---

CVE-2021-32672 - log back

CVE-2021-32672 edited at 04 Oct 2021 20:30:22
Severity	- Unknown + Low
Remote	- Unknown + Remote
Type	- Unknown + Information disclosure
Description	+ When using the Redis Lua Debugger, users can send malformed requests that cause the debugger’s protocol parser to read data beyond the actual buffer. This issue affects all versions of Redis with Lua debugging support (3.2 or newer). + + The problem is fixed in versions 6.2.6, 6.0.16 and 5.0.14.
References	+ https://github.com/redis/redis/security/advisories/GHSA-9mj9-xx53-qmxm + https://github.com/redis/redis/commit/3e09be56a8a65ad2549452e5bf7a36eb991b8954

CVE-2021-32672 created at 04 Oct 2021 20:24:14
Severity	+ Unknown
Remote	+ Unknown
Type	+ Unknown
Description
References
Notes