Uploaded image for project: 'Core Server'
  1. Core Server
  2. SERVER-72019

Upgrade Mongo C Driver and mitigate CVE

    • Server Security
    • Minor Change
    • v8.0, v7.0, v6.0, v5.0
    • Security 2024-05-13, Security 2024-05-27
    • 35

      Mongo C Driver has released 1.26.2. MongoDB has 1.23.0. Link to newer version: https://github.com/mongodb/mongo-c-driver/releases/tag/1.26.2

      CVE-2023-0437 https://jira.mongodb.org/browse/CDRIVER-4747 was attributed to all Mongo C Driver versions prior to 1.25.0. We should upgrade to an unaffected version.

            Assignee:
            sara.golemon@mongodb.com Sara Golemon
            Reporter:
            mark.benvenuto@mongodb.com Mark Benvenuto
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

              Created:
              Updated:
              Resolved: