CVE-2021-32626

CVE-2021-32626

Name

CVE-2021-32626

Description

Redis is an open source, in-memory database that persists on disk. In affected versions specially crafted Lua scripts executing in Redis can cause the heap-based Lua stack to be overflowed, due to incomplete checks for this condition. This can result with heap corruption and potentially remote code execution. This problem exists in all versions of Redis with Lua scripting support, starting from 2.6. The problem is fixed in versions 6.2.6, 6.0.16 and 5.0.14. For users unable to update an additional workaround to mitigate the problem without patching the redis-server executable is to prevent users from executing Lua scripts. This can be done using ACL to restrict EVAL and EVALSHA commands.

NVD Severity

high

Other trackers

CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia

Mailing lists

oss-security, full-disclosure, bugtraq

Exploits

Exploit DB, Metasploit

Forges

GitHub (code, issues), Aports (code, issues)

Type	URI
MISC	https://github.com/redis/redis/commit/666ed7facf4524bf6d19b11b20faa2cf93fdf591
CONFIRM	https://github.com/redis/redis/security/advisories/GHSA-p486-xggp-782c
Mailing List	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VL5KXFN3ATM7IIM7Q4O4PWTSRGZ5744Z/
Mailing List	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HTYQ5ZF37HNGTZWVNJD3VXP7I6MEEF42/
Mailing List	https://lists.apache.org/thread.html/r75490c61c2cb7b6ae2c81238fd52ae13636c60435abcd732d41531a0@%3Ccommits.druid.apache.org%3E
Mailing List	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WR5WKJWXD4D6S3DJCZ56V74ESLTDQRAB/
Third Party Advisory	https://security.netapp.com/advisory/ntap-20211104-0003/
DEBIAN	https://www.debian.org/security/2021/dsa-5001
MISC	https://www.oracle.com/security-alerts/cpuapr2022.html

Type

URI

MISC

https://github.com/redis/redis/commit/666ed7facf4524bf6d19b11b20faa2cf93fdf591

CONFIRM

https://github.com/redis/redis/security/advisories/GHSA-p486-xggp-782c

Mailing List

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VL5KXFN3ATM7IIM7Q4O4PWTSRGZ5744Z/

Mailing List

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HTYQ5ZF37HNGTZWVNJD3VXP7I6MEEF42/

Mailing List

https://lists.apache.org/thread.html/r75490c61c2cb7b6ae2c81238fd52ae13636c60435abcd732d41531a0@%3Ccommits.druid.apache.org%3E

Mailing List

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WR5WKJWXD4D6S3DJCZ56V74ESLTDQRAB/

Third Party Advisory

https://security.netapp.com/advisory/ntap-20211104-0003/

DEBIAN

https://www.debian.org/security/2021/dsa-5001

MISC

https://www.oracle.com/security-alerts/cpuapr2022.html

Match rules

CPE URI	Source package	Min version	Max version
`cpe:2.3:a:redis:redis::::::::`	redis	>= 2.6	< 5.0.14
`cpe:2.3:a:redis:redis::::::::`	redis	>= 6.0.0	< 6.0.16
`cpe:2.3:a:redis:redis::::::::`	redis	>= 6.2.0	< 6.2.6

CPE URI

Source package

Min version

Max version

cpe:2.3:a:redis:redis:*:*:*:*:*:*:*:*

redis

>= 2.6

< 5.0.14

cpe:2.3:a:redis:redis:*:*:*:*:*:*:*:*

redis

>= 6.0.0

< 6.0.16

cpe:2.3:a:redis:redis:*:*:*:*:*:*:*:*

redis

>= 6.2.0

< 6.2.6

Vulnerable and fixed packages

Source package	Branch	Version	Maintainer	Status
redis	3.13-main	6.0.16-r0	TBK <alpine@jjtc.eu>	fixed
redis	3.12-main	5.0.14-r0	TBK <alpine@jjtc.eu>	fixed
redis	3.11-main	5.0.14-r0	TBK <alpine@jjtc.eu>	fixed

Source package

Branch

Version

Maintainer

Status

redis

3.13-main

6.0.16-r0

TBK <alpine@jjtc.eu>

fixed

redis

3.12-main

5.0.14-r0

TBK <alpine@jjtc.eu>

fixed

redis

3.11-main

5.0.14-r0

TBK <alpine@jjtc.eu>

fixed

References

Match rules

Vulnerable and fixed packages