An out-of-bounds read in the 'bson' module of PyMongo 4.6.2 or earlier allows deserialization of malformed BSON provided by a Server to raise an exception which may contain arbitrary application memory. https://jira.mongodb.org/browse/PYTHON-4305
Created python-pdfminer tracking bugs for this issue: Affects: fedora-all [bug 2290589] Created python-pymongo tracking bugs for this issue: Affects: epel-7 [bug 2290588] Affects: fedora-all [bug 2290587]
Upstream commit for this issue: https://github.com/mongodb/mongo-python-driver/commit/56b6b6dbc267d365d97c037082369dabf37405d2