{ "data_type": "CVE", "data_format": "MITRE", "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2019-10192", "ASSIGNER": "secalert@redhat.com", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "vendor_name": "Redis Labs", "product": { "product_data": [ { "product_name": "redis", "version": { "version_data": [ { "version_value": "3.x before 3.2.13" }, { "version_value": "4.x before 4.0.14" }, { "version_value": "5.x before 5.0.4" } ] } } ] } } ] } }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "CWE-122" } ] } ] }, "references": { "reference_data": [ { "refsource": "DEBIAN", "name": "DSA-4480", "url": "https://www.debian.org/security/2019/dsa-4480" }, { "refsource": "BUGTRAQ", "name": "20190712 [SECURITY] [DSA 4480-1] redis security update", "url": "https://seclists.org/bugtraq/2019/Jul/19" }, { "refsource": "UBUNTU", "name": "USN-4061-1", "url": "https://usn.ubuntu.com/4061-1/" }, { "refsource": "BID", "name": "109290", "url": "http://www.securityfocus.com/bid/109290" }, { "refsource": "REDHAT", "name": "RHSA-2019:1819", "url": "https://access.redhat.com/errata/RHSA-2019:1819" }, { "refsource": "REDHAT", "name": "RHSA-2019:1860", "url": "https://access.redhat.com/errata/RHSA-2019:1860" }, { "refsource": "REDHAT", "name": "RHSA-2019:2002", "url": "https://access.redhat.com/errata/RHSA-2019:2002" }, { "refsource": "GENTOO", "name": "GLSA-201908-04", "url": "https://security.gentoo.org/glsa/201908-04" }, { "refsource": "REDHAT", "name": "RHSA-2019:2508", "url": "https://access.redhat.com/errata/RHSA-2019:2508" }, { "refsource": "REDHAT", "name": "RHSA-2019:2506", "url": "https://access.redhat.com/errata/RHSA-2019:2506" }, { "refsource": "REDHAT", "name": "RHSA-2019:2621", "url": "https://access.redhat.com/errata/RHSA-2019:2621" }, { "refsource": "REDHAT", "name": "RHSA-2019:2630", "url": "https://access.redhat.com/errata/RHSA-2019:2630" }, { "url": "https://www.oracle.com/security-alerts/cpujul2020.html", "refsource": "MISC", "name": "https://www.oracle.com/security-alerts/cpujul2020.html" }, { "url": "https://raw.githubusercontent.com/antirez/redis/3.2/00-RELEASENOTES", "refsource": "MISC", "name": "https://raw.githubusercontent.com/antirez/redis/3.2/00-RELEASENOTES" }, { "url": "https://raw.githubusercontent.com/antirez/redis/4.0/00-RELEASENOTES", "refsource": "MISC", "name": "https://raw.githubusercontent.com/antirez/redis/4.0/00-RELEASENOTES" }, { "url": "https://raw.githubusercontent.com/antirez/redis/5.0/00-RELEASENOTES", "refsource": "MISC", "name": "https://raw.githubusercontent.com/antirez/redis/5.0/00-RELEASENOTES" }, { "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10192", "name": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10192", "refsource": "CONFIRM" } ] }, "description": { "description_data": [ { "lang": "eng", "value": "A heap-buffer overflow vulnerability was found in the Redis hyperloglog data structure versions 3.x before 3.2.13, 4.x before 4.0.14 and 5.x before 5.0.4. By carefully corrupting a hyperloglog using the SETRANGE command, an attacker could trick Redis interpretation of dense HLL encoding to write up to 3 bytes beyond the end of a heap-allocated buffer." } ] }, "impact": { "cvss": [ [ { "vectorString": "7.2/CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", "version": "3.0" } ] ] } }