{"id":"CVE-2025-52935","details":"Integer Overflow or Wraparound vulnerability in dragonflydb dragonfly (src/redis/lua/struct modules). This vulnerability is associated with program files lua_struct.C.\n\nThis issue affects dragonfly: 1.30.1, 1.30.0, 1.28.18.","modified":"2026-04-12T17:41:41.211733Z","published":"2025-06-23T10:15:27.380Z","references":[{"type":"FIX","url":"https://github.com/dragonflydb/dragonfly/commit/473e002c848eb312f23d84114eb4951a7c4af5a1"},{"type":"FIX","url":"https://github.com/dragonflydb/dragonfly/pull/4996"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/dragonflydb/dragonfly","events":[{"introduced":"0"},{"fixed":"473e002c848eb312f23d84114eb4951a7c4af5a1"}]}],"versions":["v0.1.0","v0.10.0","v0.11.0","v0.12.0","v0.13.0","v0.13.1","v0.14.0","v0.15.0","v0.16.0","v0.17.0","v0.2.0","v0.3.0","v0.3.0-alpha","v0.3.1","v0.4.0","v0.5.0","v0.6.0","v0.7.0","v0.8.0","v0.9.0","v0.9.1","v1.0.0","v1.1.0","v1.1.1","v1.1.2","v1.11.0","v1.12.0","v1.13.0","v1.14.0","v1.15.0","v1.16.0","v1.17.0","v1.18.0","v1.19.0","v1.2.0","v1.2.1","v1.20.0","v1.21.0","v1.22.0","v1.23.0","v1.24.0","v1.26.0","v1.27.0","v1.28.0","v1.29.0","v1.3.0","v1.4.0","v1.5.0","v1.6.0","v1.7.0","v1.7.1","v1.8.0","v1.9.0","w0.1"],"database_specific":{"vanir_signatures":[{"signature_version":"v1","signature_type":"Function","deprecated":false,"digest":{"length":380,"function_hash":"212353940668053933632077966106377345980"},"id":"CVE-2025-52935-0a151cef","target":{"function":"getnum","file":"src/redis/lua/struct/lua_struct.c"},"source":"https://github.com/dragonflydb/dragonfly/commit/473e002c848eb312f23d84114eb4951a7c4af5a1"},{"signature_version":"v1","signature_type":"Function","deprecated":false,"digest":{"length":543,"function_hash":"209148936099144138409285023791391343778"},"id":"CVE-2025-52935-188358e6","target":{"function":"controloptions","file":"src/redis/lua/struct/lua_struct.c"},"source":"https://github.com/dragonflydb/dragonfly/commit/473e002c848eb312f23d84114eb4951a7c4af5a1"},{"signature_version":"v1","signature_type":"Line","deprecated":false,"digest":{"threshold":0.9,"line_hashes":["252260118326799049191156181394685749318","140212443415647500912109205308826769500","47010833300303086681847101454590249461","2250722161879345816330442566485950611","291778318289862582589671380180879160640","334836077840905045155583947536240977132","75257252756429438366239461806916592544","328810329053557788914453396839483306372","128854904967302558653028066436045146216","18412046823770042382161477427479286047","61915029324611414734672095656655490873","194538167452478719857363951948039156123","219285841976367303374237696455245299327","130487431531773260282343331813662805546","62896359733481919104079431318740588747","79844671906440840823825256474367351454","82136349130077275828760951476966216953","322234568658267143906843575519826420808","139114028757505796482812688056023538966","289225860499092828678937269241542432163","77797580407604165072230177310498680959"]},"id":"CVE-2025-52935-673c3c3d","target":{"file":"src/redis/lua/struct/lua_struct.c"},"source":"https://github.com/dragonflydb/dragonfly/commit/473e002c848eb312f23d84114eb4951a7c4af5a1"},{"signature_version":"v1","signature_type":"Function","deprecated":false,"digest":{"length":663,"function_hash":"145616438999787387902890994110005036109"},"id":"CVE-2025-52935-87157e30","target":{"function":"optsize","file":"src/redis/lua/struct/lua_struct.c"},"source":"https://github.com/dragonflydb/dragonfly/commit/473e002c848eb312f23d84114eb4951a7c4af5a1"}],"vanir_signatures_modified":"2026-04-12T17:41:41Z","source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-52935.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V4","score":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:N/AU:Y/R:U/V:C/RE:M/U:Red"}]}