Redis is an open source, in-memory database that persists on disk. When using the Redis Lua Debugger, users can send malformed requests that cause the debugger’s protocol parser to read data beyond the actual buffer. This issue affects all versions of Redis with Lua debugging support (3.2 or newer). The problem is fixed in versions 6.2.6, 6.0.16 and 5.0.14.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
redis redis |
||
redhat enterprise linux 8.0 |
||
redhat software collections - |
||
debian debian linux 10.0 |
||
debian debian linux 11.0 |
||
fedoraproject fedora 33 |
||
fedoraproject fedora 34 |
||
fedoraproject fedora 35 |
||
netapp management services for element software - |
||
netapp management services for netapp hci - |
||
oracle communications operations monitor 4.3 |
||
oracle communications operations monitor 4.4 |
||
oracle communications operations monitor 5.0 |