4 matches found
redis: Integer overflow issue with intsets
An integer overflow issue was found in redis. The vulnerability involves changing the default "set-max-intset-entries" configuration parameter to a very large value and constructing specially crafted commands to manipulate sets. This flaw allows a remote attacker to leak arbitrary contents of the...
The vulnerability of the set-max-intset-entries configuration parameter in the Redis database management system allows a hacker to execute arbitrary code.
The vulnerability of the set-max-intset-entries configuration parameter in the Redis database management system is related to the possibility of integer overflow. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...
AZL-6849 CVE-2021-32687 affecting package redis for versions less than 6.2.6-1
Redis is an open source, in-memory database that persists on disk. An integer overflow bug affecting all versions of Redis can be exploited to corrupt the heap and potentially be used to leak arbitrary contents of the heap or trigger remote code execution. The vulnerability involves changing the...
The vulnerability of the Redis database management system, related to writing beyond the buffer in memory, allows a attacker to perform arbitrary operations.
The vulnerability of the Redis database management system is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using the set-max-intset-entries configuration parameter...