Redis is an open source, in-memory database that persists on disk. An authenticated with sufficient privileges may create a malformed ACL selector which, when accessed, triggers a server panic and subsequent denial of service. The problem is fixed in Redis 7.2.7 and 7.4.2.
This Cyber News was published on www.tenable.com. Publication date: Tue, 07 Jan 2025 07:11:02 +0000