CVE-2021-29469

Uncontrolled Resource Consumption in npm/redis

Identifiers

CVE-2021-29469, GHSA-35q2-47q7-3pc3

Package Slug

npm/redis

Vulnerability

Uncontrolled Resource Consumption

Description

When a client is in monitoring mode, the regex begin used to detected monitor messages could cause exponential backtracking on some strings. This issue could lead to a denial of service. The issue is patched

Affected Versions

All versions before 3.1.1

Solution

Upgrade to version 3.1.1 or above.

Last Modified

2021-05-04

source