Overview

File _patchinfo of Package patchinfo.39843

<patchinfo incident="39843">
  <issue tracker="cve" id="2025-27151"/>
  <issue tracker="cve" id="2025-48367"/>
  <issue tracker="cve" id="2025-32023"/>
  <issue tracker="bnc" id="1243804">VUL-0: CVE-2025-27151: redis,redis7,valkey: absence of filename size check may cause a stack overflow</issue>
  <issue tracker="bnc" id="1246058">VUL-0: CVE-2025-48367: redis,redis7,valkey: unauthenticated connection causing repeated IP protocol erros can lead to client starvation and DoS</issue>
  <issue tracker="bnc" id="1246059">VUL-0: CVE-2025-32023: redis,redis7,valkey: out-of-bounds write when working with HyperLogLog commands can lead to remote code execution</issue>
  <packager>ateixeira</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for redis</summary>
  <description>This update for redis fixes the following issues:

- CVE-2025-27151: Fixed absence of filename size check may cause a stack overflow. (bsc#1243804)
- CVE-2025-32023: Fixed out-of-bounds write when working with HyperLogLog commands can lead to remote code execution. (bsc#1246059)
- CVE-2025-48367: Fixed unauthenticated connection causing repeated IP protocol erros can lead to client starvation and DoS. (bsc#1246058)
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places