Operational Defect Database

BugZero found this defect 2527 days ago.

MongoDB | 367504

[SERVER-28474] The scope of AGPLv3 of the server should be described explicitly

Last update date:


Affected products:

MongoDB Server

Affected releases:

No affected releases provided.

Fixed releases:

No fixed releases provided.



First of all, ALv2 of drivers from the same author of the server suggests that AGPLv3 of the server doesn't affect licenses of client applications. Also, the blog "The AGPL" helps understanding. But, I think the license of drivers is confusing in the final analysis, because AGPLv3 will usually supersede/ override ALv2 in case that combined software are distributed or served via network. The LICENSE section of the older version of the README had mentioned the client license, but had not described the scope of AGPLv3, anyway. So, I think the README should describe the scope of AGPLv3 directly and explicitly.

Top User Comments

cat-sushi commented on Tue, 28 Mar 2017 16:34:51 +0000: Yes, I knew it. IMHO, README is best place where the author describe the license for whom down load the .tgz. ian@10gen.com commented on Tue, 28 Mar 2017 15:14:08 +0000: Hi Katsushi, thanks for reaching out. We don't intend to update the README itself with this information. You can find more information on our licensing policy at this link: https://www.mongodb.com/community/licensing

Additional Resources / Links


BugZero Risk Score

Coming soon



Have you been affected by this bug?


Do you know how much operational outages are costing you?

Understand the cost to your business and how BugZero can help you reduce those costs.


Login to read and write comments.

Have you ever...

had your data corrupted from a