CVE-2021-32628

Priority
Description
Redis is an open source, in-memory database that persists on disk. An
integer overflow bug in the ziplist data structure used by all versions of
Redis can be exploited to corrupt the heap and potentially result with
remote code execution. The vulnerability involves modifying the default
ziplist configuration parameters (hash-max-ziplist-entries,
hash-max-ziplist-value, zset-max-ziplist-entries or zset-max-ziplist-value)
to a very large value, and then constructing specially crafted commands to
create very large ziplists. The problem is fixed in Redis versions 6.2.6,
6.0.16, 5.0.14. An additional workaround to mitigate the problem without
patching the redis-server executable is to prevent users from modifying the
above configuration parameters. This can be done using ACL to restrict
unprivileged users from using the CONFIG SET command.
Notes
Package
Source: redis (LP Ubuntu Debian)
Upstream:released (5:6.0.16-1)
Ubuntu 18.04 LTS:needed
Ubuntu 20.04 LTS:needed
Ubuntu 21.10:needed
Ubuntu 22.04 LTS:not-affected (5:6.0.16-1)
Ubuntu 14.04 ESM:needed
Patches:
More Information

Updated: 2022-04-25 00:55:37 UTC (commit ecc1009cb19540b950de59270950018900f37f15)