Secure the future of MySQL. Sign this open letter

PSMDB and MongoDB MongoBleed: impact, mitigations, and patching strategy - February 24, 2026

Speakers:  Ivan Groenewold

Discover how CVE-2025-14847 (“MongoBleed”) can expose MongoDB to high-severity information disclosure—allowing an unauthenticated remote client to extract fragments of uninitialized server memory when zlib network compression is enabled on a network-reachable instance.

In this interview, we’ll break down who’s at risk, why zlib is the trigger, and the fastest mitigation: disable zlib while keeping snappy/zstd. We’ll also show how to confirm the fix (server options, logs, and PMM metrics) and how to plan upgrades to patched releases.

Join our Community Office Hours!

Percona Community Office Hours Ivan

Speaker Bios

Ivan Groenewold

MongoDB Tech Lead, Percona | Open source enthusiast

Passionate about technology, Ivan Groenewold is a seasoned professional with extensive experience in database management, cloud infrastructure, and software development.

With a focus on optimizing performance and scalability, Ivan excels in designing and implementing solutions for complex systems, particularly in MongoDB and cloud-native environments.

Known for problem-solving and a results-driven mindset, Ivan combines technical expertise with a commitment to continuous learning, delivering high-quality solutions for modern enterprise applications.

See all talks by Ivan Groenewold »

Take a look at our events

Percona Live 2026 is back!

Percona Live 2026 is back!

📍 Computer History Museum, Mountain View, California

Percona Live 2026 is back! Join the open source database community for three days of deep technical talks, hands-on workshops, and real conversations with people building and running MySQL, PostgreSQL, MongoDB, MariaDB, Valkey, and more in production.

May 27–29, 2026

PGConf Germany 2026

PGConf Germany 2026

📍 Essen, Germany

Percona is proud to sponsor PGConf.de 2026 in Essen — one of Europe’s leading events for the PostgreSQL community. This conference brings together engineers, contributors, and practitioners who are shaping the future of PostgreSQL in production environments around the world.

April 21–22, 2026

Nightmare on Collation Street - April 7, 2026

Nightmare on Collation Street - April 7, 2026

📍 Online

Character collations - the rules for comparing and sorting character strings - are not universal, even languages which use the same characters may sort them differently. These rules may also not be stable, and the libraries implementing them may have errors, requiring fixes and updates. When character string data is indexed or partitioned under one set of rules, then queried under another, it may create some problems.

Tuesday, April 7, 2026 · 11:00-12:00 BST

✎ Edit this page on GitHub