The bson_string_append function in MongoDB C Driver may be vulnerable to a buffer overflow where the function might attempt to allocate too small of buffer and may lead to memory corruption of neighbouring heap memory. This issue affects libbson versions prior to 1.27.1
History

Fri, 22 Nov 2024 12:00:00 +0000

Type Values Removed Values Added
References

Fri, 04 Oct 2024 16:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: mongodb

Published: 2024-07-03T21:33:47.598Z

Updated: 2024-10-04T15:02:53.248Z

Reserved: 2024-06-27T08:43:40.268Z

Link: CVE-2024-6383

cve-icon Vulnrichment

Updated: 2024-10-04T15:02:53.248Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2024-07-03T22:15:03.240

Modified: 2024-11-21T09:49:32.483

Link: CVE-2024-6383

cve-icon Redhat

No data.