2 matches found
CVE-2024-55656
CVE-2024-55656 (RedisBloom Integer Overflow) affects RedisBloom module used with Redis. The vulnerability occurs in CMS.INITBYDIM when allocating memory for a Count-Min Sketch using user-supplied width/depth, allowing heap memory under-allocation, leading to out-of-bounds read (OOB read) and writ...
PT-2025-3137 · Redis · Redisbloom
Name of the Vulnerable Software and Affected Versions: RedisBloom versions prior to 2.2.19 RedisBloom versions prior to 2.4.12 RedisBloom versions prior to 2.6.14 RedisBloom versions prior to 2.8.2 Description: There is an integer overflow vulnerability in RedisBloom, a module used in Redis. This...