File _patchinfo of Package patchinfo.38936
<patchinfo incident="38936"> <issue tracker="cve" id="2025-27151"/> <issue tracker="cve" id="2025-49112"/> <issue tracker="bnc" id="1243804">VUL-0: CVE-2025-27151: redis,redis7,valkey: absence of filename size check may cause a stack overflow</issue> <issue tracker="bnc" id="1243913">VUL-0: CVE-2025-49112: valkey: setDeferredReply in networking.c in Valkey through 8.1.1 has an integer underflow for prev->size - prev->used.</issue> <issue tracker="bnc" id="1243061">L3: Valkey crashes in openssl-3 lib with null pointer de-reference [ref:_00D1igLOd._500TrZUuWt:ref]</issue> <packager>ateixeira</packager> <rating>moderate</rating> <category>security</category> <summary>Security update for valkey</summary> <description>This update for valkey fixes the following issues: - CVE-2025-27151: Absence of filename size check may cause a stack overflow (bsc#1243804). - CVE-2025-49112: setDeferredReply integer underflow (bsc#1243913). </description> </patchinfo>
