Benny Isaacs, Nir Brakha, and Sagi Tzadik discovered that Redis incorrectly handled memory when running Lua scripts. An authenticated attacker could use this vulnerability to trigger a use-after-free condition, and potentially achieve remote code execution on the Redis server.
5:7.0.15-1ubuntu0.24.04.25:8.0.2-3ubuntu0.25.10.12:2.8.4-2ubuntu0.2+esm52:3.0.6-1ubuntu0.4+esm45:4.0.9-1ubuntu0.2+esm65:5.0.7-2ubuntu0.1+esm4