[Git][security-tracker-team/security-tracker][master] Add CVE-2023-25155/redis

Salvatore Bonaccorso (@carnil) carnil at debian.org
Thu Mar 2 19:35:23 GMT 2023



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
cf7a310c by Salvatore Bonaccorso at 2023-03-02T20:34:37+01:00
Add CVE-2023-25155/redis

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -6354,7 +6354,9 @@ CVE-2023-25157 (GeoServer is an open source software server written in Java that
 CVE-2023-25156 (Kiwi TCMS, an open source test management system, does not impose rate ...)
 	NOT-FOR-US: Kiwi TCMS
 CVE-2023-25155 (Redis is an in-memory database that persists on disk. Authenticated us ...)
-	TODO: check
+	- redis <unfixed>
+	NOTE: https://github.com/redis/redis/security/advisories/GHSA-x2r7-j9vw-3w83
+	NOTE: https://github.com/redis/redis/commit/2a2a582e7cd99ba3b531336b8bd41df2b566e619
 CVE-2023-25154 (Misskey is an open source, decentralized social media platform. In ver ...)
 	NOT-FOR-US: Misskey
 CVE-2023-25153 (containerd is an open source container runtime. Before versions 1.6.18 ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cf7a310cb57e3755af33aa723b8a90471c9bbae4

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cf7a310cb57e3755af33aa723b8a90471c9bbae4
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230302/db34a794/attachment-0001.htm>


More information about the debian-security-tracker-commits mailing list