956744 – (CVE-2025-27151) <dev-db/redis-{7.2.9,7.4.4,8.0.2}: redis-check-aof may lead to stack overflow and potential RCE

Bug 956744 (CVE-2025-27151) - <dev-db/redis-{7.2.9,7.4.4,8.0.2}: redis-check-aof may lead to stack overflow and potential RCE

Summary: <dev-db/redis-{7.2.9,7.4.4,8.0.2}: redis-check-aof may lead to stack overflow...

Status:	CONFIRMED

Alias:	CVE-2025-27151

Product:	Gentoo Security
Classification:	Unclassified
Component:	Vulnerabilities (show other bugs)
Hardware:	All Linux

Importance:	Normal normal
Assignee:	Gentoo Security

URL:
Whiteboard:	B2 [stable]
Keywords:

Depends on:	958243
Blocks:
	Show dependency tree

Reported:	2025-05-28 12:27 UTC by Petr Vaněk
Modified:	2025-06-16 09:37 UTC (History)
CC List:	2 users (show)

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Petr Vaněk gentoo-dev

2025-05-28 12:27:32 UTC

CVE-2025-27151 - Stack-based buffer overflow

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error when parsing file names. A remote attacker can trick the victim into passing an overly long file path to the redis-check-aof cli, trigger a stack-based buffer overflow and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Comment 1 Larry the Git Cow gentoo-dev

2025-05-28 13:13:21 UTC

The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=b4c696f034dd583ae0f4fcccd6ca76c5c4f6b3d9

commit b4c696f034dd583ae0f4fcccd6ca76c5c4f6b3d9
Author:     Petr Vaněk <arkamar@gentoo.org>
AuthorDate: 2025-05-28 12:37:59 +0000
Commit:     Petr Vaněk <arkamar@gentoo.org>
CommitDate: 2025-05-28 13:11:25 +0000

    dev-db/redis: add 8.0.2
    
    Bug: https://bugs.gentoo.org/956744
    Signed-off-by: Petr Vaněk <arkamar@gentoo.org>

 dev-db/redis/Manifest           |   1 +
 dev-db/redis/redis-8.0.2.ebuild | 198 ++++++++++++++++++++++++++++++++++++++++
 2 files changed, 199 insertions(+)

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=d328ef10e0b23d95e40770213496ca4814efefec

commit d328ef10e0b23d95e40770213496ca4814efefec
Author:     Petr Vaněk <arkamar@gentoo.org>
AuthorDate: 2025-05-28 12:36:40 +0000
Commit:     Petr Vaněk <arkamar@gentoo.org>
CommitDate: 2025-05-28 13:11:23 +0000

    dev-db/redis: add 7.4.4
    
    Bug: https://bugs.gentoo.org/956744
    Signed-off-by: Petr Vaněk <arkamar@gentoo.org>

 dev-db/redis/Manifest           |   1 +
 dev-db/redis/redis-7.4.4.ebuild | 196 ++++++++++++++++++++++++++++++++++++++++
 2 files changed, 197 insertions(+)

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=c9a5d9b993c558ebbd36879c9e76548529c9689c

commit c9a5d9b993c558ebbd36879c9e76548529c9689c
Author:     Petr Vaněk <arkamar@gentoo.org>
AuthorDate: 2025-05-28 12:32:23 +0000
Commit:     Petr Vaněk <arkamar@gentoo.org>
CommitDate: 2025-05-28 13:11:22 +0000

    dev-db/redis: add 7.2.9
    
    Bug: https://bugs.gentoo.org/956744
    Signed-off-by: Petr Vaněk <arkamar@gentoo.org>

 dev-db/redis/Manifest           |   1 +
 dev-db/redis/redis-7.2.9.ebuild | 200 ++++++++++++++++++++++++++++++++++++++++
 2 files changed, 201 insertions(+)