Dragonfly: RESTORE operations may crash the server

Description

Dragonfly is an in-memory data store built for modern application workloads. Prior to 1.39.0, a crafted RESTORE payload triggers an out-of-bounds read in DragonflyDB's listpack collection loaders, crashing the entire server process (SIGSEGV). Because DragonflyDB requires no authentication by default and RESTORE is a normal keyspace command, an unauthenticated remote attacker can crash the server with a single ~24-byte command — a remote, repeatable denial of service. This vulnerability is fixed in 1.39.0.

Affected Products

Vendor	Product	Versions
dragonflydb	dragonflydb	< 1.39.0

References

https://github.com/dragonflydb/dragonfly/security/advisories/GHSA-cwjr-j869-h8q9(x_refsource_CONFIRM)
https://github.com/dragonflydb/dragonfly/pull/7502(x_refsource_MISC)

Related News (1 articles)

Tier C

VulDB2d ago

CVE-2026-54341 | dragonflydb dragonfly up to 1.38.x RESTORE out-of-bounds

→ No new info (linked only)

CVSS 3.17.5 HIGH

VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CISA KEV❌ No

Actively exploited✅ Yes

Patch available

1.39.0

CWECWE-125

PublishedJun 26, 2026

Last enriched2d agov2

Trending Score44

Source articles1

Independent1

Info Completeness9/14

Missing: epss, kev, exploit, iocs, mitre_attack

Community Vote

Version History

Last enriched 2d ago

v2Tier C2d ago

Updated affected versions to 1.38.x, changed severity to MEDIUM, and noted that no exploit is available.

affectedVersionsseverityactivelyExploitedpatchAvailable

via VulDB

v12d ago

Initial creation

Dragonfly: RESTORE operations may crash the server

Description

Affected Products

References

Related News (1 articles)

Community Vote

Related CVEs (1)

Pin to Dashboard

Verification

Vulnerability Timeline

Version History