|
|
Subscribe / Log in / New account

redis: information leak

Package(s):redis CVE #(s):CVE-2013-7458
Created:August 1, 2016 Updated:August 8, 2016
Description: From the Debian advisory:

It was discovered that redis, a persistent key-value database, did not properly protect redis-cli history files: they were created by default with world-readable permissions.

Users and systems administrators may want to proactively change permissions on existing ~/rediscli_history files, instead of waiting for the updated redis-cli to do so the next time it is run.

Alerts:
Mageia MGASA-2016-0295 redis 2016-08-31
openSUSE openSUSE-SU-2016:1980-1 redis 2016-08-06
openSUSE openSUSE-SU-2016:1981-1 redis 2016-08-06
Debian-LTS DLA-577-1 redis 2016-07-30
Debian DSA-3634-1 redis 2016-07-30
to post comments


Copyright © 2025, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds