Search CVE reports
1 – 6 of 6 results
setDeferredReply in networking.c in Valkey through 8.1.1 has an integer underflow for prev->size - prev->used.
3 affected packages
redict, redis, valkey
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| redict | Not in release | Not in release | Not in release | — |
| redis | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| valkey | Needs evaluation | Not in release | Not in release | — |
Redis is an open source, in-memory database that persists on disk. An unauthenticated connection can cause repeated IP protocol errors, leading to client starvation and, ultimately, a denial of service. This vulnerability is fixed...
3 affected packages
redict, redis, valkey
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| redict | Not in release | Not in release | — | — |
| redis | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| valkey | Needs evaluation | Not in release | — | — |
Redis is an open source, in-memory database that persists on disk. From 2.8 to before 8.0.3, 7.4.5, 7.2.10, and 6.2.19, an authenticated user may use a specially crafted string to trigger a stack/heap out of bounds write...
3 affected packages
redict, redis, valkey
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| redict | Not in release | Not in release | — | — |
| redis | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| valkey | Needs evaluation | Not in release | — | — |
Redis is an open source, in-memory database that persists on disk. In versions starting at 2.6 and prior to 7.4.3, An unauthenticated client can cause unlimited growth of output buffers, until the server runs out of memory or is...
3 affected packages
redict, redis, valkey
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| redict | Not in release | Not in release | Not in release | — |
| redis | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| valkey | Needs evaluation | Not in release | Not in release | — |
Some fixes available 4 of 8
Redis is an open source, in-memory database that persists on disk. An authenticated with sufficient privileges may create a malformed ACL selector which, when accessed, triggers a server panic and subsequent denial of service. The...
3 affected packages
redict, valkey, redis
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| redict | Not in release | Not in release | Not in release | — |
| valkey | Fixed | Not in release | Not in release | — |
| redis | Fixed | Not affected | Not affected | Not affected |
Some fixes available 9 of 13
Redis is an open source, in-memory database that persists on disk. An authenticated user may use a specially crafted Lua script to manipulate the garbage collector and potentially lead to remote code execution. The problem is...
3 affected packages
redict, valkey, redis
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| redict | Not in release | Not in release | Not in release | — |
| valkey | Fixed | Not in release | Not in release | — |
| redis | Fixed | Fixed | Fixed | Fixed |