rpm package
opensuse/hiredis&distro=openSUSE Tumbleweed
pkg:rpm/opensuse/hiredis&distro=openSUSE%20Tumbleweed
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2021-32765 | — | < 1.0.2-1.1 | 1.0.2-1.1 | Oct 4, 2021 | Hiredis is a minimalistic C client library for the Redis database. In affected versions Hiredis is vulnurable to integer overflow if provided maliciously crafted or corrupted `RESP` `mult-bulk` protocol data. When parsing `multi-bulk` (array-like) replies, hiredis fails to check | ||
| CVE-2020-7105 | — | < 1.0.0-2.6 | 1.0.0-2.6 | Jan 16, 2020 | async.c and dict.c in libhiredis.a in hiredis through 0.14.0 allow a NULL pointer dereference because malloc return values are unchecked. |
- CVE-2021-32765Oct 4, 2021affected < 1.0.2-1.1fixed 1.0.2-1.1
Hiredis is a minimalistic C client library for the Redis database. In affected versions Hiredis is vulnurable to integer overflow if provided maliciously crafted or corrupted `RESP` `mult-bulk` protocol data. When parsing `multi-bulk` (array-like) replies, hiredis fails to check
- CVE-2020-7105Jan 16, 2020affected < 1.0.0-2.6fixed 1.0.0-2.6
async.c and dict.c in libhiredis.a in hiredis through 0.14.0 allow a NULL pointer dereference because malloc return values are unchecked.