Test Kennung:	1.3.6.1.4.1.25623.1.0.146369
Kategorie:	Databases
Titel:	Redis Integer Overflow Vulnerability (GHSA-8wxq-j7rp-g8wj)
Zusammenfassung:	Redis is prone to an integer overflow vulnerability.
Beschreibung:	Summary: Redis is prone to an integer overflow vulnerability. Vulnerability Insight: On 32-bit versions, Redis BITFIELD command is vulnerable to integer overflow that can potentially be exploited to corrupt the heap, leak arbitrary heap contents or trigger remote code execution. The vulnerability involves constructing specially crafted bit commands which overflow the bit offset. Affected Software/OS: Redis version 2.2 and later. This problem only affects 32-bit versions of Redis. Solution: Update to version 5.0.13, 6.0.15, 6.2.5 or later. CVSS Score: 6.0 CVSS Vector: AV:N/AC:M/Au:S/C:P/I:P/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2021-32761 https://github.com/redis/redis/security/advisories/GHSA-8wxq-j7rp-g8wj Debian Security Information: DSA-5001 (Google Search) https://www.debian.org/security/2021/dsa-5001 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VGX7RRAWGXWXEAKJTQYSDSBO2BC3SAHD/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6O7AUOROBYGP5IMGJPC5HZ3R2RB6GZ5X/ https://security.gentoo.org/glsa/202209-17 https://lists.debian.org/debian-lts-announce/2021/07/msg00017.html https://lists.debian.org/debian-lts-announce/2021/08/msg00026.html
Copyright	Copyright (C) 2021 Greenbone Networks GmbH

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.