Loading...

XML

Word

Printable

JSON

Type: Bug
Resolution: Fixed
Priority: Major - P3
Fix Version/s: 3.5.9
Affects Version/s: 3.5.8
Component/s: Querying
Labels:
- read-only-views

Backwards Compatibility:
Fully Compatible
Operating System:
ALL
Sprint:
Query 2017-07-10
Linked BF Score:
0
Confidence Status:
None
Work Order:
3
CAR Domain/s:
None

Aha! Reference:
None
Tracking Level:
None
Risk Status:
None
Exec Notes:
None
Goal Name(s):
None
Goal Link:
None

A globally-managed aggregation cursor can be established even if the database over which the aggregation is issued does not exist. On a subsequent OP_GET_MORE, a check is made that the aggregation namespace is not a view (since OP_GET_MORE on views is not supported):

https://github.com/mongodb/mongo/blob/ab165e7a81e319cd7e99af3e1eed86e826fd34ba/src/mongo/db/query/find.cpp#L281-L287

However, this code incorrectly assumes that the Database object exists. If it doesn't exist, getDb() will return null, causing this line to deference a null pointer and crash the server.

This issue was introduced during 3.5 development and does not affect any stable versions of MongoDB.

Assignee:: David Storch
Reporter:: David Storch
Participants:: David Storch, Githook User
Votes:: 0 Vote for this issue
Watchers:: 2 Start watching this issue

Created:: Jun 19 2017 04:13:44 PM UTC
Updated:: Oct 30 2023 11:15:56 PM UTC
Resolved:: Jun 19 2017 10:48:28 PM UTC
Confidence Status Last Update:: 19/Jun/17 5:05 PM

Details

Description

Attachments

Forms

Activity

People

Dates