CVE-2020-12135 — Integer Overflow or Wraparound in Mongodb C Driver

CWE-190 — Integer Overflow or Wraparound CWE-122 — Heap-based Buffer Overflow CWE-393 — Return of Wrong Status Code15 documents8 sources

Severity

5.5MEDIUMNVD

EPSS

0.3%

top 42.53%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Mongodb C Driver Whoopsie Project Whoopsie

Timeline

PublishedApr 24

Latest updateMay 24

Description

bson before 0.8 incorrectly uses int rather than size_t for many variables, parameters, and return values. In particular, the bson_ensure_space() parameter bytesNeeded could have an integer overflow via properly constructed bson input.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages3 packages

▶NVDmongodb/c_driver< 0.8

▶Ubuntuwhoopsie_project/whoopsie< 0.2.52.5ubuntu0.5+2

▶NVDwhoopsie_project/whoopsie0.2.69

Patches

Patch: github.com ↗Patch: launchpadlibrarian.net ↗Patch: github.com ↗

🔴Vulnerability Details

GHSA

GHSA-f54q-h8mw-5h8w: bson before 0↗2022-05-24

▶

OSV

whoopsie vulnerabilities↗2020-08-04

▶

CVEList

CVE-2020-12135: bson before 0↗2020-04-24

▶

OSV

CVE-2020-12135: bson before 0↗2020-04-24

▶

📋Vendor Advisories

Ubuntu

Whoopsie vulnerabilities↗2020-08-04

▶

Red Hat

xen: bad continuation handling in GNTTABOP_copy (XSA-318)↗2020-04-14

▶

Red Hat

bson: integer overflow in bson_ensure_space() parameter bytesNeeded↗2020-04-13

▶

Debian

CVE-2020-12135: duo-unix - bson before 0.8 incorrectly uses int rather than size_t for many variables, para...↗2020

▶

💬Community

Bugzilla

CVE-2020-12135 bson: integer overflow in bson_ensure_space() parameter bytesNeeded↗2020-05-12

▶

Bugzilla

CVE-2020-12135 libbson: bson: integer overflow in bson_ensure_space() parameter bytesNeeded [fedora-all]↗2020-05-12

▶

Bugzilla

CVE-2020-12135 mongo-c-driver: bson: integer overflow in bson_ensure_space() parameter bytesNeeded [fedora-all]↗2020-05-12

▶

Bugzilla

CVE-2020-12135 libbson: bson: integer overflow in bson_ensure_space() parameter bytesNeeded [epel-all]↗2020-05-12

▶

Bugzilla

CVE-2020-12135 mongo-c-driver: bson: integer overflow in bson_ensure_space() parameter bytesNeeded [epel-all]↗2020-05-12

▶