漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Apache Kvrocks: The server was crashed by the negative offset
Vulnerability Description
Improper Input Validation vulnerability in Apache Kvrocks. The SETRANGE command didn't check if the `offset` input is a positive integer and use it as an index of a string. So it will cause the server to crash due to its index is out of range. This issue affects Apache Kvrocks: through 2.11.1. Users are recommended to upgrade to version 2.12.0, which fixes the issue.
CVSS Information
N/A
Vulnerability Type
输入验证不恰当
Vulnerability Title
Apache Kvrocks 安全漏洞
Vulnerability Description
Apache Kvrocks是美国阿帕奇(Apache)基金会的一个分布式键值 NoSQL 数据库。 Apache Kvrocks 2.11.1及之前版本存在安全漏洞,该漏洞源于SETRANGE命令未验证offset参数为正整数,可能导致服务器崩溃。
CVSS Information
N/A
Vulnerability Type
N/A