Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Fix possible deserialization of untrusted data
There is a deserialization of untrusted data vulnerability in the Kredis JSON deserialization code. This vulnerability has been assigned the CVE identifier CVE-2023-27531. Carefully crafted JSON data processed by Kredis may result in deserialization of untrusted data, potentially leading to deserialization of unexpected objects in the system. Any applications using Kredis with JSON are affected.
- Loading branch information