[Git][security-tracker-team/security-tracker][master] track redict for new redis issues

Moritz Muehlenhoff (@jmm) jmm at debian.org
Tue Jan 7 15:16:38 GMT 2025



Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
ec6af939 by Moritz Muehlenhoff at 2025-01-07T16:16:03+01:00
track redict for new redis issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -54,8 +54,11 @@ CVE-2024-53931 (The com.glitter.caller.screen (aka iCaller, Caller Theme & Diale
 	NOT-FOR-US: com.glitter.caller.screen (aka iCaller, Caller Theme & Dialer) application
 CVE-2024-51741 (Redis is an open source, in-memory database that persists on disk. An  ...)
 	- redis <unfixed>
+	- redict <unfixed>
 	NOTE: https://github.com/redis/redis/security/advisories/GHSA-prpq-rh5h-46g9
-	TODO: check valkey and redict
+	NOTE: https://github.com/redis/redis/commit/15e212bf69de28d2b4585aa79cc2a40f49e4a94d (7.2.7)
+	NOTE: https://codeberg.org/redict/redict/issues/60
+	TODO: check valkey
 CVE-2024-48457 (An issue in Netis Wifi6 Router NX10 2.0.1.3643 and 2.0.1.3582 and Neti ...)
 	NOT-FOR-US: Netis router
 CVE-2024-48456 (An issue in Netis Wifi6 Router NX10 2.0.1.3643 and 2.0.1.3582 and Neti ...)
@@ -66,8 +69,11 @@ CVE-2024-47398 (in OpenHarmony v4.1.2 and prior versions allow a local attacker
 	NOT-FOR-US: OpenHarmony
 CVE-2024-46981 (Redis is an open source, in-memory database that persists on disk. An  ...)
 	- redis <unfixed>
-	TODO: check valkey and redict
+	- redict <unfixed>
 	NOTE: https://github.com/redis/redis/security/advisories/GHSA-39h2-x6c4-6w4c
+	NOTE: https://github.com/redis/redis/commit/e344b2b5879aa52870e6838212dfb78b7968fcbf (7.2.7)
+	NOTE: https://codeberg.org/redict/redict/issues/60
+	TODO: check valkey
 CVE-2024-45070 (in OpenHarmony v4.1.2 and prior versions allow a local attacker cause  ...)
 	NOT-FOR-US: OpenHarmony
 CVE-2024-12849 (The Error Log Viewer By WP Guru plugin for WordPress is vulnerable to  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ec6af9395a056286177934bdd57df0905998b347

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ec6af9395a056286177934bdd57df0905998b347
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250107/f8c747ae/attachment-0001.htm>


More information about the debian-security-tracker-commits mailing list