Univention Bugzilla – Bug 57386
pymongo: Multiple issues (5.0)
Last modified: 2024-06-19 18:38:17 CEST
New Debian pymongo 3.7.1-1.1+deb10u1 fixes: This update addresses the following issue: 3.7.1-1.1+deb10u1 (Sun, 16 Jun 2024 17:42:49 +0000) * QA upload * Fix CVE-2024-5629: An out-of-bounds read in the 'bson' module allowed deserialization of malformed BSON provided by a Server to raise an exception which may contain arbitrary application memory
--- mirror/ftp/pool/main/p/pymongo/pymongo_3.7.1-1.1.dsc +++ apt/ucs_5.0-0-errata5.0-8/source/pymongo_3.7.1-1.1+deb10u1.dsc @@ -1,3 +1,11 @@ +3.7.1-1.1+deb10u1 [Sun, 16 Jun 2024 17:42:49 +0000] Bastien Roucariès <rouca@debian.org>: + + * QA upload + * Fix CVE-2024-5629: An out-of-bounds read in the + 'bson' module allowed deserialization of malformed BSON + provided by a Server to raise an exception which may + contain arbitrary application memory + 3.7.1-1.1 [Sat, 13 Apr 2019 10:08:32 +0000] Ivo De Decker <ivodd@debian.org>: * Non-maintainer upload. <http://piuparts.knut.univention.de/5.0-8/#1979648460055893914>
OK: bug OK: yaml OK: announce_errata OK: patch OK: piuparts [5.0-8] 19c5169f69 Bug #57386: pymongo 3.7.1-1.1+deb10u1 doc/errata/staging/pymongo.yaml | 8 +++----- 1 file changed, 3 insertions(+), 5 deletions(-) [5.0-8] 01b9aeb2fd Bug #57386: pymongo 3.7.1-1.1+deb10u1 doc/errata/staging/pymongo.yaml | 16 ++++++++++++++++ 1 file changed, 16 insertions(+)
<https://errata.software-univention.de/#/?erratum=5.0x1066>