VYPR

rpm package

opensuse/hiredis&distro=openSUSE Tumbleweed

pkg:rpm/opensuse/hiredis&distro=openSUSE%20Tumbleweed

Vulnerabilities (2)

  • CVE-2021-32765Oct 4, 2021
    affected < 1.0.2-1.1fixed 1.0.2-1.1

    Hiredis is a minimalistic C client library for the Redis database. In affected versions Hiredis is vulnurable to integer overflow if provided maliciously crafted or corrupted `RESP` `mult-bulk` protocol data. When parsing `multi-bulk` (array-like) replies, hiredis fails to check

  • CVE-2020-7105Jan 16, 2020
    affected < 1.0.0-2.6fixed 1.0.0-2.6

    async.c and dict.c in libhiredis.a in hiredis through 0.14.0 allow a NULL pointer dereference because malloc return values are unchecked.