VDB
ALPINE-CVE-2023-41056
ALPINE-CVE-2023-41056
PUBLISHED
CVSS 8.100000381469727 HIGH
Redis is an in-memory database that persists on disk. Redis incorrectly handles resizing of memory buffers which can result in integer overflow that leads to heap overflow and potential remote code execution. This issue has been patched in version 7.0.15 and 7.2.4.
Risk Scores
CVSS v3.1
8.100000381469727
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Alpine:v3.16 | redis | 3.0.6-r0, 2.8.9-r1, 2.8.13-r0 |
| Alpine:v3.19 | redis | 7.0.8-r0, 7.0.9-r0, 7.2.0-r0 |
| Alpine:v3.18 | redis | 7.0.9-r0, 2.4.14-r2, 2.4.14-r0 |
| Alpine:v3.17 | redis | 7.0.9-r0, 7.0.8-r0, 7.0.7-r0 |
Timeline
- Jan 10, 2024 CVE Published
- Nov 19, 2025 CVE Updated
- Apr 30, 2026 Distribution Patch