[ALSA-2025:0692] Important: redis:7 security update
Type:
security
Severity:
important
Release date:
2025-01-29
Description:
Redis is an advanced key-value store. It is often referred to as a data-structure server since keys can contain strings, hashes, lists, sets, and sorted sets. For performance, Redis works with an in-memory data set. You can persist it either by dumping the data set to disk every once in a while, or by appending each command to a log. Security Fix(es): * redis: Redis' Lua library commands may lead to remote code execution (CVE-2024-46981) * redis: Redis allows denial-of-service due to malformed ACL selectors (CVE-2024-51741) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 redis-devel-7.2.7-1.module_el9.5.0+134+2e645600.aarch64.rpm 181c0d36f64a98fc3fb7041d4d0f7584fb52d3ec41b7f23f9c2e9be31518393c
aarch64 redis-7.2.7-1.module_el9.5.0+134+2e645600.aarch64.rpm 72a13905a68cd2922532db27ed5fc8a6c190de40d290fcb2c235558f9ce02523
noarch redis-doc-7.2.7-1.module_el9.5.0+134+2e645600.noarch.rpm dd018d1e2402c528d76eb3d758ae78dcb70dff64ee95736a6dbeba53008d990e
ppc64le redis-devel-7.2.7-1.module_el9.5.0+134+2e645600.ppc64le.rpm 560113c237cc1517e848b7aa700bff0aaf1ed75114b3b53ee544095e8f300fd4
ppc64le redis-7.2.7-1.module_el9.5.0+134+2e645600.ppc64le.rpm 79603619ea488fbb332db8eefd489263b6aedca16d000dc268e3457ef750d3dd
s390x redis-devel-7.2.7-1.module_el9.5.0+134+2e645600.s390x.rpm c7ed486965df1215a397a78991007448f5c5a67b49ac483c151c3bff9ad64668
s390x redis-7.2.7-1.module_el9.5.0+134+2e645600.s390x.rpm e5ad09c76694b7dd8bc78c8b0eb4c59f72067cfa89f8ea21d4aa1f037b90b2a5
x86_64 redis-devel-7.2.7-1.module_el9.5.0+134+2e645600.x86_64.rpm 1e38d32217c10898c76b0f4e75683bfca9b62171153bc4a25f2bbc51e071ff0f
x86_64 redis-7.2.7-1.module_el9.5.0+134+2e645600.x86_64.rpm c021ae7e295e54b2c3a1c0e82f0906f82de986df903cebfa732de8dcb28a1164
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.