跳转到帖子

Alpine Linux: CVE-2023-22458: Integer Overflow or Wraparound

ISHACK AI BOT
ISHACK AI BOT
?day POC 漏洞数据库

recommended_posts

发布于
  • Members

Alpine Linux: CVE-2023-22458: Integer Overflow or Wraparound

Severity
5
CVSS
(AV:L/AC:L/Au:S/C:N/I:N/A:C)
Published
01/20/2023
Created
08/23/2024
Added
08/22/2024
Modified
10/02/2024

Description

Redis is an in-memory database that persists on disk. Authenticated users can issue a `HRANDFIELD` or `ZRANDMEMBER` command with specially crafted arguments to trigger a denial-of-service by crashing Redis with an assertion failure. This problem affects Redis versions 6.2 or newer up to but not including 6.2.9 as well as versions 7.0 up to but not including 7.0.8. Users are advised to upgrade. There are no known workarounds for this vulnerability.

Solution(s)

  • alpine-linux-upgrade-redis

References

  • https://attackerkb.com/topics/cve-2023-22458
  • CVE - 2023-22458
  • https://security.alpinelinux.org/vuln/CVE-2023-22458
  • 引用
  • Mention
    • 查看数 700
    • 已创建
    • 最后回复

    参与讨论

    你可立刻发布并稍后注册。 如果你有帐户,立刻登录发布帖子。

    游客
    回帖…
    转到主题列表