FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-19 20:48:44 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
c561ce49-eabc-11eb-9c3f-0800270512f4	redis -- Integer overflow issues with BITFIELD command on 32-bit systems Huang Zhw reports: On 32-bit versions, Redis BITFIELD command is vulnerable to integer overflow that can potentially be exploited to corrupt the heap, leak arbitrary heap contents or trigger remote code execution. The vulnerability involves constructing specially crafted bit commands which overflow the bit offset. This problem only affects 32-bit versions of Redis. Discovery 2021-07-04 Entry 2021-07-27 redis < 6.0.15 redis-devel < 6.2.5 redis5 < 5.0.13 CVE-2021-32761 https://github.com/redis/redis/security/advisories/GHSA-8wxq-j7rp-g8wj

VuXML ID

Description

c561ce49-eabc-11eb-9c3f-0800270512f4

redis -- Integer overflow issues with BITFIELD command on 32-bit systems

Huang Zhw reports:

On 32-bit versions, Redis BITFIELD command is vulnerable to integer overflow that can potentially be exploited to corrupt the heap, leak arbitrary heap contents or trigger remote code execution. The vulnerability involves constructing specially crafted bit commands which overflow the bit offset.

This problem only affects 32-bit versions of Redis.

Discovery 2021-07-04
Entry 2021-07-27
redis

< 6.0.15

redis-devel

< 6.2.5

redis5

< 5.0.13

CVE-2021-32761
https://github.com/redis/redis/security/advisories/GHSA-8wxq-j7rp-g8wj