Overview

File _patchinfo of Package patchinfo.28793

<patchinfo incident="28793">
  <issue tracker="cve" id="2023-28856"/>
  <issue tracker="cve" id="2022-24834"/>
  <issue tracker="bnc" id="1213193">VUL-0: CVE-2022-24834: redis: heap overflow in the cjson and cmsgpack libraries</issue>
  <issue tracker="bnc" id="1210548">VUL-0: CVE-2023-28856: redis: HINCRBYFLOAT invalid key crash</issue>
  <packager>ateixeira</packager>
  <rating>moderate</rating>
  <category>security</category>
  <summary>Security update for redis</summary>
  <description>This update for redis fixes the following issues:

- CVE-2023-28856: Fixed possible DoS when using HINCRBYFLOAT to create an hash field. (bsc#1210548)
- CVE-2022-24834: Fixed a heap overflow in the cjson and cmsgpack libraries. (bsc#1213193)
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places