Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2015-8080

Опубликовано: 06 нояб. 2015
Источник: redhat
CVSS2: 6.5
EPSS Низкий

Описание

Integer overflow in the getnum function in lua_struct.c in Redis 2.8.x before 2.8.24 and 3.0.x before 3.0.6 allows context-dependent attackers with permission to run Lua code in a Redis session to cause a denial of service (memory corruption and application crash) or possibly bypass intended sandbox restrictions via a large number, which triggers a stack-based buffer overflow.

An integer-wraparound flaw leading to a stack-based overflow was found in Redis. A user with access to run Lua code in a Redis session could possibly use this flaw to crash the server (denial of service) or gain code execution outside of the Lua sandbox.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat OpenStack Platform 8 (Liberty)redisNot affected
Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7redisFixedRHSA-2016:009501.02.2016
Red Hat Enterprise Linux OpenStack Platform 7.0 (Kilo) for RHEL 7redisFixedRHSA-2016:009601.02.2016
Red Hat Enterprise Linux OpenStack Platform 7.0 Operational Tools for RHEL 7redisFixedRHSA-2016:009701.02.2016

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-190
https://bugzilla.redhat.com/show_bug.cgi?id=1278965redis: Integer wraparound in lua_struct.c causing stack-based buffer overflow

EPSS

Процентиль: 84%
0.0224
Низкий

6.5 Medium

CVSS2

Связанные уязвимости

ubuntu логотип

CVE-2015-8080

CVSS3: 7.5
ubuntu
почти 10 лет назад

Integer overflow in the getnum function in lua_struct.c in Redis 2.8.x before 2.8.24 and 3.0.x before 3.0.6 allows context-dependent attackers with permission to run Lua code in a Redis session to cause a denial of service (memory corruption and application crash) or possibly bypass intended sandbox restrictions via a large number, which triggers a stack-based buffer overflow.

nvd логотип

CVE-2015-8080

CVSS3: 7.5
nvd
почти 10 лет назад

Integer overflow in the getnum function in lua_struct.c in Redis 2.8.x before 2.8.24 and 3.0.x before 3.0.6 allows context-dependent attackers with permission to run Lua code in a Redis session to cause a denial of service (memory corruption and application crash) or possibly bypass intended sandbox restrictions via a large number, which triggers a stack-based buffer overflow.

debian логотип

CVE-2015-8080

CVSS3: 7.5
debian
почти 10 лет назад

Integer overflow in the getnum function in lua_struct.c in Redis 2.8.x ...

suse-cvrf логотип

openSUSE-SU-2016:1444-1

suse-cvrf
больше 9 лет назад

Security update for redis

github логотип

GHSA-4r9x-2fwv-q8g6

CVSS3: 7.5
github
больше 3 лет назад

Integer overflow in the getnum function in lua_struct.c in Redis 2.8.x before 2.8.24 and 3.0.x before 3.0.6 allows context-dependent attackers with permission to run Lua code in a Redis session to cause a denial of service (memory corruption and application crash) or possibly bypass intended sandbox restrictions via a large number, which triggers a stack-based buffer overflow.

EPSS

Процентиль: 84%
0.0224
Низкий

6.5 Medium

CVSS2