[ubuntu/noble-security] redis 5:7.0.15-1ubuntu0.24.04.1 (Accepted)
Shishir Subedi
shishirsub10 at gmail.com
Wed Mar 5 08:27:01 UTC 2025
redis (5:7.0.15-1ubuntu0.24.04.1) noble-security; urgency=medium
* SECURITY UPDATE: denial of service
- debian/patches/CVE-2024-31228.patch: break out of recursion if the
value of "nesting" is greater than 1000 in `src/util.c`
- CVE-2024-31228
* SECURITY UPDATE: remote code execution
- debian/patches/CVE-2024-46981.patch: reset GC state before closing
the lua VM to prevent user data to be wrongly freed while still might
be used on destructor callbacks.
- CVE-2024-46981
* SECURITY UPDATE: denial of service
- debian/patches/CVE-2024-51741.patch: make '%w' and '%r' only valid
permissions
- CVE-2024-51741
Date: 2025-03-03 13:09:20.690348+00:00
Changed-By: Shishir Subedi <shishirsub10 at gmail.com>
https://launchpad.net/ubuntu/+source/redis/5:7.0.15-1ubuntu0.24.04.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the noble-changes
mailing list