14 matches found
Advisory ROSA-SA-2024-2336
software: hiredis 0.13.3 AXIS: ROSA-CHROME packageevrstring: hiredis-0.13.3-2.src.rpm CVE-ID: CVE-2021-32765 BDU-ID: None CVE-Crit: HIGH CVE-DESC.: In vulnerable versions, Hiredis is vulnerable to integer overflow if provided with maliciously crafted or corrupted RESP mult-bulk protocol data. Whe...
Amazon Linux 2 : hiredis (ALASREDIS6-2023-004)
The version of hiredis installed on the remote host is prior to 0.13.3-17. It is, therefore, affected by a vulnerability as referenced in the ALAS2REDIS6-2023-004 advisory. Hiredis is a minimalistic C client library for the Redis database. In affected versions Hiredis is vulnurable to integer...
Important: hiredis
Issue Overview: Hiredis is a minimalistic C client library for the Redis database. In affected versions Hiredis is vulnurable to integer overflow if provided maliciously crafted or corrupted RESP mult-bulk protocol data. When parsing multi-bulk array-like replies, hiredis fails to check if count...
Fedora: Security Advisory for hiredis (FEDORA-2022-ec83686a30)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Mageia: Security Advisory (MGASA-2021-0562)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
OPENSUSE-SU-2021:1550-1 Security update for hiredis
This update for hiredis fixes the following issues: - CVE-2021-32765: Fix integer/buffer boo1191331 This update was imported from the openSUSE:Leap:15.2:Update update project...
Security update for hiredis (moderate)
openSUSE Security Update: Security update for hiredis Announcement ID: openSUSE-SU-2021:1550-1 Rating: moderate References: 1191331 Cross-References: CVE-2021-32765 CVSS scores: CVE-2021-32765 NVD : 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: openSUSE Backports SLE-15-SP2 ...
openSUSE 15 Security Update : hiredis (openSUSE-SU-2021:1536-1)
The remote SUSE Linux SUSE15 host has packages installed that are affected by a vulnerability as referenced in the openSUSE-SU-2021:1536-1 advisory. - Hiredis is a minimalistic C client library for the Redis database. In affected versions Hiredis is vulnurable to integer overflow if provided...
OPENSUSE-SU-2021:1536-1 Security update for hiredis
This update for hiredis fixes the following issues: - CVE-2021-32765: Fix integer/buffer boo1191331...
Security update for hiredis (moderate)
openSUSE Security Update: Security update for hiredis Announcement ID: openSUSE-SU-2021:1536-1 Rating: moderate References: 1191331 Cross-References: CVE-2021-32765 CVSS scores: CVE-2021-32765 NVD : 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: openSUSE Leap 15.2 openSUSE...
OESA-2021-1390 hiredis security update
Hiredis is a minimalistic C client library for the Redis database. It is minimalistic because it just adds minimal support for the protocol, but at the same time it uses a high level printf-alike API in order to make it much higher level than otherwise suggested by its minimal code base and the...
Debian DLA-2783-1 : hiredis - LTS security update
The remote Debian 9 host has packages installed that are affected by a vulnerability as referenced in the dla-2783 advisory. - Hiredis is a minimalistic C client library for the Redis database. In affected versions Hiredis is vulnurable to integer overflow if provided maliciously crafted or...
UBUNTU-CVE-2021-32765
Hiredis is a minimalistic C client library for the Redis database. In affected versions Hiredis is vulnurable to integer overflow if provided maliciously crafted or corrupted RESP mult-bulk protocol data. When parsing multi-bulk array-like replies, hiredis fails to check if count sizeofredisReply...
CVE-2021-32765
CVE-2021-32765 affects hiredis, a Redis C client. The issue is an integer overflow during parsing RESP multi-bulk replies: count * sizeof(redisReply*) may overflow SIZE_MAX, causing a short allocation and potential buffer overflow. Exploitation details are not provided in the documents, but multi...