¡¾Â©¶´Í¨¸æ¡¿Redis RESTOREÃüÁîÔ¶³Ì´úÂëÖ´ÐЩ¶´(CVE-2026-25243)
·¢²¼Ê±¼ä 2026-06-03Ò»¡¢Â©¶´¸ÅÊö

RedisÊÇÒ»¸ö¿ªÔ´µÄÄÚ´æÊý¾Ý½á¹¹´æ´¢ÏµÍ³£¬¹ã·ºÓ¦ÓÃÓÚ»º´æ¡¢ÏûÏ¢¶ÓÁС¢ÊµÊ±·ÖÎöµÈ³¡¾°¡£ËüÖ§³Ö¶àÖÖÊý¾Ý½á¹¹£¬Èç×Ö·û´®¡¢¹þÏ£¡¢ÁÐ±í¡¢¼¯ºÏ¡¢ÓÐÐò¼¯ºÏµÈ£¬²¢Ìṩ·á¸»µÄ²Ù×÷ÃüÁî¡£Redis¾ßÓиßÐÔÄÜ¡¢Áé»îÐԺͳ־û¯ÄÜÁ¦£¬Êý¾Ý¿ÉÒÔ±£´æÔÚÄÚ´æÖУ¬¶¨ÆÚ»ò¸ù¾ÝÐèÇóͬ²½µ½´ÅÅÌ¡£ËüÖ§³ÖÖ÷´Ó¸´ÖÆ¡¢·ÖÇøºÍ¸ß¿ÉÓÃÐÔÅäÖ㬳£ÓÃÓÚÌá¸ßϵͳÏìÓ¦ËٶȺͿÉÀ©Õ¹ÐÔ¡£ÓÉÓÚÆä¸ßЧµÄ¶ÁÈ¡ºÍдÈëÐÔÄÜ£¬Redis³ÉΪÏÖ´ú·Ö²¼Ê½ÏµÍ³Öв»¿É»òȱµÄ×é¼þÖ®Ò»¡£
2026Äê6ÔÂ3ÈÕ£¬mansion88Ã÷Éý°²È«Ó¦¼±ÏìÓ¦ÖÐÐÄ£¨VSRC£©¼à²âµ½Redis RESTOREÃüÁîÔ¶³Ì´úÂëÖ´ÐЩ¶´¡£¸Ã©¶´´æÔÚÓÚRESTOREÃüÁî´¦ÀíÐòÁл¯Êý¾Ý¹ý³ÌÖУ¬ÓÉÓÚRedis¶Ôµ¼ÈëµÄÐòÁл¯ÖµÈ±ÉÙ³ä·ÖУÑ飬¹¥»÷Õ߿ɹ¹Ôì¶ñÒâÐòÁл¯Payload´¥·¢·Ç·¨ÄÚ´æ·ÃÎÊ£¬½ø¶øµ¼ÖÂÔ¶³Ì´úÂëÖ´ÐС£Î´¾³ä·ÖÏÞÖÆµÄÒÑÈÏÖ¤Óû§Ôھ߱¸RESTOREÃüÁîÖ´ÐÐȨÏÞµÄÇé¿öÏ£¬¿ÉÀûÓøÃ©¶´ÔÚRedis·þÎñ½ø³ÌÉÏÏÂÎÄÖÐÖ´ÐÐÈÎÒâ´úÂ룬½øÒ»²½Ôì³É·þÎñÆ÷ʧÏÝ¡¢Ãô¸ÐÊý¾Ýй¶¡¢ÒµÎñÖжϻòºáÏòÒÆ¶¯µÈ°²È«·çÏÕ£¬Í¬Ê±£¬Redis»¹´æÔÚLuaÊͷźóʹÓé¶´£¨CVE-2026-23631£©£¬¸Ã©¶´ÔÚLua½Å±¾´¦ÀíÓëmaster-replicaͬ²½»úÖÆÖжԶÔÏóÉúÃüÖÜÆÚ¹ÜÀí²»µ±£¬ÒÑÈÏÖ¤¹¥»÷Õß¿ÉÔÚ¸±±¾½Úµãreplica-read-only±»½ûÓûò¿ÉÅäÖÃΪ½ûÓõÄÇé¿öÏ´¥·¢use-after-free£¬´Ó¶øÔÚredis-server½ø³ÌÉÏÏÂÎÄÖ´ÐÐÈÎÒâ´úÂ룬Ôì³ÉÊý¾Ýй¶¡¢·þÎñÖжϻòϵͳ±»½Ó¹Ü¡£
¶þ¡¢Ó°Ï췶Χ
7.2.0 <= Redis < 7.2.14
7.4.0 <= Redis < 7.4.9
8.2.0 <= Redis < 8.2.6
8.4.0 <= Redis < 8.4.3
8.6.0 <= Redis < 8.6.3
Èý¡¢°²È«´ëÊ©
3.1 Éý¼¶°æ±¾
¹Ù·½ÒÑ·¢²¼ÐÞ¸´²¹¶¡£¬ÒÔÐÞ¸´¸Ã©¶´¡£
Redis 7.2.X >= 7.2.14
Redis 7.4.X >= 7.4.9
Redis 8.2.X >= 8.2.6
Redis 8.4.X >= 8.4.3
Redis 8.6.X >= 8.6.3
ÏÂÔØÁ´½Ó£º
https://github.com/redis/redis/releases/
3.2 ÁÙʱ´ëÊ©
ÔÝÎÞ¡£
3.3 ͨÓý¨Òé
¶¨ÆÚ¸üÐÂϵͳ²¹¶¡£¬¼õÉÙϵͳ©¶´£¬ÌáÉý·þÎñÆ÷µÄ°²È«ÐÔ¡£
¼ÓǿϵͳºÍÍøÂçµÄ·ÃÎÊ¿ØÖÆ£¬Ð޸ķÀ»ðǽ²ßÂÔ£¬¹Ø±Õ·Ç±ØÒªµÄÓ¦Óö˿ڻò·þÎñ£¬¼õÉÙ½«Î£ÏÕ·þÎñ£¨ÈçSSH¡¢RDPµÈ£©±©Â¶µ½¹«Íø£¬¼õÉÙ¹¥»÷Ãæ¡£
ʹÓÃÆóÒµ¼¶°²È«²úÆ·£¬ÌáÉýÆóÒµµÄÍøÂ簲ȫÐÔÄÜ¡£
¼ÓǿϵͳÓû§ºÍȨÏÞ¹ÜÀí£¬ÆôÓöàÒòËØÈÏÖ¤»úÖÆºÍ×îСȨÏÞÔÔò£¬Óû§ºÍÈí¼þȨÏÞÓ¦±£³ÖÔÚ×îµÍÏÞ¶È¡£
ÆôÓÃÇ¿ÃÜÂë²ßÂÔ²¢ÉèÖÃΪ¶¨ÆÚÐ޸ġ£
3.4 ²Î¿¼Á´½Ó
https://github.com/redis/redis/security/advisories/GHSA-c8h9-259x-jff4/
https://github.com/redis/redis/security/advisories/GHSA-8ghh-qpmp-7826
https://redis.io/blog/security-advisory-cve202623479-cve202625243-cve-2026-25588-cve202625589-cve-2026-23631/


¾©¹«Íø°²±¸11010802024551ºÅ