Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2016-8339HistoryOct 28, 2016 - 2:59 p.m.
CVE-2016-8339
2016-10-2814:59:00
Debian Security Bug Tracker
security-tracker.debian.org
10
0.01 Low
EPSS
Percentile
83.7%
A buffer overflow in Redis 3.2.x prior to 3.2.4 causes arbitrary code execution when a crafted command is sent. An out of bounds write vulnerability exists in the handling of the client-output-buffer-limit option during the CONFIG SET command for the Redis data structure store. A crafted CONFIG SET command can lead to an out of bounds write potentially resulting in code execution.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | redis | < 3:3.2.4-1 | redis_3:3.2.4-1_all.deb |
| Debian | 11 | all | redis | < 3:3.2.4-1 | redis_3:3.2.4-1_all.deb |
| Debian | 10 | all | redis | < 3:3.2.4-1 | redis_3:3.2.4-1_all.deb |
| Debian | 999 | all | redis | < 3:3.2.4-1 | redis_3:3.2.4-1_all.deb |
| Debian | 13 | all | redis | < 3:3.2.4-1 | redis_3:3.2.4-1_all.deb |
Related
openvas
openvas
Redis Server 'CONFIG SET' Command Buffer Overflow Vulnerability
2016-11-03 00:00:00
nessus
nessus
Pivotal Software Redis 3.2.x < 3.2.4 RCE
2018-04-24 00:00:00
openSUSE Security Update : redis (openSUSE-2017-1258)
2017-11-13 00:00:00
GLSA-201702-16 : Redis: Multiple vulnerabilities
2017-02-21 00:00:00
talos
talos
cve
cve
CVE-2016-8339
2016-10-28 14:59:00
redhatcve
redhatcve
CVE-2016-8339
2016-10-03 13:47:34
seebug
seebug
cvelist
cvelist
CVE-2016-8339
2016-10-28 14:00:00
prion
prion
Buffer overflow
2016-10-28 14:59:00
ubuntucve
ubuntucve
CVE-2016-8339
2016-10-28 00:00:00
gentoo
gentoo
Redis: Multiple vulnerabilities
2017-02-20 00:00:00