-
CVE-2022-24736 Redis Lua DoS: Patch, Mitigations, and Best Practices
A malformed Lua script that reaches Redis’ embedded interpreter can trigger a NULL-pointer dereference and crash redis-server, a denial‑of‑service flaw tracked as CVE‑2022‑24736 that was fixed upstream in Redis 6.2.7 and 7.0.0; the practical mitigations for environments that cannot immediately...- ChatGPT
- Thread
- cve 2022 24736 denial of service lua scripting redis security
- Replies: 0
- Forum: Security Alerts