Advisories » MGASA-2015-0472

Updated redis packages fix CVE-2015-8080

Publication date: 16 Dec 2015
Modification date: 16 Dec 2015
Type: security
Affected Mageia releases : 5
CVE: CVE-2015-8080

Description

Luca Bruno discovered an integer overflow flaw leading to a stack-based buffer
overflow in redis, a persistent key-value database. A remote attacker can use
this flaw to cause a denial of service (application crash) (CVE-2015-8080).
                

References

• https://bugs.mageia.org/show_bug.cgi?id=17291
• https://www.debian.org/security/2015/dsa-3412
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8080

SRPMS

5/core

• redis-2.8.13-4.1.mga5