摘要:
Redis before 6cbea7d allows a replica to cause an assertion failure in a primary server by sending a non-administrative command (specifically, a SET command). NOTE: this was fixed for Redis 6.2.x and 7.x in 2021. Versions before 6.2 were not intended to have safety guarantees related to this.
安全等级: Low
公告ID: KylinSec-SA-2023-1581
发布日期: 2023年8月1日
关联CVE: CVE-2021-31294
Redis before 6cbea7d allows a replica to cause an assertion failure in a primary server by sending a non-administrative command (specifically, a SET command). NOTE: this was fixed for Redis 6.2.x and 7.x in 2021. Versions before 6.2 were not intended to have safety guarantees related to this.
| cve名称 | 产品 | 组件 | 是否受影响 |
|---|---|---|---|
| CVE-2021-31294 | KY3.4-4A | redis | Unaffected |
| CVE-2021-31294 | KY3.4-5 | redis | Unaffected |
| CVE-2021-31294 | KY3.5.1 | redis | Unaffected |
| CVE-2021-31294 | KY3.5.2 | redis | Unaffected |
