rpm package
opensuse/redis&distro=openSUSE Leap 16.0
pkg:rpm/opensuse/redis&distro=openSUSE%20Leap%2016.0
Vulnerabilities (5)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2025-62507 | — | < 8.2.3-bp160.1.1 | 8.2.3-bp160.1.1 | Nov 4, 2025 | Redis is an open source, in-memory database that persists on disk. In versions 8.2.0 and above, a user can run the XACKDEL command with multiple ID's and trigger a stack buffer overflow, which may potentially lead to remote code execution. This issue is fixed in version 8.2.3. To | ||
| CVE-2025-49844 | — | < 8.2.3-bp160.1.1 | 8.2.3-bp160.1.1 | Oct 3, 2025 | Redis is an open source, in-memory database that persists on disk. Versions 8.2.1 and below allow an authenticated user to use a specially crafted Lua script to manipulate the garbage collector, trigger a use-after-free and potentially lead to remote code execution. The problem e | ||
| CVE-2025-46819 | — | < 8.2.3-bp160.1.1 | 8.2.3-bp160.1.1 | Oct 3, 2025 | Redis is an open source, in-memory database that persists on disk. Versions 8.2.1 and below allow an authenticated user to use a specially crafted LUA script to read out-of-bound data or crash the server and subsequent denial of service. The problem exists in all versions of Redi | ||
| CVE-2025-46818 | — | < 8.2.3-bp160.1.1 | 8.2.3-bp160.1.1 | Oct 3, 2025 | Redis is an open source, in-memory database that persists on disk. Versions 8.2.1 and below allow an authenticated user to use a specially crafted Lua script to manipulate different LUA objects and potentially run their own code in the context of another user. The problem exists | ||
| CVE-2025-46817 | — | < 8.2.3-bp160.1.1 | 8.2.3-bp160.1.1 | Oct 3, 2025 | Redis is an open source, in-memory database that persists on disk. Versions 8.2.1 and below allow an authenticated user to use a specially crafted Lua script to cause an integer overflow and potentially lead to remote code execution The problem exists in all versions of Redis wit |
- CVE-2025-62507Nov 4, 2025affected < 8.2.3-bp160.1.1fixed 8.2.3-bp160.1.1
Redis is an open source, in-memory database that persists on disk. In versions 8.2.0 and above, a user can run the XACKDEL command with multiple ID's and trigger a stack buffer overflow, which may potentially lead to remote code execution. This issue is fixed in version 8.2.3. To
- CVE-2025-49844Oct 3, 2025affected < 8.2.3-bp160.1.1fixed 8.2.3-bp160.1.1
Redis is an open source, in-memory database that persists on disk. Versions 8.2.1 and below allow an authenticated user to use a specially crafted Lua script to manipulate the garbage collector, trigger a use-after-free and potentially lead to remote code execution. The problem e
- CVE-2025-46819Oct 3, 2025affected < 8.2.3-bp160.1.1fixed 8.2.3-bp160.1.1
Redis is an open source, in-memory database that persists on disk. Versions 8.2.1 and below allow an authenticated user to use a specially crafted LUA script to read out-of-bound data or crash the server and subsequent denial of service. The problem exists in all versions of Redi
- CVE-2025-46818Oct 3, 2025affected < 8.2.3-bp160.1.1fixed 8.2.3-bp160.1.1
Redis is an open source, in-memory database that persists on disk. Versions 8.2.1 and below allow an authenticated user to use a specially crafted Lua script to manipulate different LUA objects and potentially run their own code in the context of another user. The problem exists
- CVE-2025-46817Oct 3, 2025affected < 8.2.3-bp160.1.1fixed 8.2.3-bp160.1.1
Redis is an open source, in-memory database that persists on disk. Versions 8.2.1 and below allow an authenticated user to use a specially crafted Lua script to cause an integer overflow and potentially lead to remote code execution The problem exists in all versions of Redis wit