Vulnerability Details CVE-2020-12135
bson before 0.8 incorrectly uses int rather than size_t for many variables, parameters, and return values. In particular, the bson_ensure_space() parameter bytesNeeded could have an integer overflow via properly constructed bson input.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 43.1%
CVSS Severity
CVSS v3 Score 5.5
CVSS v2 Score 4.3
References
- https://bugs.launchpad.net/ubuntu/+source/whoopsie/+bug/1872560
- https://github.com/10gen-archive/mongo-c-driver-legacy/commit/1a1f5e26a4309480d88598913f9eebf9e9cba8ca#diff-f7d29a680148f52d6601f59ed787f577
- https://launchpadlibrarian.net/474887364/bson-fix-overflow.patch
- https://usn.ubuntu.com/4450-1/
- https://bugs.launchpad.net/ubuntu/+source/whoopsie/+bug/1872560
- https://github.com/10gen-archive/mongo-c-driver-legacy/commit/1a1f5e26a4309480d88598913f9eebf9e9cba8ca#diff-f7d29a680148f52d6601f59ed787f577
- https://launchpadlibrarian.net/474887364/bson-fix-overflow.patch
- https://usn.ubuntu.com/4450-1/
Products affected by CVE-2020-12135
-
cpe:2.3:a:mongodb:c_driver:0.1
-
cpe:2.3:a:mongodb:c_driver:0.2
-
cpe:2.3:a:mongodb:c_driver:0.3
-
cpe:2.3:a:mongodb:c_driver:0.3.1
-
cpe:2.3:a:mongodb:c_driver:0.4
-
cpe:2.3:a:mongodb:c_driver:0.5
-
cpe:2.3:a:mongodb:c_driver:0.5.1
-
cpe:2.3:a:mongodb:c_driver:0.5.2
-
cpe:2.3:a:mongodb:c_driver:0.6
-
cpe:2.3:a:mongodb:c_driver:0.7
-
cpe:2.3:a:mongodb:c_driver:0.7.1
-
cpe:2.3:a:whoopsie_project:whoopsie:-
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.24.6
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.39
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.41
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.42
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.43
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.44
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.45
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.46
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.47
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.47.1
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.48
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.49
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.49.1
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.50
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.51
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.52
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.52.1
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.52.2
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.52.3
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.52.4
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.52.5
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.53
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.54
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.54.1
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.55
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.55.1
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.55.2
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.56
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.57
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.58
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.59
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.60
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.61
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.62
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.63
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.64
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.65
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.66
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.67
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.68
-
cpe:2.3:a:whoopsie_project:whoopsie:0.2.69