[Git][security-tracker-team/security-tracker][master] redis fixed in sid/new issue

Moritz Muehlenhoff (@jmm) jmm at debian.org
Wed Jul 12 11:16:33 BST 2023 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
e5d8a27e by Moritz Muehlenhoff at 2023-07-12T12:16:09+02:00
redis fixed in sid/new issue

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -198,7 +198,7 @@ CVE-2023-36867 (Visual Studio Code GitHub Pull Requests and Issues Extension Rem
 CVE-2023-36825 (Decidim is a participatory democracy framework, written in Ruby on Rai ...)
 	NOT-FOR-US: Decidim
 CVE-2023-36824 (Redis is an in-memory database that persists on disk. In Redit 7.0 pri ...)
-	- redis <unfixed> (bug #1040879)
+	- redis 5:7.0.12-1 (bug #1040879)
 	[bullseye] - redis <not-affected> (Vulnerable code introduced later)
 	[buster] - redis <not-affected> (Vulnerable code introduced later)
 	NOTE: https://github.com/redis/redis/security/advisories/GHSA-4cfx-h9gq-xpx3
@@ -105705,6 +105705,12 @@ CVE-2022-24835
 	RESERVED
 CVE-2022-24834
 	RESERVED
+	- redis 5:7.0.12-1
+	[bookworm] - redis <no-dsa> (Minor issue)
+	[bullseye] - redis <no-dsa> (Minor issue)
+	NOTE: https://raw.githubusercontent.com/redis/redis/7.0/00-RELEASENOTES
+	NOTE: https://github.com/redis/redis/commit/936cfa464f371666c46bff59f7c4247d48973ec6
+	NOTE: https://github.com/redis/redis/pull/12398
 CVE-2022-24833 (PrivateBin is minimalist, open source online pastebin clone where the  ...)
 	NOT-FOR-US: PrivateBin
 CVE-2022-24832 (GoCD is an open source a continuous delivery server. The bundled gocd- ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e5d8a27e64fb522c6eacbaa00a7ebac60a7b100f

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e5d8a27e64fb522c6eacbaa00a7ebac60a7b100f
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230712/9329aa4e/attachment.htm>

More information about the debian-security-tracker-commits mailing list