Low severity3.3NVD Advisory· Published Aug 10, 2016· Updated Jun 17, 2026
CVE-2013-7458
CVE-2013-7458
Description
linenoise, as used in Redis before 3.2.3, uses world-readable permissions for .rediscli_history, which allows local users to obtain sensitive information by reading the file.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
6- osv-coords3 versionspkg:rpm/opensuse/redis&distro=openSUSE%20Tumbleweedpkg:rpm/suse/redis&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Server%20Applications%2015%20SP2pkg:rpm/suse/redis&distro=SUSE%20Package%20Hub%2012
< 3.2.4-1.1+ 2 more
- (no CPE)range: < 3.2.4-1.1
- (no CPE)range: < 6.0.8-1.3.1
- (no CPE)range: < 3.0.7-6.1
Patches
Vulnerability mechanics
References
10- github.com/antirez/linenoise/issues/121nvdPatchThird Party Advisory
- github.com/antirez/linenoise/pull/122nvdPatchThird Party Advisory
- github.com/antirez/redis/issues/3284nvdPatchThird Party Advisory
- github.com/antirez/redis/pull/1418nvdIssue TrackingPatchThird Party Advisory
- github.com/antirez/redis/pull/3322nvdPatchThird Party Advisory
- lists.opensuse.org/opensuse-updates/2016-08/msg00029.htmlnvdMailing ListThird Party Advisory
- lists.opensuse.org/opensuse-updates/2016-08/msg00030.htmlnvdMailing ListThird Party Advisory
- www.debian.org/security/2016/dsa-3634nvdThird Party Advisory
- bugs.debian.org/cgi-bin/bugreport.cginvdMailing ListThird Party Advisory
- github.com/antirez/redis/blob/3.2/00-RELEASENOTESnvdRelease Notes
News mentions
0No linked articles in our index yet.