A specially crafted XAUTOCLAIM command on a stream key in a specific state may result with heap overflow, and potentially remote code execution. The problem affects Redis versions 7.0.0 or newer.
Patches
The problem is fixed in Redis version 7.0.4.
For more information
If you have any questions or comments about this advisory:
Impact
A specially crafted
XAUTOCLAIMcommand on a stream key in a specific state may result with heap overflow, and potentially remote code execution. The problem affects Redis versions 7.0.0 or newer.Patches
The problem is fixed in Redis version 7.0.4.
For more information
If you have any questions or comments about this advisory: