2369153 – (CVE-2025-27151) CVE-2025-27151 redis: Redis Stack Buffer Overflow

Bug 2369153 (CVE-2025-27151) - CVE-2025-27151 redis: Redis Stack Buffer Overflow

Summary: CVE-2025-27151 redis: Redis Stack Buffer Overflow

Keywords:
Status:	NEW
Alias:	CVE-2025-27151
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Product Security DevOps Team
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2025-05-29 10:01 UTC by OSIDB Bzimport
Modified:	2025-06-17 08:27 UTC (History)
CC List:	69 users (show)
Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Description OSIDB Bzimport 2025-05-29 10:01:08 UTC

Redis is an open source, in-memory database that persists on disk. In versions starting from 7.0.0 to before 8.0.2, a stack-based buffer overflow exists in redis-check-aof due to the use of memcpy with strlen(filepath) when copying a user-supplied file path into a fixed-size stack buffer. This allows an attacker to overflow the stack and potentially achieve code execution. This issue has been patched in version 8.0.2.

Note You need to log in before you can comment on or make changes to this bug.

abarbaro
alinfoot
anthomas
aprice
bbrownin
bdettelb
caswilli
cdaley
dnakabaa
doconnor
dranck
dtrifiro
ehelms
ggainey
gkamathe
haoli
hkataria
jajackso
jcammara
jchui
jdobes
jhe
jkoehler
jmitchel
jneedle
jsamir
jtanner
juwatts
jvasik
jwong
kaycoth
kegrant
kgaikwad
kholdawa
koliveir
kshier
ktsao
lcouzens
lphiri
mabashia
mhulan
mskarbek
nboldt
nkathole
nmoumoul
oezr
orabin
osousa
pbraun
pcreech
psegedy
psrna
rblanco
rbryant
rchan
shvarugh
simaishi
smallamp
smcdonal
stcannon
teagle
tfister
thavo
ttakamiy
vmugicag
weaton
xiaoxwan
yguenane
zzhou