RLSA-2025:12008

Опубликовано: 04 окт. 2025

Источник: rocky

Оценка: Important

Описание

Important: redis:7 security update

Redis is an advanced key-value store. It is often referred to as a data-structure server since keys can contain strings, hashes, lists, sets, and sorted sets. For performance, Redis works with an in-memory data set. You can persist it either by dumping the data set to disk every once in a while, or by appending each command to a log.

Security Fix(es):

redis: Redis Stack Buffer Overflow (CVE-2025-27151)
redis: Redis Unauthenticated Denial of Service (CVE-2025-48367)
redis: Redis Hyperloglog Out-of-Bounds Write Vulnerability (CVE-2025-32023)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Затронутые продукты

Rocky Linux 9

Наименование	Архитектура	Релиз	RPM
redis	x86_64	1.module+el9.6.0+32323+e27e860a	redis-7.2.10-1.module+el9.6.0+32323+e27e860a.x86_64.rpm
redis-devel	x86_64	1.module+el9.6.0+32323+e27e860a	redis-devel-7.2.10-1.module+el9.6.0+32323+e27e860a.x86_64.rpm
redis-doc	noarch	1.module+el9.6.0+32323+e27e860a	redis-doc-7.2.10-1.module+el9.6.0+32323+e27e860a.noarch.rpm
redis-doc	noarch	1.module+el9.6.0+32323+e27e860a	redis-doc-7.2.10-1.module+el9.6.0+32323+e27e860a.noarch.rpm
redis-doc	noarch	1.module+el9.6.0+32323+e27e860a	redis-doc-7.2.10-1.module+el9.6.0+32323+e27e860a.noarch.rpm
redis-doc	noarch	1.module+el9.6.0+32323+e27e860a	redis-doc-7.2.10-1.module+el9.6.0+32323+e27e860a.noarch.rpm