[CDRIVER-4747] [Integer overflow] bson_utf8_validate Created: 26/Oct/23  Updated: 24/Jan/24  Resolved: 30/Oct/23

Status: Closed
Project: C Driver
Component/s: BSON, Security
Affects Version/s: None
Fix Version/s: 1.25.0, 1.24.5

Type: Bug Priority: Major - P3
Reporter: Karman Liu Assignee: Kevin Albertson
Resolution: Fixed Votes: 0
Labels: None
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Issue Links:
Related

 Description   

CVE ID:
CVE-2023-0437

Title:

MongoDB client C-Driver may infinitely loop when validating certain BSON input data

Description:

When calling bson_utf8_validate on some inputs a loop with an exit condition that cannot be reached may occur, i.e. an infinite loop. This issue affects All MongoDB C-Driver versions prior to versions 1.25.0.

CWE:

CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop')

CVSS Score: 

5.3

https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected Product Versions:
 All MongoDB C-Driver versions prior to versions 1.25.0

Credit:

selmelc

Issue Found:
External

Internal Jira reference:
CDRIVER-4747



 Comments   
Comment by Githook User [ 30/Oct/23 ]

Author:

{'name': 'Kevin Albertson', 'email': 'kevin.albertson@mongodb.com', 'username': 'kevinAlbs'}

Message: CDRIVER-4747 use `size_t` consistently in `bson_utf8_validate` (#1458)
Branch: r1.24
https://github.com/mongodb/mongo-c-driver/commit/be865dd759a28aa268232766f304d1bc11f1e8f7

Comment by Githook User [ 30/Oct/23 ]

Author:

{'name': 'Kevin Albertson', 'email': 'kevin.albertson@mongodb.com', 'username': 'kevinAlbs'}

Message: CDRIVER-4747 use `size_t` consistently in `bson_utf8_validate` (#1458)
Branch: master
https://github.com/mongodb/mongo-c-driver/commit/fd3a978b35cac8f3c78c4d9a1b08fd5aa4d440b8

Generated at Wed Feb 07 21:21:49 UTC 2024 using Jira 9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66.