921759 – (CVE-2015-1609) VUL-0: CVE-2015-1609: mongodb: DoS due to improper BSON validation

Bug 921759 (CVE-2015-1609) - VUL-0: CVE-2015-1609: mongodb: DoS due to improper BSON validation

Summary: VUL-0: CVE-2015-1609: mongodb: DoS due to improper BSON validation

Status:	RESOLVED FIXED

Alias:	CVE-2015-1609

Product:	SUSE Security Incidents
Classification:	Novell Products
Component:	Incidents (show other bugs)
Version:	unspecified
Hardware:	Other Other

Priority:	P3 - Medium Severity: Normal
Target Milestone:	---
Deadline:	2015-04-03
Assignee:	Bernhard Wiedemann
QA Contact:	Security Team bot

URL:	https://smash.suse.de/issue/114581/
Whiteboard:	maint:released:sle11-sp3-cl5:61236
Keywords:

Depends on:
Blocks:

Clone This Bug

Reported:	2015-03-11 13:28 UTC by Marcus Meissner
Modified:	2015-04-22 17:05 UTC (History)
CC List:	4 users (show)

See Also:
Found By:	Security Response Team
Services Priority:
Business Priority:
Blocker:	---
Marketing QA Status:	---
IT Deployment:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Marcus Meissner 2015-03-11 13:28:18 UTC

ISSUE SUMMARY
The mongod server fails to validate some cases of malformed BSON. This failure occurs pre-authentication.

USER IMPACT
A specially crafted, malformed BSON message may trigger an uncaught exception in the server, resulting in a loss of availability.

WORKAROUNDS
There are no workarounds for this issue.

AFFECTED VERSIONS
All MongoDB production releases up to 2.6.7 are affected by this issue.

FIX VERSION
The fix is included in the 2.4.13 and 2.6.8 production releases.
CVE-2015-1609 has been assigned to this issue.

RESOLUTION DETAILS
Reject malformed BSON data. 

https://jira.mongodb.org/browse/SERVER-17264

Upstream patches:

2.4 -- https://github.com/mongodb/mongo/commit/3a7e85ea1f672f702660e5472566234b1d19038e
2.6 -- https://github.com/mongodb/mongo/commit/8f1c734c7f1862180f607c241fb167640889efba
3.0 -- https://github.com/mongodb/mongo/commit/5285225e71c5c0652520ef99d0ae4ca24655f72f

Comment 1 Swamp Workflow Management 2015-03-11 23:00:33 UTC

bugbot adjusting priority

Comment 2 Vincent Untz 2015-03-17 08:41:51 UTC

Cloud 4 and Cloud 5 are affected.

Comment 4 Swamp Workflow Management 2015-03-20 13:02:24 UTC

An update workflow for this issue was started.
This issue was rated as moderate.
Please submit fixed packages until 2015-04-03.
When done, reassign the bug to security-team@suse.de.
https://swamp.suse.de/webswamp/wf/61233

Comment 9 Andreas Stieger 2015-04-22 11:28:12 UTC

releasing

Comment 10 Swamp Workflow Management 2015-04-22 17:05:25 UTC

SUSE-SU-2015:0751-1: An update that fixes one vulnerability is now available.

Category: security (moderate)
Bug References: 921759
CVE References: CVE-2015-1609
Sources used:
SUSE Cloud 5 (src):    mongodb-2.4.3-0.25.1
SUSE Cloud 4 (src):    mongodb-2.4.3-0.23.1