[ubuntu/noble-security] valkey 7.2.12+dfsg1-0ubuntu0.1 (Accepted)
Andreas Hasenack
andreas.hasenack at canonical.com
Mon Mar 16 12:38:26 UTC 2026
valkey (7.2.12+dfsg1-0ubuntu0.1) noble; urgency=medium
* New upstream version 7.2.12 (LP: #2142590)
- Security fixes:
+ CVE-2025-67733: RESP Protocol Injection via Lua error_reply.
+ CVE-2026-21863: Remote DoS with malformed Valkey Cluster bus message.
- Bug fixes:
+ Fix ltrim should not call signalModifiedKey when no elements are
removed.
+ Fix potential infinite loop in clusterNodeGetMaster.
+ Avoids crash during MODULE UNLOAD when ACL rules reference a module
command and subcommand.
Date: 2026-03-02 13:30:20.128837+00:00
Changed-By: Lena Voytek <lena.voytek at canonical.com>
Signed-By: Andreas Hasenack <andreas.hasenack at canonical.com>
https://launchpad.net/ubuntu/+source/valkey/7.2.12+dfsg1-0ubuntu0.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the noble-changes
mailing list