Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2025-49112

Опубликовано: 02 июн. 2025
Источник: debian
EPSS Низкий

Описание

setDeferredReply in networking.c in Valkey through 8.1.1 has an integer underflow for prev->size - prev->used.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
redictfixed7.3.5+ds-1package
redisunfixedpackage
valkeyfixed8.1.1+dfsg1-2package

Примечания

  • https://github.com/redis/redis/issues/14199

  • https://github.com/valkey-io/valkey/pull/2101

  • Fixed by: https://github.com/valkey-io/valkey/commit/374718b2a365ca69f715d542709b7d71540b1387

  • Redis upstream considers this issue only defensive programming / hardening, cf.

  • https://github.com/redis/redis/issues/14199#issuecomment-3076467634

EPSS

Процентиль: 3%
0.00016
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2025-49112

CVSS3: 3.1
ubuntu
6 месяцев назад

setDeferredReply in networking.c in Valkey through 8.1.1 has an integer underflow for prev->size - prev->used.

redhat логотип

CVE-2025-49112

CVSS3: 3.1
redhat
6 месяцев назад

setDeferredReply in networking.c in Valkey through 8.1.1 has an integer underflow for prev->size - prev->used.

nvd логотип

CVE-2025-49112

CVSS3: 3.1
nvd
6 месяцев назад

setDeferredReply in networking.c in Valkey through 8.1.1 has an integer underflow for prev->size - prev->used.

msrc логотип

CVE-2025-49112

CVSS3: 3.1
msrc
5 месяцев назад

setDeferredReply in networking.c in Valkey through 8.1.1 has an integer underflow

github логотип

GHSA-xhp4-6g9v-4xvj

CVSS3: 3.1
github
6 месяцев назад

setDeferredReply in networking.c in Valkey through 8.1.1 has an integer underflow for prev->size - prev->used.

EPSS

Процентиль: 3%
0.00016
Низкий