CVE-2015-8080
published 2016-04-13CVE-2015-8080: Integer overflow in the getnum function in lua_struct.c in Redis 2.8.x before 2.8.24 and 3.0.x before 3.0.6 allows context-dependent attackers with permission…
high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
Integer overflow in the getnum function in lua_struct.c in Redis 2.8.x before 2.8.24 and 3.0.x before 3.0.6 allows context-dependent attackers with permission to run Lua code in a Redis session to cause a denial of service (memory corruption and application crash) or possibly bypass intended sandbox restrictions via a large number, which triggers a stack-based buffer overflow.
Affected
33 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | debian_linux | — | — |
| debian | debian_linux | — | — |
| debian | debian_linux | — | — |
| debian | redis | < redis 2:3.0.5-4 (bookworm) | redis 2:3.0.5-4 (bookworm) |
| debian | redis | < redis 5:6.0.0-1 (bookworm) | redis 5:6.0.0-1 (bookworm) |
| msrc | cbl2_redis_5.0.5-7_on_cbl_mariner_2.0 | — | — |
| msrc | cbl_mariner_1.0_arm | — | — |
| msrc | cbl_mariner_1.0_x64 | — | — |
| msrc | cbl_mariner_2.0_arm | — | — |
| msrc | cbl_mariner_2.0_x64 | — | — |
| msrc | cm1_redis_5.0.5-4_on_cbl_mariner_1.0 | — | — |
| opensuse | leap | — | — |
| opensuse | opensuse | — | — |
| oracle | communications_operations_monitor | — | — |
| oracle | communications_operations_monitor | — | — |
| oracle | communications_operations_monitor | — | — |
| oracle | communications_operations_monitor | — | — |
| redhat | openstack | — | — |
| redhat | openstack | — | — |
| redis | redis | >= 0 < 2:3.0.5-4 | 2:3.0.5-4 |
| redis | redis | >= 0 < 5:6.0.0-1 | 5:6.0.0-1 |
| redis | redis | >= 0 < 2:3.0.5-4 | 2:3.0.5-4 |
| redis | redis | >= 0 < 5:6.0.0-1 | 5:6.0.0-1 |
| redis | redis | >= 0 < 2:3.0.5-4 | 2:3.0.5-4 |
| redis | redis | >= 0 < 5:6.0.0-1 | 5:6.0.0-1 |
CVSS provenance
nvdv3.17.7HIGHCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H
osv7.5HIGH