vulnerability

Debian: CVE-2021-3470: redis -- security update

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:N/AC:L/Au:N/C:N/I:N/A:P)	03/31/2021	07/30/2024	07/30/2024

Severity

CVSS

(AV:N/AC:L/Au:N/C:N/I:N/A:P)

Published

03/31/2021

Added

07/30/2024

Modified

07/30/2024

Description

A heap overflow issue was found in Redis in versions before 5.0.10, before 6.0.9 and before 6.2.0 when using a heap allocator other than jemalloc or glibc's malloc, leading to potential out of bound write or process crash. Effectively this flaw does not affect the vast majority of users, who use jemalloc or glibc malloc.

Solution

debian-upgrade-redis

References

CVE-2021-3470
https://attackerkb.com/topics/CVE-2021-3470

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today