CVE-2021-32765HIGHCVSS 8.8fixed in 1.0.12021-10-04
CVE-2021-32765 [HIGH] CWE-190 CVE-2021-32765: Hiredis is a minimalistic C client library for the Redis database. In affected versions Hiredis is v
Hiredis is a minimalistic C client library for the Redis database. In affected versions Hiredis is vulnurable to integer overflow if provided maliciously crafted or corrupted `RESP` `mult-bulk` protocol data. When parsing `multi-bulk` (array-like) replies, hiredis fails to check if `count * sizeof(redisReply*)` can be represented in `SIZE_MAX`. If it
nvdosv