CVE-2020-12135

bson before 0.8 incorrectly uses int rather than size_t for many variables, parameters, and return values. In particular, the bson_ensure_space() parameter bytesNeeded could have an integer overflow via properly constructed bson input.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

cpe:2.3:a:whoopsie_project:whoopsie:*:*:*:*:*:*:*:*

Configuration 2 (hide)

cpe:2.3:a:mongodb:c_driver:*:*:*:*:*:*:*:*

Information

Published : 2020-04-23 18:15

Updated : 2020-08-12 10:15


NVD link : CVE-2020-12135

Mitre link : CVE-2020-12135


JSON object : View

CWE
CWE-190

Integer Overflow or Wraparound

Advertisement

dedicated server usa

Products Affected

whoopsie_project

  • whoopsie

mongodb

  • c_driver