Heap-based Buffer Overflow Affecting redis-doc package, versions <0:6.0.9-5.module+el8.4.0+20384+68ad316c


Severity

Recommended
0.0
high
0
10

Based on Oracle Linux security rating.

Threat Intelligence

EPSS
1.16% (85th percentile)

Do your applications use this vulnerable package?

In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.

Test your applications
  • Snyk IDSNYK-ORACLE8-REDISDOC-2587792
  • published10 Apr 2022
  • disclosed4 Oct 2021

Introduced: 4 Oct 2021

CVE-2021-32626  (opens in a new tab)
CWE-122  (opens in a new tab)
CWE-787  (opens in a new tab)

How to fix?

Upgrade Oracle:8 redis-doc to version 0:6.0.9-5.module+el8.4.0+20384+68ad316c or higher.
This issue was patched in ELSA-2021-3945.

NVD Description

Note: Versions mentioned in the description apply only to the upstream redis-doc package and not the redis-doc package as distributed by Oracle. See How to fix? for Oracle:8 relevant fixed versions and status.

Redis is an open source, in-memory database that persists on disk. In affected versions specially crafted Lua scripts executing in Redis can cause the heap-based Lua stack to be overflowed, due to incomplete checks for this condition. This can result with heap corruption and potentially remote code execution. This problem exists in all versions of Redis with Lua scripting support, starting from 2.6. The problem is fixed in versions 6.2.6, 6.0.16 and 5.0.14. For users unable to update an additional workaround to mitigate the problem without patching the redis-server executable is to prevent users from executing Lua scripts. This can be done using ACL to restrict EVAL and EVALSHA commands.

References

CVSS Scores

version 3.1