CVE-2021-32762

NameCVE-2021-32762
DescriptionRedis is an open source, in-memory database that persists on disk. The ...
SourceCVE (at NVD; CERT, ENISA, LWN, oss-sec, fulldisc, Debian ELTS, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
ReferencesDLA-2810-1, DSA-5001-1

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
redis (PTS)bullseye5:6.0.16-1+deb11u2fixed
bullseye (security)5:6.0.16-1+deb11u8fixed
bookworm, bookworm (security)5:7.0.15-1~deb12u6fixed
trixie (security), trixie5:8.0.2-3+deb13u1fixed
forky, sid5:8.0.6-1fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
redissourcestretch3:3.2.6-3+deb9u8DLA-2810-1
redissourcebuster5:5.0.14-1+deb10u1DSA-5001-1
redissourcebullseye5:6.0.16-1+deb11u1DSA-5001-1
redissource(unstable)5:6.0.16-1

Notes

https://github.com/redis/redis/security/advisories/GHSA-833w-8v3m-8wwr
Search for package or bug name: Reporting problems