CVE-2025-27151

CVE-2025-27151

Name

CVE-2025-27151

Description

Redis is an open source, in-memory database that persists on disk. In versions starting from 7.0.0 to before 8.0.2, a stack-based buffer overflow exists in redis-check-aof due to the use of memcpy with strlen(filepath) when copying a user-supplied file path into a fixed-size stack buffer. This allows an attacker to overflow the stack and potentially achieve code execution. This issue has been patched in version 8.0.2.

NVD Severity

unknown

Other trackers

CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia

Mailing lists

oss-security, full-disclosure, bugtraq

Exploits

Exploit DB, Metasploit

Forges

GitHub (code, issues), Aports (code, issues)

Type	URI
MISC	https://github.com/redis/redis/commit/643b5db235cb82508e72f11c7b4bbfc7dc39be56
MISC	https://github.com/redis/redis/releases/tag/8.0.2
CONFIRM	https://github.com/redis/redis/security/advisories/GHSA-5453-q98w-cmvm

Type

URI

MISC

https://github.com/redis/redis/commit/643b5db235cb82508e72f11c7b4bbfc7dc39be56

MISC

https://github.com/redis/redis/releases/tag/8.0.2

CONFIRM

https://github.com/redis/redis/security/advisories/GHSA-5453-q98w-cmvm

Match rules

CPE URI	Source package	Min version	Max version
	redis	>= 7.0.0	< 8.0.2
`cpe:2.3:a:redis:redis::::::::`	redis	>= 7.0.0	< 7.4.4
`cpe:2.3:a:redis:redis::::::::`	redis	>= 8.0.0	< 8.0.2

CPE URI

Source package

Min version

Max version

redis

>= 7.0.0

< 8.0.2

cpe:2.3:a:redis:redis:*:*:*:*:*:*:*:*

redis

>= 7.0.0

< 7.4.4

cpe:2.3:a:redis:redis:*:*:*:*:*:*:*:*

redis

>= 8.0.0

< 8.0.2

Vulnerable and fixed packages

Source package	Branch	Version	Maintainer	Status
valkey	edge-main	8.1.1-r1	Jakub Jirutka <jakub@jirutka.cz>	fixed
redis	edge-community	8.0.2-r0	fossdd <fossdd@pwned.life>	fixed
redis	edge-community	8.0.1-r0	fossdd <fossdd@pwned.life>	fixed
redis	edge-community	8.0.0-r0	fossdd <fossdd@pwned.life>	fixed
redict	edge-community	7.3.3-r1	fossdd <fossdd@pwned.life>	fixed
redis	edge-community	7.2.7-r0	fossdd <fossdd@pwned.life>	possibly vulnerable
redis	edge-community	7.2.5-r2	fossdd <fossdd@pwned.life>	possibly vulnerable
valkey	3.22-main	8.1.1-r1	Jakub Jirutka <jakub@jirutka.cz>	fixed
redis	3.22-community	8.0.2-r0	None	fixed
redict	3.22-community	7.3.3-r1	fossdd <fossdd@pwned.life>	fixed
redis	3.22-community	7.2.9-r0	fossdd <fossdd@pwned.life>	possibly vulnerable
valkey	3.21-main	7.2.9-r1	Jakub Jirutka <jakub@jirutka.cz>	fixed
redict	3.21-community	7.3.3-r1	fossdd <fossdd@pwned.life>	fixed
redis	3.21-community	7.2.9-r0	fossdd <fossdd@pwned.life>	fixed
valkey	3.20-main	7.2.9-r1	Jakub Jirutka <jakub@jirutka.cz>	fixed
redis	3.19-main	7.2.9-r0	TBK <alpine@jjtc.eu>	fixed
redis	3.19-main	7.2.8-r0	TBK <alpine@jjtc.eu>	possibly vulnerable
redis	3.19-main	7.2.7-r0	TBK <alpine@jjtc.eu>	possibly vulnerable
redis	3.19-main	7.2.4-r1	TBK <alpine@jjtc.eu>	possibly vulnerable
redis	3.18-main	7.0.15-r4	TBK <alpine@jjtc.eu>	fixed

Source package

Branch

Version

Maintainer

Status

valkey

edge-main

8.1.1-r1

Jakub Jirutka <jakub@jirutka.cz>

fixed

redis

edge-community