all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

CVE-2023-45145 (debian_linux, fedora, redis)

Add to bookmarks
Oct. 18, 2023, 9:15 p.m. |

National Vulnerability Database web.nvd.nist.gov

Redis is an in-memory database that persists on disk. On startup, Redis begins listening on a Unix socket before adjusting its permissions to the user-provided configuration. If a permissive umask(2) is used, this creates a race condition that enables, during a short period of time, another process to establish an otherwise unauthorized connection. This problem has existed since Redis 2.6.0-RC1. This issue has been addressed in Redis versions 7.2.2, 7.0.14 and 6.2.14. Users are advised to upgrade. For users unable …

configuration cve database disk fedora listening memory period permissions problem process race race condition redis socket startup unix

Visit resource

More from web.nvd.nist.gov / National Vulnerability Database

CVE-2023-45955 (lightstrip_firmware) 6 months ago | web.nvd.nist.gov
attackers cve denial of service issue +1
CVE-2023-40101 (android) 6 months ago | web.nvd.nist.gov
android check collapse cve +7
CVE-2023-21377 (android) 6 months ago | web.nvd.nist.gov
android bypass cve disclosure +8
CVE-2023-21380 (android) 6 months ago | web.nvd.nist.gov
android bluetooth buffer buffer overflow +9
CVE-2023-21382 (android) 6 months ago | web.nvd.nist.gov
access android check cve +11
CVE-2023-21381 (android) 6 months ago | web.nvd.nist.gov
android arbitrary code code code execution +10
CVE-2023-21385 (android) 6 months ago | web.nvd.nist.gov
android corruption cve disclosure +7
CVE-2023-21387 (android) 6 months ago | web.nvd.nist.gov
android backup bypass cve +11
CVE-2023-21389 (android) 6 months ago | web.nvd.nist.gov
android bypass check cve +10

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote
View on infosec-jobs.com

Cyber Security Culture – Communication and Content Specialist

@ H&M Group | Stockholm, Sweden
View on infosec-jobs.com

Container Hardening, Sr. (Remote | Top Secret)

@ Rackner | San Antonio, TX
View on infosec-jobs.com

GRC and Information Security Analyst

@ Intertek | United States
View on infosec-jobs.com

Information Security Officer

@ Sopra Steria | Bristol, United Kingdom
View on infosec-jobs.com

Casual Area Security Officer South Down Area

@ TSS | County Down, United Kingdom
View on infosec-jobs.com
View more jobs