Your submission was sent successfully! Close

CVE-2013-0178

Published: 01 November 2019

Insecure temporary file vulnerability in Redis before 2.6 related to /tmp/redis-%p.vm.

Priority

Low

CVSS 3 base score: 5.5

Status

Package Release Status
redis
Launchpad, Ubuntu, Debian
Upstream
Released (2:2.6.0-1)
Ubuntu 18.04 LTS (Bionic Beaver) Not vulnerable
(5:4.0.9-1)
Ubuntu 16.04 ESM (Xenial Xerus) Not vulnerable
(2:3.0.6-1)
Ubuntu 14.04 ESM (Trusty Tahr) Not vulnerable
(2:2.8.4-2)
Patches:
Other: https://github.com/antirez/redis/commit/697af434fbeb2e3ba2ba9687cd283ed1a2734fa5
This vulnerability is mitigated in part by the use of symlink restrictions in Ubuntu.