Loading...

XML

Word

Printable

JSON

Type: Task
Resolution: Fixed
Priority: Major - P3
Fix Version/s: 8.1.0-rc0, 7.0.12, 8.0.0-rc6
Affects Version/s: None
Component/s: None
Labels:
- ssdlc-compliance-concern

Assigned Teams:

Server Security
Backwards Compatibility:
Minor Change
Backport Requested:

v8.0, v7.0, v6.0, v5.0
Sprint:
Security 2024-05-13, Security 2024-05-27
Linked BF Score:
35
Confidence Status:
None
Work Order:
3
CAR Domain/s:
None

Aha! Reference:
None
Tracking Level:
None
Risk Status:
None
Exec Notes:
None
Goal Name(s):
None
Goal Link:
None

Mongo C Driver has released 1.26.2. MongoDB has 1.23.0. Link to newer version: https://github.com/mongodb/mongo-c-driver/releases/tag/1.26.2

CVE-2023-0437 https://jira.mongodb.org/browse/CDRIVER-4747 was attributed to all Mongo C Driver versions prior to 1.25.0. We should upgrade to an unaffected version.

is duplicated by

SERVER-72251 Update libbson to 1.23.1

Closed

SERVER-90171 Upgrade Mongo C Driver to latest version

Closed

related to

SERVER-90850 Move enterprise vendoring for mongo-c(xx)-driver to src/third_party

Closed

Assignee:: Sara Golemon (Inactive)
Reporter:: Mark Benvenuto
Participants:: Githook User, Mark Benvenuto, Sara Golemon
Votes:: 0 Vote for this issue
Watchers:: 3 Start watching this issue

Created:: Dec 09 2022 08:55:42 PM UTC
Updated:: May 31 2024 07:41:28 PM UTC
Resolved:: May 24 2024 07:25:29 PM UTC
Confidence Status Last Update:: 21/May/24 9:03 PM