stable

redis-7.2.6-1.fc40

FEDORA-2024-5d4eb04e76 created by remi 4 months ago for Fedora 40

Redis Community Edition 7.2.6 Released Wed 02 Oct 2024 20:17:04 IDT

Upgrade urgency SECURITY: See security fixes below.

Security fixes

  • CVE-2024-31449 Lua library commands may lead to stack overflow and potential RCE.
  • CVE-2024-31227 Potential Denial-of-service due to malformed ACL selectors.
  • CVE-2024-31228 Potential Denial-of-service due to unbounded pattern matching.

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2024-5d4eb04e76

This update has been submitted for testing by remi.

4 months ago

This update's test gating status has been changed to 'ignored'.

4 months ago

This update has been pushed to testing.

4 months ago

remi edited this update.

4 months ago

This update has been submitted for stable by bodhi.

4 months ago

This update has been pushed to stable.

4 months ago

Please login to add feedback.

Metadata
Type
security
Severity
medium
Karma
0
Signed
Content Type
RPM
Test Gating
Autopush Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
7 days
Dates
submitted
4 months ago
in testing
4 months ago
in stable
4 months ago
modified
4 months ago
approved
4 months ago
BZ#2317405 CVE-2024-31228 redis: Denial-of-service due to unbounded pattern matching in Redis [fedora-40]
0
0
BZ#2317408 CVE-2024-31449 redis: Lua library commands may lead to stack overflow and RCE in Redis [fedora-40]
0
0
BZ#2317414 CVE-2024-31227 redis: Denial-of-service due to malformed ACL selectors in Redis [fedora-40]
0
0

Automated Test Results