vulnerability

Debian: CVE-2018-11218: redis -- security update

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
8	(AV:N/AC:L/Au:N/C:P/I:P/A:P)	Jun 17, 2018	Feb 19, 2019	Mar 30, 2026

Severity

CVSS

(AV:N/AC:L/Au:N/C:P/I:P/A:P)

Published

Jun 17, 2018

Added

Feb 19, 2019

Modified

Mar 30, 2026

Description

Memory Corruption was discovered in the cmsgpack library in the Lua subsystem in Redis before 3.2.12, 4.x before 4.0.10, and 5.x before 5.0 RC2 because of stack-based buffer overflows.

Solution

debian-upgrade-redis

References

CVE-2018-11218
https://attackerkb.com/topics/CVE-2018-11218
CWE-787
DEBIAN-DLA-1396-1
DEBIAN-DSA-4230
DEBIAN-DSA-4230-1
EUVD-EUVD-2018-3258
https://euvd.enisa.europa.eu/vulnerability/EUVD-2018-3258

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report