Lucene search
DebianCVELIST:CVE-2013-7458HistoryAug 10, 2016 - 2:00 p.m.
CVE-2013-7458
2016-08-1014:00:00
debian
www.cve.org
5
linenoise, as used in Redis before 3.2.3, uses world-readable permissions for .rediscli_history, which allows local users to obtain sensitive information by reading the file.
References
lists.opensuse.org/opensuse-updates/2016-08/msg00029.html
lists.opensuse.org/opensuse-updates/2016-08/msg00030.html
www.debian.org/security/2016/dsa-3634
bugs.debian.org/cgi-bin/bugreport.cgi?bug=832460
github.com/antirez/linenoise/issues/121
github.com/antirez/linenoise/pull/122
github.com/antirez/redis/blob/3.2/00-RELEASENOTES
github.com/antirez/redis/issues/3284
github.com/antirez/redis/pull/1418
github.com/antirez/redis/pull/3322
Related
debian
debian
[SECURITY] [DSA 3634-1] redis security update
2016-07-30 16:11:58
[SECURITY] [DSA 3634-1] redis security update
2016-07-30 16:11:58
[SECURITY] [DLA 577-1] redis security update
2016-07-30 17:23:26
mageia
mageia
Updated redis packages fix security vulnerability
2016-08-31 20:34:12
openvas
openvas
Debian: Security Advisory (DLA-577-1)
2023-03-08 00:00:00
Debian Security Advisory DSA 3634-1 (redis - security update)
2016-08-04 00:00:00
Mageia: Security Advisory (MGASA-2016-0295)
2022-01-28 00:00:00
freebsd
freebsd
redis -- sensitive information leak through command history file
2013-11-30 00:00:00
nessus
nessus
Pivotal Software Redis < 3.2.3 Local Information Disclosure
2018-04-24 00:00:00
Debian DLA-577-1 : redis security update
2016-08-01 00:00:00
Debian DSA-3634-1 : redis - security update
2016-08-01 00:00:00
ubuntucve
ubuntucve
CVE-2013-7458
2016-08-10 00:00:00
debiancve
debiancve
CVE-2013-7458
2016-08-10 14:59:00
redhatcve
redhatcve
CVE-2013-7458
2016-08-03 10:48:18
prion
prion
Design/Logic Flaw
2016-08-10 14:59:00
cve
cve
CVE-2013-7458
2016-08-10 14:59:00
fedora
fedora
[SECURITY] Fedora 24 Update: redis-3.2.8-1.fc24
2017-06-18 01:18:52
osv
osv
redis - security update
2016-07-30 00:00:00
redis-3.2.4-1.1 on GA media
2024-06-15 00:00:00
nvd
nvd
CVE-2013-7458
2016-08-10 14:59:00
ibm
ibm