[Git][security-tracker-team/security-tracker][master] Add CVE-2025-32023/{redict,redis,valkey}

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
07482352 by Salvatore Bonaccorso at 2025-07-08T08:22:43+02:00
Add CVE-2025-32023/{redict,redis,valkey}

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -214,7 +214,13 @@ CVE-2025-3044 (A vulnerability in the ArxivReader class of the run-llama/llama_i
 CVE-2025-36014 (IBM Integration Bus for z/OS 10.1.0.0 through 10.1.0.5 is vulnerable t ...)
 	NOT-FOR-US: IBM
 CVE-2025-32023 (Redis is an open source, in-memory database that persists on disk. Fro ...)
-	TODO: check
+	- redict <unfixed>
+	- redis <unfixed>
+	- valkey <unfixed>
+	NOTE: https://github.com/redis/redis/security/advisories/GHSA-rp2m-q4j6-gr43
+	NOTE: Fixed by: https://github.com/redis/redis/commit/50188747cbfe43528d2719399a2a3c9599169445 (8.0.3)
+	NOTE: https://github.com/valkey-io/valkey/pull/2314
+	NOTE: Fixed by: https://github.com/valkey-io/valkey/commit/20f5199d96baf0c64bd4e7d042b6274c4e773bcb
 CVE-2025-26780 (An issue was discovered in L2 in Samsung Mobile Processor and Modem Ex ...)
 	NOT-FOR-US: Samsung
 CVE-2025-20325 (In Splunk Enterprise versions below 9.4.3, 9.3.5, 9.2.7, and 9.1.10, a ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/074823521e7bafdd01fb7f2adb9ad7de97aa016c

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/074823521e7bafdd01fb7f2adb9ad7de97aa016c
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250708/46f174cb/attachment-0001.htm>