<!-- 
RSS generated by JIRA (9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66) at Thu Feb 08 05:19:45 UTC 2024

It is possible to restrict the fields that are returned in this document by specifying the 'field' parameter in your request.
For example, to request only the issue key and summary append 'field=key&field=summary' to the URL of your request.
-->
<rss version="0.92" >
<channel>
    <title>MongoDB Jira</title>
    <link>https://jira.mongodb.org</link>
    <description>This file is an XML representation of an issue</description>
    <language>en-us</language>    <build-info>
        <version>9.7.1</version>
        <build-number>970001</build-number>
        <build-date>13-04-2023</build-date>
    </build-info>


<item>
            <title>[SERVER-49404] Enforce additional checks in $arrayToObject</title>
                <link>https://jira.mongodb.org/browse/SERVER-49404</link>
                <project id="10000" key="SERVER">Core Server</project>
                    <description>&lt;p&gt;&lt;ins&gt;CVE ID:&lt;/ins&gt;&#160;CVE-2020-7928&lt;/p&gt;

&lt;p&gt;&lt;ins&gt;Title&lt;/ins&gt;&lt;b&gt;:&lt;/b&gt;&#160;Improper neutralization of null byte leads to read overrun&lt;/p&gt;

&lt;p&gt;&lt;ins&gt;Description:&lt;/ins&gt;&lt;/p&gt;

&lt;p&gt;A user authorized to perform database queries may trigger a read overrun and access arbitrary memory by issuing specially crafted queries. This issue affects: MongoDB Inc. MongoDB Server v4.4 versions prior to 4.4.1; v4.2 versions prior to 4.2.9; v4.0 versions prior to 4.0.20; v3.6 versions prior to 3.6.20.&lt;/p&gt;

&lt;p&gt;&lt;ins&gt;CVSS score:&lt;/ins&gt;&#160;&lt;/p&gt;

&lt;p&gt;This issue&apos;s CVSS:3.1 severity is scored at 6.5 using the following scoring metrics:&lt;/p&gt;

&lt;p&gt;&lt;a href=&quot;https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N&lt;/a&gt;&lt;/p&gt;

&lt;p&gt;&lt;ins&gt;Affected versions:&lt;/ins&gt;&lt;/p&gt;

&lt;p&gt;This issue affects: MongoDB Inc. MongoDB Server:&lt;/p&gt;

&lt;p&gt;v4.4 versions prior to 4.4.1;&lt;/p&gt;

&lt;p&gt;v4.2 versions prior to 4.2.9;&lt;/p&gt;

&lt;p&gt;v4.0 versions prior to 4.0.20;&lt;/p&gt;

&lt;p&gt;v3.6 versions prior to 3.6.20.&lt;/p&gt;

&lt;p&gt;&#160;&lt;/p&gt;

&lt;p&gt;CWE: ** CWE-158: Improper Neutralization of Null Byte or NUL Character&lt;/p&gt;

&lt;p&gt;&#160;&lt;/p&gt;

&lt;p&gt;&lt;ins&gt;Underlying operating systems affected&lt;/ins&gt;&lt;b&gt;:&lt;/b&gt;&#160;ALL&lt;/p&gt;</description>
                <environment></environment>
        <key id="1405189">SERVER-49404</key>
            <summary>Enforce additional checks in $arrayToObject</summary>
                <type id="4" iconUrl="https://jira.mongodb.org/secure/viewavatar?size=xsmall&amp;avatarId=14710&amp;avatarType=issuetype">Improvement</type>
                                            <priority id="3" iconUrl="https://jira.mongodb.org/images/icons/priorities/major.svg">Major - P3</priority>
                        <status id="6" iconUrl="https://jira.mongodb.org/images/icons/statuses/closed.png" description="The issue is considered finished, the resolution is correct. Issues which are closed can be reopened.">Closed</status>
                    <statusCategory id="3" key="done" colorName="success"/>
                                    <resolution id="13201">Fixed</resolution>
                                        <assignee username="andrew.paroski@mongodb.com">Drew Paroski</assignee>
                                    <reporter username="bernard.gorman@mongodb.com">Bernard Gorman</reporter>
                        <labels>
                    </labels>
                <created>Thu, 9 Jul 2020 16:05:02 +0000</created>
                <updated>Sun, 29 Oct 2023 22:05:59 +0000</updated>
                            <resolved>Tue, 28 Jul 2020 16:48:37 +0000</resolved>
                                                    <fixVersion>4.0.20</fixVersion>
                    <fixVersion>4.2.9</fixVersion>
                    <fixVersion>4.4.1</fixVersion>
                    <fixVersion>3.6.20</fixVersion>
                    <fixVersion>4.7.0</fixVersion>
                                                        <votes>0</votes>
                                    <watches>11</watches>
                                                                                                                <comments>
                            <comment id="3320079" author="xgen-internal-githook" created="Tue, 4 Aug 2020 16:55:55 +0000"  >&lt;p&gt;Author:&lt;/p&gt;
{&apos;name&apos;: &apos;Drew Paroski&apos;, &apos;email&apos;: &apos;drew.paroski@mongodb.com&apos;, &apos;username&apos;: &apos;paroski&apos;}
&lt;p&gt;Message: &lt;a href=&quot;https://jira.mongodb.org/browse/SERVER-49404&quot; title=&quot;Enforce additional checks in $arrayToObject&quot; class=&quot;issue-link&quot; data-issue-key=&quot;SERVER-49404&quot;&gt;&lt;del&gt;SERVER-49404&lt;/del&gt;&lt;/a&gt; Enforce additional checks in $arrayToObject&lt;/p&gt;

&lt;p&gt;(cherry picked from commit 1772b9a0393b55e6a280a35e8f0a1f75c014f301)&lt;br/&gt;
Branch: v4.4&lt;br/&gt;
&lt;a href=&quot;https://github.com/mongodb/mongo/commit/287b872de62d23399af3b6a968337f21107b5119&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;https://github.com/mongodb/mongo/commit/287b872de62d23399af3b6a968337f21107b5119&lt;/a&gt;&lt;/p&gt;</comment>
                            <comment id="3318923" author="xgen-internal-githook" created="Tue, 4 Aug 2020 03:07:27 +0000"  >&lt;p&gt;Author:&lt;/p&gt;
{&apos;name&apos;: &apos;Drew Paroski&apos;, &apos;email&apos;: &apos;drew.paroski@mongodb.com&apos;, &apos;username&apos;: &apos;paroski&apos;}
&lt;p&gt;Message: &lt;a href=&quot;https://jira.mongodb.org/browse/SERVER-49404&quot; title=&quot;Enforce additional checks in $arrayToObject&quot; class=&quot;issue-link&quot; data-issue-key=&quot;SERVER-49404&quot;&gt;&lt;del&gt;SERVER-49404&lt;/del&gt;&lt;/a&gt; Enforce additional checks in $arrayToObject&lt;/p&gt;

&lt;p&gt;(cherry picked from commit 1772b9a0393b55e6a280a35e8f0a1f75c014f301)&lt;br/&gt;
Branch: v3.6&lt;br/&gt;
&lt;a href=&quot;https://github.com/mongodb/mongo/commit/e10ce2e779cd17c9ba217c49740cffd2bef72694&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;https://github.com/mongodb/mongo/commit/e10ce2e779cd17c9ba217c49740cffd2bef72694&lt;/a&gt;&lt;/p&gt;</comment>
                            <comment id="3318856" author="xgen-internal-githook" created="Tue, 4 Aug 2020 00:45:07 +0000"  >&lt;p&gt;Author:&lt;/p&gt;
{&apos;name&apos;: &apos;Drew Paroski&apos;, &apos;email&apos;: &apos;drew.paroski@mongodb.com&apos;, &apos;username&apos;: &apos;paroski&apos;}
&lt;p&gt;Message: &lt;a href=&quot;https://jira.mongodb.org/browse/SERVER-49404&quot; title=&quot;Enforce additional checks in $arrayToObject&quot; class=&quot;issue-link&quot; data-issue-key=&quot;SERVER-49404&quot;&gt;&lt;del&gt;SERVER-49404&lt;/del&gt;&lt;/a&gt; Enforce additional checks in $arrayToObject&lt;/p&gt;

&lt;p&gt;(cherry picked from commit 1772b9a0393b55e6a280a35e8f0a1f75c014f301)&lt;br/&gt;
Branch: v4.0&lt;br/&gt;
&lt;a href=&quot;https://github.com/mongodb/mongo/commit/e27e80ead0788c75103c6e10b888fd201bedb89c&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;https://github.com/mongodb/mongo/commit/e27e80ead0788c75103c6e10b888fd201bedb89c&lt;/a&gt;&lt;/p&gt;</comment>
                            <comment id="3318772" author="xgen-internal-githook" created="Mon, 3 Aug 2020 22:49:20 +0000"  >&lt;p&gt;Author:&lt;/p&gt;
{&apos;name&apos;: &apos;Drew Paroski&apos;, &apos;email&apos;: &apos;drew.paroski@mongodb.com&apos;, &apos;username&apos;: &apos;paroski&apos;}
&lt;p&gt;Message: &lt;a href=&quot;https://jira.mongodb.org/browse/SERVER-49404&quot; title=&quot;Enforce additional checks in $arrayToObject&quot; class=&quot;issue-link&quot; data-issue-key=&quot;SERVER-49404&quot;&gt;&lt;del&gt;SERVER-49404&lt;/del&gt;&lt;/a&gt; Enforce additional checks in $arrayToObject&lt;/p&gt;

&lt;p&gt;(cherry picked from commit 1772b9a0393b55e6a280a35e8f0a1f75c014f301)&lt;br/&gt;
Branch: v4.2&lt;br/&gt;
&lt;a href=&quot;https://github.com/mongodb/mongo/commit/8c59fe07686d3d3f2fdeb2a7b5ab61eaac7e6231&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;https://github.com/mongodb/mongo/commit/8c59fe07686d3d3f2fdeb2a7b5ab61eaac7e6231&lt;/a&gt;&lt;/p&gt;</comment>
                            <comment id="3310250" author="andrew.paroski" created="Tue, 28 Jul 2020 16:49:06 +0000"  >&lt;p&gt;&lt;a href=&quot;https://jira.mongodb.org/secure/ViewProfile.jspa?name=bernard.gorman&quot; class=&quot;user-hover&quot; rel=&quot;bernard.gorman&quot;&gt;bernard.gorman&lt;/a&gt;: I&apos;ve marked this ticket as closed, sorry for the delay.&lt;/p&gt;</comment>
                            <comment id="3286622" author="xgen-internal-githook" created="Wed, 15 Jul 2020 17:28:55 +0000"  >&lt;p&gt;Author:&lt;/p&gt;
{&apos;name&apos;: &apos;Drew Paroski&apos;, &apos;email&apos;: &apos;drew.paroski@mongodb.com&apos;, &apos;username&apos;: &apos;paroski&apos;}
&lt;p&gt;Message: &lt;a href=&quot;https://jira.mongodb.org/browse/SERVER-49404&quot; title=&quot;Enforce additional checks in $arrayToObject&quot; class=&quot;issue-link&quot; data-issue-key=&quot;SERVER-49404&quot;&gt;&lt;del&gt;SERVER-49404&lt;/del&gt;&lt;/a&gt; Enforce additional checks in $arrayToObject&lt;br/&gt;
Branch: master&lt;br/&gt;
&lt;a href=&quot;https://github.com/mongodb/mongo/commit/1772b9a0393b55e6a280a35e8f0a1f75c014f301&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;https://github.com/mongodb/mongo/commit/1772b9a0393b55e6a280a35e8f0a1f75c014f301&lt;/a&gt;&lt;/p&gt;</comment>
                    </comments>
                <issuelinks>
                            <issuelinktype id="10420">
                    <name>Backports</name>
                                            <outwardlinks description="backported by">
                                                        </outwardlinks>
                                                        </issuelinktype>
                    </issuelinks>
                <attachments>
                    </attachments>
                <subtasks>
                    </subtasks>
                <customfields>
                                                <customfield id="customfield_10050" key="com.atlassian.jira.toolkit:comments">
                        <customfieldname># Replies</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>6.0</customfieldvalue>
                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_18555" key="com.onresolve.jira.groovy.groovyrunner:scripted-field">
                        <customfieldname># of Sprints</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>2.0</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                                                                                                                <customfield id="customfield_12450" key="com.atlassian.jira.plugin.system.customfieldtypes:multicheckboxes">
                        <customfieldname>Backport Requested</customfieldname>
                        <customfieldvalues>
                                <customfieldvalue key="18953"><![CDATA[v4.4]]></customfieldvalue>
    <customfieldvalue key="16775"><![CDATA[v4.2]]></customfieldvalue>
    <customfieldvalue key="15640"><![CDATA[v4.0]]></customfieldvalue>
    <customfieldvalue key="15141"><![CDATA[v3.6]]></customfieldvalue>
    
                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_10011" key="com.atlassian.jira.plugin.system.customfieldtypes:radiobuttons">
                        <customfieldname>Backwards Compatibility</customfieldname>
                        <customfieldvalues>
                                <customfieldvalue key="10038"><![CDATA[Fully Compatible]]></customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                                                                                                                                            <customfield id="customfield_10055" key="com.atlassian.jira.ext.charting:firstresponsedate">
                        <customfieldname>Date of 1st Reply</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>Mon, 13 Jul 2020 19:58:48 +0000</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_10052" key="com.atlassian.jira.toolkit:dayslastcommented">
                        <customfieldname>Days since reply</customfieldname>
                        <customfieldvalues>
                                        3 years, 27 weeks, 1 day ago
    
                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_18254" key="com.onresolve.jira.groovy.groovyrunner:scripted-field">
                        <customfieldname>Dependencies</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue><![CDATA[]]></customfieldvalue>


                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_15850" key="com.atlassian.jira.plugins.jira-development-integration-plugin:devsummary">
                        <customfieldname>Development</customfieldname>
                        <customfieldvalues>
                            
                        </customfieldvalues>
                    </customfield>
                                                                                                                        <customfield id="customfield_17050" key="com.atlassian.jira.plugin.system.customfieldtypes:radiobuttons">
                        <customfieldname>Downstream Team Attention</customfieldname>
                        <customfieldvalues>
                                <customfieldvalue key="16941"><![CDATA[Not Needed]]></customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                    <customfield id="customfield_10057" key="com.atlassian.jira.toolkit:lastusercommented">
                        <customfieldname>Last comment by Customer</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>true</customfieldvalue>
                        </customfieldvalues>
                    </customfield>
                                                                                            <customfield id="customfield_10056" key="com.atlassian.jira.toolkit:lastupdaterorcommenter">
                        <customfieldname>Last commenter</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>luke.bonanomi@mongodb.com</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_11151" key="com.atlassian.jira.toolkit:LastCommentDate">
                        <customfieldname>Last public comment date</customfieldname>
                        <customfieldvalues>
                            3 years, 27 weeks, 1 day ago
                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                    <customfield id="customfield_10051" key="com.atlassian.jira.toolkit:participants">
                        <customfieldname>Participants</customfieldname>
                        <customfieldvalues>
                                        <customfieldvalue>bernard.gorman@mongodb.com</customfieldvalue>
            <customfieldvalue>andrew.paroski@mongodb.com</customfieldvalue>
            <customfieldvalue>xgen-internal-githook</customfieldvalue>
    
                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                        <customfield id="customfield_14254" key="com.pyxis.greenhopper.jira:gh-lexo-rank">
                        <customfieldname>Product Rank</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>1|hxu447:</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                <customfield id="customfield_12550" key="com.pyxis.greenhopper.jira:gh-lexo-rank">
                        <customfieldname>Rank</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>2|hxgzqn:</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_10558" key="com.pyxis.greenhopper.jira:gh-global-rank">
                        <customfieldname>Rank (Obsolete)</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>9223372036854775807</customfieldvalue>
                        </customfieldvalues>
                    </customfield>
                                                                                            <customfield id="customfield_23361" key="com.onresolve.jira.groovy.groovyrunner:scripted-field">
                        <customfieldname>Requested By</customfieldname>
                        <customfieldvalues>
                                

                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                        <customfield id="customfield_10557" key="com.pyxis.greenhopper.jira:gh-sprint">
                        <customfieldname>Sprint</customfieldname>
                        <customfieldvalues>
                                <customfieldvalue id="3610">Query 2020-07-27</customfieldvalue>
    <customfieldvalue id="3611">Query 2020-08-10</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                            <customfield id="customfield_10053" key="com.atlassian.jira.ext.charting:timeinstatus">
                        <customfieldname>Time In Status</customfieldname>
                        <customfieldvalues>
                            
                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                                                                                                                                                                        <customfield id="customfield_22870" key="com.onresolve.jira.groovy.groovyrunner:scripted-field">
                        <customfieldname>Triagers</customfieldname>
                        <customfieldvalues>
                                

                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                                                                                    <customfield id="customfield_14350" key="com.pyxis.greenhopper.jira:gh-lexo-rank">
                        <customfieldname>serverRank</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>1|hxtqdj:</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                    </customfields>
    </item>
</channel>
</rss>