Deserialization Of Untrusted Data

kredis is vulnerable to Deserialization Of Untrusted Data. The vulnerability exists in castvalue function at json.rb which allows an attacker to parse crafted JSON data possibly resulting in deserialization of unexpected objects in the system...