MongoDB libbson CVE-2018-16790 Heap Buffer Overflow Vulnerability

Bugtraq ID:	106559
Class:	Boundary Condition Error
CVE:	CVE-2018-16790
Remote:	Yes
Local:	No
Published:	Sep 11 2018 12:00AM
Updated:	Sep 11 2018 12:00AM
Credit:	Petr Pisar
Vulnerable:	Redhat Software Collections for RHEL 0 MongoDB libbson 1.12
Not Vulnerable:

MongoDB libbson CVE-2018-16790 Heap Buffer Overflow Vulnerability

The researcher has created a proof-of-concept to demonstrate the issue. Please see the references for more information.

MongoDB libbson CVE-2018-16790 Heap Buffer Overflow Vulnerability

Solution:
Updates are available. Please see the references or vendor advisory for more information.