Wind River Support Network

HomeDefectsLIN1018-8890
Not to be fixed

LIN1018-8890 : Security Advisory - redis - CVE-2022-0543

Created: Feb 20, 2022    Updated: Mar 2, 2022
Resolved Date: Mar 2, 2022
Found In Version: 10.18.44.1
Severity: Standard
Applicable for: Wind River Linux LTS 18
Component/s: Userspace

Description

It was discovered, that redis, a persistent key-value database, due to a packaging issue, is prone to a (Debian-specific) Lua sandbox escape, which could result in remote code execution.

CREATE(Triage):(User=admin) CVE-2022-0543 (https://nvd.nist.gov/vuln/detail/CVE-2022-0543)
Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube