{"id":"BIT-keydb-2022-35977","summary":"Integer overflow in certain command arguments can drive Redis to OOM panic","details":"Redis is an in-memory database that persists on disk. Authenticated users issuing specially crafted `SETRANGE` and `SORT(_RO)` commands can trigger an integer overflow, resulting with Redis attempting to allocate impossible amounts of memory and abort with an out-of-memory (OOM) panic. The problem is fixed in Redis versions 7.0.8, 6.2.9 and 6.0.17. Users are advised to upgrade. There are no known workarounds for this vulnerability.","aliases":["BIT-redis-2022-35977","BIT-valkey-2022-35977","CVE-2022-35977","GHSA-mrcw-fhw9-fj8j"],"modified":"2025-11-06T13:25:46.476Z","published":"2024-08-22T19:25:58.150Z","database_specific":{"cpes":["cpe:2.3:a:redis:redis:*:*:*:*:*:*:*:*"],"severity":"Medium"},"references":[{"type":"WEB","url":"https://github.com/redis/redis/commit/1ec82e6e97e1db06a72ca505f9fbf6b981f31ef7"},{"type":"WEB","url":"https://github.com/redis/redis/releases/tag/6.0.17"},{"type":"WEB","url":"https://github.com/redis/redis/releases/tag/6.2.9"},{"type":"WEB","url":"https://github.com/redis/redis/releases/tag/7.0.8"},{"type":"WEB","url":"https://github.com/redis/redis/security/advisories/GHSA-mrcw-fhw9-fj8j"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-35977"},{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2024/11/msg00031.html"}],"affected":[{"package":{"name":"keydb","ecosystem":"Bitnami","purl":"pkg:bitnami/keydb"},"ranges":[{"type":"SEMVER","events":[{"introduced":"6.0.0"},{"fixed":"6.0.17"},{"introduced":"6.2.0"},{"fixed":"6.2.9"},{"introduced":"7.0.0"},{"fixed":"7.0.8"}]}],"database_specific":{"source":"https://github.com/bitnami/vulndb/tree/main/data/keydb/BIT-keydb-2022-35977.json"},"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"}]}],"schema_version":"1.7.3"}