MongoDB Alerts

May 04, 2016

Indexing

While a background index build is in progress, document updates modifying fields contained in the index specification may, under specific circumstances, cause mismatched index entries to appear. This has an impact on queries that use affected indexes.

3.0, 3.2

3.2.6, 3.0.12

March 31, 2016

Sharding

During chunk migrations, insert and update operations affecting data within a migrating chunk are not reflected to the recipient shard, resulting in data loss.

3.0.9, 3.0.10

3.0.11

December 10, 2015

WiredTiger

A race condition in WiredTiger may prevent a write operation from becoming immediately visible to subsequent read operations, which may result in various problems, primarily impacting replication.

3.0.0-3.0.7

3.0.8

June 16, 2015

Sharding

Sharded clusters where the balancer is enabled (or there are manual chunk migrations), containing WiredTiger nodes that may become primary, may lose writes to a chunk being migrated if that chunk is under a heavy write load.

3.0.0 - 3.0.3

3.0.4

October 03, 2014

Storage

MongoDB installations on certain 3.x Linux kernels running on VMWare and using virtual SCSI disks managed by LVM may see corruption in namespace (.ns) files.

2.4.11, 2.6.4

2.4.12, 2.6.5

August 04, 2014

Text Search

An update to a text-indexed field may fail to update the text index. As a result, a text search may not match the field contents, yielding incorrect search results.

2.4.0 - 2.4.10, 2.6.0 - 2.6.3

2.4.11, 2.6.4

January 02, 2014

Sharding

Under very rare circumstances mongos may incorrectly report a write as successful.

2.2.0 - 2.2.6, 2.4.0 - 2.4.8

2.2.7, 2.4.9

October 22, 2013

Sharding

During a chunk migration in a sharded cluster, if one of the documents in the chunk has a size in the range of 16,776,185 and 16,777,216 bytes (inclusive), then some documents may be lost during the migration process.

2.2.0 - 2.2.5, 2.4.0 - 2.4.4

2.2.6, 2.4.6

March 22, 2013

Replication

Secondary indexes (i.e. all indexes other than _id) may be corrupted on an initial sync if write operations are performed on the sync source during the initial sync.

2.4.0

2.4.1

December 01, 2015

Security

Unauthorized access to a MongoDB instance or cluster when using LDAP authentication.

MongoDB Enterprise 3.0.0 to 3.0.6

3.0.7

March 27, 2015

mongod

Remotely trigger a denial of service (crash) due to failure to check for missing value.

3.0.0

3.0.1

March 25, 2015

mongod

Remotely trigger a denial of service (crash) via a specially crafted regular expression.

2.6.8 and earlier, 3.0.0

2.6.9 and 3.0.1

February 25, 2015

mongod

A specially crafted, malformed BSON message may trigger an uncaught exception in the server, resulting in a loss of availability

2.6.7 and earlier, 2.4.12 and earlier

2.6.8 and 2.4.13

June 17, 2014

mongod

Remotely trigger a crash when X.509 authentication is enabled

2.6.0, 2.6.1

2.6.2

May 05, 2014

mongod

Information disclosure of user credentials

2.6.0

2.6.1

June 20, 2013

Concurrency, Security

Improperly grant user system privileges on databases other than local.

2.4.0 - 2.4.4, 2.5.0

2.4.5, 2.5.1

June 05, 2013

JS Engine

Remotely triggered segmentation fault in Javascript engine.

2.4.0 - 2.4.4

2.4.5, 2.5.1

February 02, 2013

mongo Shell

It is possible to create documents that collide with JavaScript functions when fetched using the mongo shell.

2.2.3, 2.4.1, and earlier

(scheduled, unreleased)