Wind River Support Network

HomeDefectsLIN1018-9521
Fixed

LIN1018-9521 : Security Advisory - redis - CVE-2022-31144

Created: Jul 18, 2022    Updated: Jul 26, 2022
Resolved Date: Jul 26, 2022
Found In Version: 10.18.44.1
Severity: Standard
Applicable for: Wind River Linux LTS 18
Component/s: Userspace

Description

Redis is an in-memory database that persists on disk. A specially crafted 'XAUTOCLAIM' command on a stream key in a specific state may result with heap overflow, and potentially remote code execution. This problem affects versions on the 7.x branch prior to 7.0.4. The patch is released in version 7.0.4.

https://nvd.nist.gov/vuln/detail/CVE-2022-31144
Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube