EUVD-2025-20233

Malicious code in bioql PyPI...

TencentOS Server 4: redis (TSSA-2025:0529)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0529 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

Azure Linux 3.0 Security Update: redis / valkey (CVE-2025-32023)

The version of redis / valkey installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-32023 advisory. - Redis is an open source, in-memory database that persists on disk. From 2.8 to before 8.0.3, 7.4.5,...

OESA-2025-1850 redis security update

Redis is an advanced key-value store. It is often referred to as a dattructure server since keys can contain strings, hashes ,lists, sets anorted sets. Security Fixes: Redis is an open source, in-memory database that persists on disk. From 2.8 to before 8.0.3, 7.4.5, 7.2.10, and 6.2.19, an...

CBL Mariner 2.0 Security Update: redis / valkey (CVE-2025-32023)

The version of redis / valkey installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-32023 advisory. - Redis is an open source, in-memory database that persists on disk. From 2.8 to before 8.0.3, 7.4.5,...

CVE-2025-32023

A flaw was found in Redis. This flaw allows an authenticated user to trigger an integer overflow by sending a specially crafted string, resulting in a stack or heap out-of-bounds write during hyperloglog operations. This issue potentially results in remote code execution. Mitigation Prevent users...

CVE-2025-32023

Redis is an open source, in-memory database that persists on disk. From 2.8 to before 8.0.3, 7.4.5, 7.2.10, and 6.2.19, an authenticated user may use a specially crafted string to trigger a stack/heap out of bounds write on hyperloglog operations, potentially leading to remote code execution. The...

CVE-2025-32023

CVE-2025-32023 affects Redis with a stack/heap out-of-bounds write in hyperloglog operations, potentially enabling remote code execution. Affected versions range from 2.8 up to before 8.0.3, and specific 7.x/6.2 lines (8.0.3, 7.4.5, 7.2.10, 6.2.19) are fixed. The root cause is an out-of-bounds wr...

CVE-2025-32023

Redis is an open source, in-memory database that persists on disk. From 2.8 to before 8.0.3, 7.4.5, 7.2.10, and 6.2.19, an authenticated user may use a specially crafted string to trigger a stack/heap out of bounds write on hyperloglog operations, potentially leading to remote code execution. The...

CVE-2025-32023

Redis is an open source, in-memory database that persists on disk. From 2.8 to before 8.0.3, 7.4.5, 7.2.10, and 6.2.19, an authenticated user may use a specially crafted string to trigger a stack/heap out of bounds write on hyperloglog operations, potentially leading to remote code execution. The...

CVE-2025-32023 Redis allows out of bounds writes in hyperloglog commands leading to RCE

Redis is an open source, in-memory database that persists on disk. From 2.8 to before 8.0.3, 7.4.5, 7.2.10, and 6.2.19, an authenticated user may use a specially crafted string to trigger a stack/heap out of bounds write on hyperloglog operations, potentially leading to remote code execution. The...

PT-2025-28183

Name of the Vulnerable Software and Affected Versions: Redis versions 2.8 through 8.0.3, 7.4.5, 7.2.10, and 6.2.19. Valkey versions up to 8.1.3 and 8.0.4 are also affected. Description: Redis and Valkey are vulnerable to a heap-based buffer overflow in the HyperLogLog functionality. An...