{"id":"MGASA-2015-0130","summary":"Updated mongodb packages fix security vulnerabilities","details":"Updated mongodb packages fix security vulnerability:\n\nIt was found that the mongod server did not correctly validate certain\nmalformed BSON requests. A remote, unauthenticated  attacker could use a\nspecially crafted BSON message to crash a mongod server (CVE-2015-1609).\n","modified":"2026-04-16T06:24:35.635716199Z","published":"2015-04-03T13:11:23Z","upstream":["CVE-2015-1609"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2015-0130.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=15591"},{"type":"WEB","url":"https://lists.fedoraproject.org/pipermail/package-announce/2015-March/153690.html"}],"affected":[{"package":{"name":"mongodb","ecosystem":"Mageia:4","purl":"pkg:rpm/mageia/mongodb?arch=source&distro=mageia-4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.4.6-2.2.mga4"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2015-0130.json"}}],"schema_version":"1.7.5","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}