Oracle Linux 8 ELSA-2021-3945: Critical Redis Denial of Service Fix
oracle
October 21, 2021
The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:
Summary
[6.0.9-5] - fix denial of service via Redis Standard Protocol (RESP) request CVE-2021-32675 [6.0.9-4] - fix lua scripts can overflow the heap-based Lua stack CVE-2021-32626 - fix integer overflow issue with Streams CVE-2021-32627 - fix integer overflow bug in the ziplist data structure CVE-2021-32628 - fix integer overflow issue with intsets CVE-2021-32687 - fix integer overflow issue with strings CVE-2021-41099 [6.0.9-3] - fix integer overflow via STRALGO LCS command CVE-2021-29477
Topics Covered
SRPMs
https://oss.oracle.com:443/ol8/SRPMS-updates/redis-6.0.9-5.module+el8.4.0+20384+68ad316c.src.rpm
x86_64
redis-6.0.9-5.module+el8.4.0+20384+68ad316c.x86_64.rpm redis-devel-6.0.9-5.module+el8.4.0+20384+68ad316c.x86_64.rpm redis-doc-6.0.9-5.module+el8.4.0+20384+68ad316c.noarch.rpm
aarch64
redis-6.0.9-5.module+el8.4.0+20384+68ad316c.aarch64.rpm redis-devel-6.0.9-5.module+el8.4.0+20384+68ad316c.aarch64.rpm redis-doc-6.0.9-5.module+el8.4.0+20384+68ad316c.noarch.rpm
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Related CVEs:
CVE-2021-32626
CVE-2021-32627
CVE-2021-32628
CVE-2021-32675
CVE-2021-32687
CVE-2021-41099
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!