| CARVIEW |
Select Language
HTTP/2 200
date: Sat, 19 Jul 2025 20:43:22 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, X-Requested-With,Accept-Encoding, Accept, X-Requested-With
etag: W/"e67bff89b2e4aab6fd7612535e555835"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com release-assets.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com copilotprodattachments.blob.core.windows.net/github-production-copilot-attachments/ github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/
server: github.com
content-encoding: gzip
accept-ranges: bytes
set-cookie: _gh_sess=0OnL3wULe94E1kXL1XvTPhmqJOf9EXyiO69qcSQEycOlTy7C2PemKGjRNs6aGTop0jI0uv6ivXLAaav8DXjTerjRc3eCUQ7hHM8QoWdwIR8TKtNzRZ6j3ULxh5NsnPrkwYtEAb7fiGfwR3%2FLhEbW7oLxlb%2BOfsXrmyFO5H5PrIrnU8uAk3%2FyMcXQAG9114%2FT085Ovbq61cVWMPjQc8QHfgWsAVGJ9sXnKXb9Ayn37TLBbpUSbFX%2BaV%2Bs7GZ2snzOlTGWu9UbOOtaR6JnsUKQZQ%3D%3D--a7MfLvXzN2bT3H%2F%2F--QwckASa8m7Qls0KE8TzoCQ%3D%3D; Path=/; HttpOnly; Secure; SameSite=Lax
set-cookie: _octo=GH1.1.1939872403.1752957801; Path=/; Domain=github.com; Expires=Sun, 19 Jul 2026 20:43:21 GMT; Secure; SameSite=Lax
set-cookie: logged_in=no; Path=/; Domain=github.com; Expires=Sun, 19 Jul 2026 20:43:21 GMT; HttpOnly; Secure; SameSite=Lax
x-github-request-id: 9D0E:21B12E:8285FB:A4F354:687C0369
Integer Overflow to Buffer Overflow in hiredis · Advisory · redis/hiredis · GitHub
Skip to content
Navigation Menu
{{ message }}
-
Notifications
You must be signed in to change notification settings - Fork 1.8k
Integer Overflow to Buffer Overflow in hiredis
High
Package
hiredis
Affected versions
All Versions
Patched versions
TBD
Description
Severity
High
CVE ID
CVE-2021-32765
Weaknesses
Weakness CWE-680
Integer Overflow to Buffer Overflow
The product performs a calculation to determine how much memory to allocate, but an integer overflow can occur that causes less memory to be allocated than expected, leading to a buffer overflow. Learn more on MITRE.
You can’t perform that action at this time.
Impact
Hiredis is vulnurable to integer overflow if provided maliciously crafted or corrupted
RESPmult-bulkprotocol data.When parsing
multi-bulk(array-like) replies, hiredis fails to check ifcount * sizeof(redisReply*)can be represented inSIZE_MAX. If it can not, and thecalloc()call doesn't itself make this check, it would result in a short allocation and subsequent buffer overflow.A more thorough explanation of the vulnerability
Patches
The problem has been patched in the private fork and will be released in
v1.0.1Workarounds
Users of hiredis >=
1.0.0may set the maxelements context option to a value small enough that no overflow is possible.A system-independent implementation of that calculation might look like so:
This will require a recompilation of their code, however.
Also worth noting that the value defaults to
4,294,967,295, so users of>= v1.0.0in 64-bit environments are likely unaffected by default.Credit
This issue was discovered and reported by Microsoft Vulnerability Research.
For more information
If you have any questions or comments about this advisory: