Bug#913896:

I'm a libbson maintainer, and I believe this is only a minor bug, not a grave vulnerability. The bug is triggered when libbson reads BSON data corrupted in a specific manner. The faulty logic will read up to 4 bytes past the end of a buffer. This is not a grave vulnerability for two reasons. Firs

Bug#913896: CVE-2018-16790

Source: libbson Severity: grave Tags: security Please see https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16790 Cheers, Moritz