Comment 4 for bug 1830865

This still needs more investigation since it comes from libbson and so affects more packages than just whoopsie (and should probably be disclosed to the upstream libbson project to coordinate how best to resolve it and to determine whether the current version of libbson is affected etc). Kevin, are you comfortable reporting this upstream - https://docs.mongodb.com/manual/tutorial/create-a-vulnerability-report/ as libbson is maintained at https://github.com/mongodb/mongo-c-driver/tree/master/src/libbson as part of the mongo-c-driver project?