Redis v7.0 was discovered to contain a memory leak via the component streamGetEdgeID.
References
Link | Resource |
---|---|
https://github.com/redis/redis/commit/4a7a4e42db8ff757cdf3f4a824f66426036034ef | Patch Third Party Advisory |
https://github.com/redis/redis/pull/10753 | Exploit Issue Tracking Patch Third Party Advisory |
https://github.com/redis/redis/pull/10829 | Exploit Issue Tracking Release Notes Third Party Advisory |
https://raw.githubusercontent.com/redis/redis/7.0.1/00-RELEASENOTES | Release Notes Third Party Advisory |
https://security.gentoo.org/glsa/202209-17 | Third Party Advisory |
https://security.netapp.com/advisory/ntap-20220729-0005/ | Third Party Advisory |
Configurations
History
07 Oct 2022, 15:49
Type | Values Removed | Values Added |
---|---|---|
References | (CONFIRM) https://security.netapp.com/advisory/ntap-20220729-0005/ - Third Party Advisory | |
References | (GENTOO) https://security.gentoo.org/glsa/202209-17 - Third Party Advisory |
29 Sep 2022, 17:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
29 Jul 2022, 20:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
29 Jun 2022, 18:08
Type | Values Removed | Values Added |
---|---|---|
First Time |
Redis redis
Redis |
|
CWE | CWE-401 | |
CPE | cpe:2.3:a:redis:redis:7.0:*:*:*:*:*:*:* | |
CVSS |
v2 : v3 : |
v2 : 5.0
v3 : 7.5 |
References | (MISC) https://github.com/redis/redis/commit/4a7a4e42db8ff757cdf3f4a824f66426036034ef - Patch, Third Party Advisory | |
References | (MISC) https://raw.githubusercontent.com/redis/redis/7.0.1/00-RELEASENOTES - Release Notes, Third Party Advisory | |
References | (MISC) https://github.com/redis/redis/pull/10753 - Exploit, Issue Tracking, Patch, Third Party Advisory | |
References | (MISC) https://github.com/redis/redis/pull/10829 - Exploit, Issue Tracking, Release Notes, Third Party Advisory |
23 Jun 2022, 17:19
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-06-23 17:15
Updated : 2023-12-10 14:22
NVD link : CVE-2022-33105
Mitre link : CVE-2022-33105
CVE.ORG link : CVE-2022-33105
JSON object : View
Products Affected
redis
- redis
CWE
CWE-401
Missing Release of Memory after Effective Lifetime