FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2026-02-14 23:10:29 UTC

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
c1613867-df16-11f0-8870-b42e991fc52e	MongoDB -- Improper Handling of Length Parameter Inconsistency https://jira.mongodb.org/browse/SERVER-115508 reports: Mismatched length fields in Zlib compressed protocol headers may allow a read of uninitialized heap memory by an unauthenticated client. Discovery 2025-12-19 Entry 2025-12-22 Modified 2025-12-28 mongodb80 < 8.0.17 mongodb70 < 7.0.28 CVE-2025-14847 https://cveawg.mitre.org/api/cve/CVE-2025-14847
7f9bac32-0800-11f1-8a6f-b42e991fc52e	MongoDB Server -- CWE-704 Incorrect Type Conversion or Cast https://jira.mongodb.org/browse/SERVER-113685 reports: An authorized user may disable the MongoDB server by issuing a query against a collection that contains an invalid compound wildcard index. Discovery 2026-02-10 Entry 2026-02-12 mongodb70 < 7.0.29 CVE-2026-25613 https://cveawg.mitre.org/api/cve/CVE-2026-25613

VuXML ID

Description

c1613867-df16-11f0-8870-b42e991fc52e

MongoDB -- Improper Handling of Length Parameter Inconsistency

https://jira.mongodb.org/browse/SERVER-115508 reports:

Mismatched length fields in Zlib compressed protocol headers may allow a read of uninitialized heap memory by an unauthenticated client.

Discovery 2025-12-19
Entry 2025-12-22
Modified 2025-12-28
mongodb80

< 8.0.17

< 7.0.28

CVE-2025-14847
https://cveawg.mitre.org/api/cve/CVE-2025-14847

MongoDB Server -- CWE-704 Incorrect Type Conversion or Cast

https://jira.mongodb.org/browse/SERVER-113685 reports:

An authorized user may disable the MongoDB server by issuing a query against a collection that contains an invalid compound wildcard index.

Discovery 2026-02-10
Entry 2026-02-12
mongodb70

< 7.0.29

CVE-2026-25613
https://cveawg.mitre.org/api/cve/CVE-2026-25613