Details
-
Bug
-
Resolution: Fixed
-
Critical - P2
-
5.3.0-rc4
-
Linux (ubuntu2004 and rhel80), possibly others. Affects at least 5.3.0-rc4 and mongo_csfle_v1-6.0.0-alpha-763-g89c2fbc (current master).
-
Fully Compatible
-
ALL
-
v5.3
-
-
Security 2022-04-04
Description
The CSFLE shared library runs into the flipside of the static initialization order fiasco when it is active (i.e. a mongo_csfle_v1_lib exists) while the process shuts down.
In particular, this line:
leads to a call to mongo::runGlobalDeinitializers(), which fails because the global singleton ConstructorActionList has already been destroyed, and consequently to memory corruption which crashes the process with SIGABRT/SIGSEGV.