Lucene search
Alpine Linux Development TeamALPINE:CVE-2020-14147HistoryJun 15, 2020 - 6:15 p.m.
CVE-2020-14147
2020-06-1518:15:00
Alpine Linux Development Team
security.alpinelinux.org
18
0.003 Low
EPSS
Percentile
69.7%
An integer overflow in the getnum function in lua_struct.c in Redis before 6.0.3 allows context-dependent attackers with permission to run Lua code in a Redis session to cause a denial of service (memory corruption and application crash) or possibly bypass intended sandbox restrictions via a large number, which triggers a stack-based buffer overflow. NOTE: this issue exists because of a CVE-2015-8080 regression.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Alpine | edge-community | noarch | redis | < 6.0.3-r0 | UNKNOWN |
| Alpine | 3.13-main | noarch | redis | < 6.0.3-r0 | UNKNOWN |
| Alpine | 3.14-main | noarch | redis | < 6.0.3-r0 | UNKNOWN |
| Alpine | 3.15-main | noarch | redis | < 6.0.3-r0 | UNKNOWN |
| Alpine | 3.16-main | noarch | redis | < 6.0.3-r0 | UNKNOWN |
| Alpine | 3.17-main | noarch | redis | < 6.0.3-r0 | UNKNOWN |
| Alpine | 3.18-main | noarch | redis | < 6.0.3-r0 | UNKNOWN |
| Alpine | 3.19-main | noarch | redis | < 6.0.3-r0 | UNKNOWN |
Related
ubuntucve
ubuntucve
CVE-2020-14147
2020-06-15 00:00:00
CVE-2015-8080
2016-04-13 00:00:00
cve
cve
CVE-2020-14147
2020-06-15 18:15:00
CVE-2015-8080
2016-04-13 15:59:00
debiancve
debiancve
CVE-2020-14147
2020-06-15 18:15:00
CVE-2015-8080
2016-04-13 15:59:00
cvelist
cvelist
CVE-2020-14147
2020-06-15 16:52:45
CVE-2015-8080
2016-04-13 15:00:00
redhatcve
redhatcve
CVE-2020-14147
2020-06-18 14:37:09
osv
osv
CVE-2020-14147
2020-06-15 18:15:14
redis - security update
2020-07-19 00:00:00
CVE-2015-8080
2016-04-13 15:59:00
prion
prion
Integer overflow
2020-06-15 18:15:00
Integer overflow
2016-04-13 15:59:00
ibm
ibm
debian
debian
[SECURITY] [DSA 4731-1] redis security update
2020-07-19 19:30:52
[SECURITY] [DSA 4731-1] redis security update
2020-07-19 19:31:08
[SECURITY] [DSA 3412-1] redis security update
2015-12-03 21:06:43
suse
suse
Security update for redis (moderate)
2020-07-23 00:00:00
nessus
nessus
Photon OS 3.0: Redis PHSA-2020-3.0-0108
2020-07-07 00:00:00
Photon OS 1.0: Redis PHSA-2020-1.0-0304
2020-06-29 00:00:00
openSUSE Security Update : redis (openSUSE-2020-1035)
2020-07-27 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2020-0312)
2022-01-28 00:00:00
Debian: Security Advisory (DSA-3412-1)
2015-12-02 00:00:00
openSUSE: Security Advisory for redis (openSUSE-SU-2020:1035-1)
2020-07-24 00:00:00
redhat
redhat
(RHSA-2016:0097) Moderate: redis security advisory
2016-02-01 20:57:43
(RHSA-2016:0095) Moderate: redis security advisory
2016-02-01 20:57:18
(RHSA-2016:0096) Moderate: redis security advisory
2016-02-01 20:57:24
mageia
mageia
Updated redis packages fix security vulnerability
2020-08-01 02:25:42
Updated redis packages fix CVE-2015-8080
2015-12-17 00:01:04
veracode
veracode
Denial Of Service (DoS)
2021-04-29 11:57:54
Denial Of Service (DoS)
2019-01-15 09:09:51
cbl_mariner
cbl_mariner
CVE-2020-14147 affecting package redis 5.0.5-7
2020-11-30 19:30:43
CVE-2020-14147 affecting package redis for versions less than 5.0.5-7
2022-04-09 06:51:55
checkpoint_advisories
checkpoint_advisories
Redis Lua Scripting Component getnum Integer Overflow (CVE-2015-8080)
2016-02-29 00:00:00
alpinelinux
alpinelinux
CVE-2015-8080
2016-04-13 15:59:00
gentoo
gentoo
Redis: Multiple vulnerabilities
2020-08-27 00:00:00
Redis: Multiple vulnerabilities
2017-02-20 00:00:00
photon
photon
oracle
oracle
Oracle Critical Patch Update Advisory - January 2021
2021-01-19 00:00:00