[Git][security-tracker-team/security-tracker][master] Add CVE-2025-49844/redis
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri Oct 3 22:20:40 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
8ca81739 by Salvatore Bonaccorso at 2025-10-03T23:20:09+02:00
Add CVE-2025-49844/redis
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -169,7 +169,10 @@ CVE-2025-52427 (A NULL pointer dereference vulnerability has been reported to af
CVE-2025-52424 (A NULL pointer dereference vulnerability has been reported to affect s ...)
NOT-FOR-US: QNAP
CVE-2025-49844 (Redis is an open source, in-memory database that persists on disk. Ver ...)
- TODO: check
+ - redis <unfixed>
+ NOTE: https://github.com/redis/redis/security/advisories/GHSA-4789-qfc9-5f9q
+ NOTE: https://github.com/redis/redis/commit/d5728cb5795c966c5b5b1e0f0ac576a7e69af539 (8.2.2)
+ TODO: check redict and valkey forks
CVE-2025-49641 (A regular Zabbix user with no permission to the Monitoring -> Problems ...)
TODO: check
CVE-2025-48730 (A use of externally-controlled format string vulnerability has been re ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8ca81739cd79593c7586d07f9ea20e7708d550b3
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8ca81739cd79593c7586d07f9ea20e7708d550b3
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251003/cbb40283/attachment.htm>
More information about the debian-security-tracker-commits
mailing list