Overview

File _patchinfo of Package patchinfo.27449

<patchinfo incident="27449">
  <issue tracker="bnc" id="1207203">VUL-0: CVE-2023-22458: redis: Integer overflow in the Redis HRANDFIELD and ZRANDMEMBER   commands can lead to denial-of-service</issue>
  <issue tracker="bnc" id="1207448">SLES15SP4: redis update  fails, build log throws errors</issue>
  <issue tracker="bnc" id="1207202">VUL-0: CVE-2022-35977: redis: Integer overflow in the Redis SETRANGE and SORT/SORT_RO   commands can drive Redis to OOM panic</issue>
  <issue tracker="cve" id="2022-35977"/>
  <issue tracker="cve" id="2023-22458"/>
  <packager>pgajdos</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for redis</summary>
  <description>This update for redis fixes the following issues:

- CVE-2022-35977: Fixed an integer overflow that could allow
  authenticated users to cause a crash (bsc#1207202).
- CVE-2023-22458: Fixed a missing check that could allow authenticated
  users to cause a crash (bsc#1207203).
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places