CVE-2021-32765

Name of the Vulnerable Software and Affected Versions Hiredis (affected versions not specified)

Description The issue arises from an integer overflow when Hiredis is provided with maliciously crafted or corrupted RESP mult-bulk protocol data. Specifically, when parsing multi-bulk (array-like) replies, Hiredis fails to check if count * sizeof(redisReply*) can be represented in SIZE MAX, potentially leading to a short allocation and subsequent buffer overflow due to the calloc() call not making this check.

Recommendations For all affected versions, users who are unable to update may set the maxelements context option to a value small enough that no overflow is possible. At the moment, there is no information about a newer version that contains a fix for this vulnerability.