377ac29ab1ce
  • mongodb42-server_4.2.25-1+tuxcare.els13_arm64.deb
    sha:e74e6b7cbbbff10295f0cbbbb16cc9dd7cb98d8b
  • mongodb42-shell_4.2.25-1+tuxcare.els13_arm64.deb
    sha:5554f3bf7c1593280f77189fa9471edce7af065c
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.