Percona Server for MongoDB 7.0.7-4 (2024-04-04)¶
Percona Server for MongoDB 7.0.7-4 is an enhanced, source-available, and highly-scalable database that is a fully-compatible, drop-in replacement for MongoDB Community Edition 7.0.5.
Percona Server for MongoDB 7.0.7-4 includes the improvements and bug fixes of MongoDB 7.0.6 Community Edition and MongoDB 7.0.7 Community Edition.
It supports protocols and drivers of both MongoDB 7.0.6 and MongoDB 7.0.7.
Warning
Due to CVE-2024-1351, in all MongoDB versions prior to 4.4.29, the mongod
server allows incoming connections to skip peer certificate validation which results in untrusted connections to succeed. This issue occurs when the mongod
is started with TLS enabled (net.tls.mode
set to allowTLS
, preferTLS
, or requireTLS
) and without a net.tls.CAFile
configured. For details, see SERVER-72839.
The issue is fixed upstream in versions 4.4.29, 5.0.25, 6.0.14 and 7.0.6 and in Percona Server for MongoDB 4.4.29-28, 5.0.26-22, 6.0.14-11 and 7.0.7-4. Now, configuring MongoDB to use TLS requires specifying the value for the --tlsCAFile
flag, the net.tls.CAFile
configuration option, or the tlsUseSystemCA
parameter.
Release Highlights¶
Improvements and bug fixes, provided by MongoDB and included in Percona Server for MongoDB are the following:
- SERVER-72839 - Fixed the issue with missing peer certificate validation if neither CAFile nor clusterCAFile is provided.
- SERVER-82353 - Fixed the issue with multi-document transactions missing documents when the movePrimary operation runs concurrently by detecting placement conflicts in multi-document transactions.
- SERVER-72703 - Changed the requirement to use exclusive write lock to intent exclusive write lock that doesn’t prevent reading from a collection during the
$out
stage when running the rename collection command. - SERVER-84338 - Fixed the issue in SBE (Storage Based Encryption) engine with returning incorrect results when running queries/aggregations with a
$or
operator and the is enabled. - SERVER-84723 - Ensured sharding catalog is valid when acquiring collections in multi-document transactions.
- SERVER-84368 - Fixed the issue with the
createIndex
command failing with theStaleConfig
error if it is run from a stale mongos against a sharded non-empty collection. - SERVER-84628 - Improved the warning about persisted Read/Write Consern defaults on startup by showing it only for shard servers.
- SERVER-85459 - In mixed replica sets where nodes have different Feature Compatibilty Version value, the primary nodes reject the commands with parameters that cannot be recognized by other replica set members.
- SERVER-85869 - Fixed the issue with exhaustive find command on config shard returning stale data by making shard registry use snapshot readConcern for reads from
config.shards
collection.
Find the full list of changes in the MongoDB 7.0.6 Community Edition release notes and MongoDB 7.0.7 Community Edition release notes.
Bugs Fixed¶
- PSMDB-1434 - Fixed the auditing behavior by removing excessive logging for CRUD operations
Get expert help¶
If you need assistance, visit the community forum for comprehensive and free database knowledge, or contact our Percona Database Experts for professional support and services.