Back to bug 2163133

Who When What Removed Added
Sandipan Roy 2023-01-23 07:38:36 UTC CC aileenc, amackenz, amasferr, apevec, bbuckingham, bcoca, bcourt, bdettelb, btotty, chazlett, cwelton, davidn, eglynn, ehelms, epacific, gmalinko, gparvin, hhorak, janstey, jcammara, jhardy, jjoyce, jneedle, jobarker, jorton, jpavlik, jsherril, jwon, lhh, lzap, mabashia, mburns, mgarciac, mhulan, mkudlej, myarboro, njean, nmoumoul, orabin, osapryki, owatkins, pahickey, pcreech, pdelbell, rchan, rhos-maint, simaishi, smcdonal, spower, stcannon, teagle, tjochec, yguenane, zsadeh
Sandipan Roy 2023-01-23 07:38:59 UTC Blocks 2161476
Sandipan Roy 2023-01-23 07:44:51 UTC Depends On 2163194, 2163195, 2163190, 2163192, 2163191, 2163196, 2163193, 2163188, 2163189
Sandipan Roy 2023-01-23 07:46:05 UTC Doc Text Redis is an in-memory database that persists on disk. Authenticated users issuing specially crafted `SETRANGE` and `SORT(_RO)` commands can trigger an integer overflow, resulting with Redis attempting to allocate impossible amounts of memory and abort with an out-of-memory (OOM) panic.
RaTasha Tillery-Smith 2023-01-23 13:18:31 UTC Depends On 2163381, 2163380
Doc Text Redis is an in-memory database that persists on disk. Authenticated users issuing specially crafted `SETRANGE` and `SORT(_RO)` commands can trigger an integer overflow, resulting with Redis attempting to allocate impossible amounts of memory and abort with an out-of-memory (OOM) panic. A flaw was found in Redis, an in-memory database that persists on disk. This flaw allows authenticated users to issue specially crafted `SETRANGE` and `SORT(_RO)` commands to trigger an integer overflow, resulting in Redis attempting to allocate impossible amounts of memory and abort with an out-of-memory (OOM) panic.
Borja Tarraso 2023-01-26 08:14:21 UTC Fixed In Version redis 7.0.8, redis 6.2.9, redis 6.0.17
Vipul Nair 2023-02-14 12:01:06 UTC Depends On 2169703
Red Hat Bugzilla 2023-03-02 08:27:32 UTC CC myarboro
Red Hat Bugzilla 2023-05-15 20:18:51 UTC CC adudiak, kshier, tfister
CC btotty
Red Hat Bugzilla 2023-07-07 08:30:44 UTC Assignee security-response-team nobody
Red Hat Bugzilla 2023-07-21 22:26:20 UTC CC jpavlik

Back to bug 2163133