2 matches found
Astra Linux – Vulnerability in Redis
Redis is an in-memory database that persists data on disk.Authenticated users can use string matching commands such as SCAN or KEYS with specially crafted patterns to trigger a denial-of-service attack on Redis, causing it to hang and consume 100% of CPU resources. This issue has been fixed in...
BIT-VALKEY-2023-25155 Integer Overflow in several Redis commands can lead to denial of service.
Redis is an in-memory database that persists on disk. Authenticated users issuing specially crafted SRANDMEMBER, ZRANDMEMBER, and HRANDFIELD commands can trigger an integer overflow, resulting in a runtime assertion and termination of the Redis server process. This problem affects all Redis...