330 matches found
Fedora 41 : valkey (2025-34895333b5)
The remote Fedora 41 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-34895333b5 advisory. Valkey 8.0.4 - Released Mon 07 July 2025 Upgrade urgency SECURITY: This release includes security fixes we recommend you apply as soon as possible...
Fedora 42 : valkey (2025-8e2eddc063)
The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-8e2eddc063 advisory. Valkey 8.0.4 - Released Mon 07 July 2025 Upgrade urgency SECURITY: This release includes security fixes we recommend you apply as soon as possible...
RHSA-2025:11401 Red Hat Security Advisory: valkey security update
Bulletin has no description...
Important: Red Hat Security Advisory: valkey security update
An update for valkey is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...
ALSA-2025:11401 Important: valkey security update
Valkey is an advanced key-value store. It is often referred to as a data structure server since keys can contain strings, hashes, lists, sets and sorted sets. You can run atomic operations on these types, like appending to a string; incrementing the value in a hash; pushing to a list; computing s...
RHEL 10 : valkey (RHSA-2025:11401)
The remote Redhat Enterprise Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:11401 advisory. Valkey is an advanced key-value store. It is often referred to as a data structure server since keys can contain strings, hashes, lists,...
OPENSUSE-SU-2025:15359-1 valkey-8.1.3-1.1 on GA media
These are all security issues fixed in the valkey-8.1.3-1.1 package on the GA media of openSUSE Tumbleweed...
setDeferredReply in networking.c in Valkey through 8.1.1 has an integer underflow
...
CVE-2025-49112 affecting package valkey for versions less than 8.0.3-3
CVE-2025-49112 affecting package valkey for versions less than 8.0.3-3. A patched version of the package is available...
CVE-2025-27151 affecting package valkey for versions less than 8.0.3-3
CVE-2025-27151 affecting package valkey for versions less than 8.0.3-3. A patched version of the package is available...
Important: redis6
Issue Overview: Redis and Valkey contain a defect such that a well constructed hyperloglog can corrupt arbitrary memory on the heap, which could lead to remote code execution. CVE-2025-32023 Redis and Valkey contain a defect such that a well constructed hyperloglog can corrupt arbitrary memory on...
Important: redis
Issue Overview: Redis and Valkey contain a defect such that a well constructed hyperloglog can corrupt arbitrary memory on the heap, which could lead to remote code execution. CVE-2025-32023 Redis and Valkey contain a defect such that a well constructed hyperloglog can corrupt arbitrary memory on...
Important: valkey
Issue Overview: Redis and Valkey contain a defect such that a well constructed hyperloglog can corrupt arbitrary memory on the heap, which could lead to remote code execution. CVE-2025-32023 Redis and Valkey contain a defect such that a well constructed hyperloglog can corrupt arbitrary memory on...
Amazon Linux 2023 : valkey, valkey-devel (ALAS2023-2025-1067)
It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2025-1067 advisory. Redis and Valkey contain a defect such that a well constructed hyperloglog can corrupt arbitrary memory on the heap, which could lead to remote code execution. CVE-2025-32023 Redis and Valkey...
openSUSE Security Advisory (SUSE-SU-2025:02231-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
AZL-64827 CVE-2025-48367 affecting package valkey for versions less than 8.0.4-1
Redis is an open source, in-memory database that persists on disk. An unauthenticated connection can cause repeated IP protocol errors, leading to client starvation and, ultimately, a denial of service. This vulnerability is fixed in 8.0.3, 7.4.5, 7.2.10, and 6.2.19...
AZL-64824 CVE-2025-32023 affecting package valkey for versions less than 8.0.4-1
Redis is an open source, in-memory database that persists on disk. From 2.8 to before 8.0.3, 7.4.5, 7.2.10, and 6.2.19, an authenticated user may use a specially crafted string to trigger a stack/heap out of bounds write on hyperloglog operations, potentially leading to remote code execution. The...
Security update for valkey
This update for valkey fixes the following issues: CVE-2025-27151: Absence of filename size check may cause a stack overflow bsc1243804. CVE-2025-49112: setDeferredReply integer underflow bsc1243913. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods lik...
SUSE-SU-2025:02231-1 Security update for valkey
This update for valkey fixes the following issues: - CVE-2025-27151: Absence of filename size check may cause a stack overflow bsc1243804. - CVE-2025-49112: setDeferredReply integer underflow bsc1243913...
FreeBSD : redis,valkey -- {redis,valkey}-check-aof may lead to stack overflow and potential RCE (4ea9cbc3-5b28-11f0-b507-000c295725e4)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 4ea9cbc3-5b28-11f0-b507-000c295725e4 advisory. Simcha Kosman & CyberArk Labs reports: A user can run the redis,valkeyu-check-aof cli and pass a long...