ELSA-2021-3918

ELSA-2021-3918 - redis:5 security update

Type:SECURITY
Severity:IMPORTANT
Release Date:2021-10-19

Description


[5.0.3-5]
- fix denial of service via Redis Standard Protocol (RESP) request
CVE-2021-32675

[5.0.3-4]
- fix lua scripts can overflow the heap-based Lua stack
CVE-2021-32626
- fix integer overflow issue with Streams
CVE-2021-32627
- fix integer overflow bug in the ziplist data structure
CVE-2021-32628
- fix integer overflow issue with intsets
CVE-2021-32687
- fix integer overflow issue with strings
CVE-2021-41099


Related CVEs


CVE-2021-32626
CVE-2021-32627
CVE-2021-32628
CVE-2021-32675
CVE-2021-41099
CVE-2021-32687

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 8 (aarch64) redis-5.0.3-5.module+el8.4.0+20382+7694043a.src.rpm6bf3daee318d7766476eed949607f6a5-
redis-5.0.3-5.module+el8.4.0+20382+7694043a.aarch64.rpmec83c2934c2ecacf0c0c664cc68e3721-
redis-devel-5.0.3-5.module+el8.4.0+20382+7694043a.aarch64.rpmc35979b2c774c33bb08c9d6d3fb6f9cb-
redis-doc-5.0.3-5.module+el8.4.0+20382+7694043a.noarch.rpm48a923ea5c7078ae30dc811181248010-
Oracle Linux 8 (x86_64) redis-5.0.3-5.module+el8.4.0+20382+7694043a.src.rpm6bf3daee318d7766476eed949607f6a5-
redis-5.0.3-5.module+el8.4.0+20382+7694043a.x86_64.rpm4104fde4cab71fd788df140de177c0aa-
redis-devel-5.0.3-5.module+el8.4.0+20382+7694043a.x86_64.rpm9ccb35fc9e757448f6bd9d9511a065b9-
redis-doc-5.0.3-5.module+el8.4.0+20382+7694043a.noarch.rpm48a923ea5c7078ae30dc811181248010-



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete