14 matches found
CVE-2025-27151 vulnerabilities
Vulnerabilities for packages: redis...
Critical Photon OS Security Update - PHSA-2025-4.0-0799
Updates of 'redis' packages of Photon OS have been released...
MGASA-2023-0246 Updated redis packages fix security vulnerability
A specially crafted Lua script executing in Redis can trigger a heap overflow in the cjson and cmsgpack libraries, and result in heap corruption and potentially remote code execution. CVE-2022-24834...
MGASA-2023-0156 Updated redis packages fix security vulnerability
Authenticated users can use the HINCRBYFLOAT command to create an invalid hash field that will crash Redis on access. CVE-2023-28856...
MGASA-2023-0086 Updated redis packages fix security vulnerability
Specially crafted SRANDMEMBER, ZRANDMEMBER, and HRANDFIELD commands can trigger an integer overflow, resulting in a runtime assertion and termination of the Redis server process. CVE-2023-25155 String matching commands like SCAN or KEYS with a specially crafted pattern to trigger a...
Redis Lua Sandbox Escape
This module exploits CVE-2022-0543, a Lua-based Redis sandbox escape. The vulnerability was introduced by Debian and Ubuntu Redis packages that insufficiently sanitized the Lua environment. The maintainers failed to disable the package interface, allowing attackers to load arbitrary libraries. On...
MGASA-2021-0483 Updated redis packages fix security vulnerability
CVE-2021-32626: Specially crafted Lua scripts executing in Redis can cause the heap-based Lua stack to be overflowed, due to incomplete checks for this condition. This can result with heap corruption and potentially remote code execution. CVE-2021-32627: An integer overflow bug in Redis 5.0 or...
MGASA-2021-0155 Updated redis packages fix security vulnerability
It was discovered that there were a number of integer overflow issues in Redis. It is currently believed that the issues only affect 32-bit based systems CVE-2021-21309...
MGASA-2020-0312 Updated redis packages fix security vulnerability
An integer overflow in the getnum function in luastruct.c CVE-2020-14147...
MGASA-2019-0226 Updated redis packages fix security vulnerabilities
This update fixes 2 security issues. A heap-buffer overflow vulnerability was found in the Redis hyperloglog data structure CVE-2019-10192. A stack-buffer overflow vulnerability was found in the Redis hyperloglog data structure CVE-2019-10193...
Critical Photon OS Security Update - PHSA-2018-0070
Updates of 'vim', 'redis' packages of Photon OS have been released...
MGASA-2018-0119 Updated redis packages fix security vulnerability
The following vulnerabilities were fixed: - Buffer overflows occurring reading redis.conf bsc1061967 The following bugs are fixed: - Several PSYNC2 bugs could cause data corruption...
MGASA-2016-0295 Updated redis packages fix security vulnerability
It was discovered that redis did not properly protect redis-cli history files; they were created by default with world-readable permissions CVE-2013-7458...
MGASA-2015-0472 Updated redis packages fix CVE-2015-8080
Luca Bruno discovered an integer overflow flaw leading to a stack-based buffer overflow in redis, a persistent key-value database. A remote attacker can use this flaw to cause a denial of service application crash CVE-2015-8080...