ALSA-2026:25219

[ALSA-2026:25219] Important: redis:7 security update

Type:

security

Severity:

important

Release date:

2026-06-12

Description:

Redis is an advanced key-value store. It is often referred to as a data-structure server since keys can contain strings, hashes, lists, sets, and sorted sets. For performance, Redis works with an in-memory data set. You can persist it either by dumping the data set to disk every once in a while, or by appending each command to a log.  

Security Fix(es):  

  * redis: use-after-free in unblock client flow may allow remote code execution (CVE-2026-23479)
  * redis: Remote code execution via use-after-free in Lua scripting (CVE-2026-23631)
  * redis: RESTORE invalid memory access may allow remote code execution (CVE-2026-25243)


For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	redis-devel-7.2.14-1.module_el9.8.0+258+b8f945d3.aarch64.rpm	361035fd59dfbd4f17d89baf60118051bada3225211d1165843cfcf616998273
aarch64	redis-7.2.14-1.module_el9.8.0+258+b8f945d3.aarch64.rpm	70354adb072bfbeb7815cc6aad9cfc19fc537e2fa7b59edad58c9706d2f414ab
noarch	redis-doc-7.2.14-1.module_el9.8.0+258+b8f945d3.noarch.rpm	36de6c3ed6aae80f0229ecf365a3e6816a211966224f1eccddbdcccff6cbf232
ppc64le	redis-devel-7.2.14-1.module_el9.8.0+258+b8f945d3.ppc64le.rpm	33f949e0ef29c13fee48c01f4977252b4fd0f4517298d19f67d47063529e390d
ppc64le	redis-7.2.14-1.module_el9.8.0+258+b8f945d3.ppc64le.rpm	f4595e2d0a63de863041402748f91a08f50d2632ba3df55a5b67d302db513b24
s390x	redis-devel-7.2.14-1.module_el9.8.0+258+b8f945d3.s390x.rpm	537c5ad0cdd2228f9edbdd319a210a2fe8697db37cd569de1eaae004f4ad991e
s390x	redis-7.2.14-1.module_el9.8.0+258+b8f945d3.s390x.rpm	5a4a0a43ad43da2d18e4199ee761de63f79a15172270501a12aa3b7bf6b56a9c
x86_64	redis-7.2.14-1.module_el9.8.0+258+b8f945d3.x86_64.rpm	d250007ea42ad8fabda5b6b1f87173a083c1c0da4ab0deb01cb2f52b8e8847cf
x86_64	redis-devel-7.2.14-1.module_el9.8.0+258+b8f945d3.x86_64.rpm	e13cbe51e490ba5301d198b5bf2e1b75c38f8ba051e7e676097dfa469df7abdf

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.