Information on source package redis

Available versions

ReleaseVersion
jessie2:2.8.17-1+deb8u13
stretch3:3.2.6-3+deb9u13
stretch (security)3:3.2.6-3+deb9u9
buster5:5.0.14-1+deb10u6
buster (security)5:5.0.14-1+deb10u5
bullseye5:6.0.16-1+deb11u2
bullseye (security)5:6.0.16-1+deb11u4
bookworm5:7.0.15-1~deb12u1
trixie5:7.0.15-2
sid5:7.0.15-2

Open issues

BugjessiestretchbusterbullseyebookwormtrixiesidDescription
CVE-2024-31449fixedfixedfixedvulnerable (no DSA, ignored)vulnerable (no DSA)fixedfixedRedis is an open source, in-memory database that persists on disk. An ...
CVE-2024-31228fixedfixedfixedfixedvulnerable (no DSA)fixedfixedRedis is an open source, in-memory database that persists on disk. Aut ...
CVE-2024-31227fixedfixedfixedfixedvulnerable (no DSA)fixedfixedRedis is an open source, in-memory database that persists on disk. An ...
CVE-2022-24834vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedfixedRedis is an in-memory database that persists on disk. A specially craf ...
CVE-2022-24736vulnerable (no DSA)vulnerable (no DSA, ignored)vulnerable (no DSA, ignored)vulnerable (no DSA, ignored)fixedfixedfixedRedis is an in-memory database that persists on disk. Prior to version ...
CVE-2022-24735vulnerable (no DSA)vulnerable (no DSA, ignored)vulnerable (no DSA, ignored)vulnerable (no DSA, ignored)fixedfixedfixedRedis is an in-memory database that persists on disk. By exploiting we ...
CVE-2021-32628fixedvulnerable (no DSA, ignored)fixedfixedfixedfixedfixedRedis is an open source, in-memory database that persists on disk. An ...
CVE-2021-32627fixedvulnerable (no DSA, ignored)fixedfixedfixedfixedfixedRedis is an open source, in-memory database that persists on disk. In ...
CVE-2021-31294vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA, ignored)fixedfixedfixedRedis before 6cbea7d allows a replica to cause an assertion failure in ...
CVE-2016-10517vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedfixedfixednetworking.c in Redis before 3.2.7 allows "Cross Protocol Scripting" b ...
CVE-2016-2121vulnerable (no DSA)fixedfixedfixedfixedfixedfixedA permissions flaw was found in redis, which sets weak permissions on ...

Open unimportant issues

BugjessiestretchbusterbullseyebookwormtrixiesidDescription
CVE-2022-3647vulnerablevulnerablevulnerablevulnerablevulnerablevulnerablevulnerable** DISPUTED ** A vulnerability, which was classified as problematic, w ...
CVE-2021-3470vulnerablevulnerablevulnerablefixedfixedfixedfixedA heap overflow issue was found in Redis in versions before 5.0.10, be ...
CVE-2020-21468vulnerablevulnerablevulnerablevulnerablevulnerablevulnerablevulnerableA segmentation fault in the redis-server component of Redis 5.0.7 lead ...
CVE-2017-15047fixedvulnerablefixedfixedfixedfixedfixedThe clusterLoadConfig function in cluster.c in Redis 4.0.2 allows atta ...

Resolved issues

BugDescription
CVE-2023-45145Redis is an in-memory database that persists on disk. On startup, Redi ...
CVE-2023-41056Redis is an in-memory database that persists on disk. Redis incorrectl ...
CVE-2023-41053Redis is an in-memory database that persists on disk. Redis does not c ...
CVE-2023-36824Redis is an in-memory database that persists on disk. In Redit 7.0 pri ...
CVE-2023-28856Redis is an open source, in-memory database that persists on disk. Aut ...
CVE-2023-28425Redis is an in-memory database that persists on disk. Starting in vers ...
CVE-2023-25155Redis is an in-memory database that persists on disk. Authenticated us ...
CVE-2023-22458Redis is an in-memory database that persists on disk. Authenticated us ...
CVE-2022-36021Redis is an in-memory database that persists on disk. Authenticated us ...
CVE-2022-35977Redis is an in-memory database that persists on disk. Authenticated us ...
CVE-2022-35951Redis is an in-memory database that persists on disk. Versions 7.0.0 a ...
CVE-2022-33105Redis v7.0 was discovered to contain a memory leak via the component s ...
CVE-2022-31144Redis is an in-memory database that persists on disk. A specially craf ...
CVE-2022-0543It was discovered, that redis, a persistent key-value database, due to ...
CVE-2021-41099Redis is an open source, in-memory database that persists on disk. An ...
CVE-2021-32762Redis is an open source, in-memory database that persists on disk. The ...
CVE-2021-32761Redis is an in-memory database that persists on disk. A vulnerability ...
CVE-2021-32687Redis is an open source, in-memory database that persists on disk. An ...
CVE-2021-32675Redis is an open source, in-memory database that persists on disk. Whe ...
CVE-2021-32672Redis is an open source, in-memory database that persists on disk. Whe ...
CVE-2021-32626Redis is an open source, in-memory database that persists on disk. In ...
CVE-2021-32625Redis is an open source (BSD licensed), in-memory data structure store ...
CVE-2021-29478Redis is an open source (BSD licensed), in-memory data structure store ...
CVE-2021-29477Redis is an open source (BSD licensed), in-memory data structure store ...
CVE-2021-21309Redis is an open-source, in-memory database that persists on disk. In ...
CVE-2020-14147An integer overflow in the getnum function in lua_struct.c in Redis be ...
CVE-2019-10193A stack-buffer overflow vulnerability was found in the Redis hyperlogl ...
CVE-2019-10192A heap-buffer overflow vulnerability was found in the Redis hyperloglo ...
CVE-2018-12453Type confusion in the xgroupCommand function in t_stream.c in redis-se ...
CVE-2018-12326Buffer overflow in redis-cli of Redis before 4.0.10 and 5.x before 5.0 ...
CVE-2018-11219An Integer Overflow issue was discovered in the struct library in the ...
CVE-2018-11218Memory Corruption was discovered in the cmsgpack library in the Lua su ...
CVE-2016-8339A buffer overflow in Redis 3.2.x prior to 3.2.4 causes arbitrary code ...
CVE-2015-8080Integer overflow in the getnum function in lua_struct.c in Redis 2.8.x ...
CVE-2015-4335Redis before 2.8.21 and 3.x before 3.0.2 allows remote attackers to ex ...
CVE-2013-7458linenoise, as used in Redis before 3.2.3, uses world-readable permissi ...
CVE-2013-0180Insecure temporary file vulnerability in Redis 2.6 related to /tmp/red ...
CVE-2013-0178Insecure temporary file vulnerability in Redis before 2.6 related to / ...

Security announcements

DSA / DLADescription
DLA-3973-1redis - security update
ELA-1253-1redis - security update
DLA-3885-1redis - security update
DSA-5610-1redis - security update
DLA-3627-1redis - security update
ELA-988-1redis - security update
DLA-3396-1redis - security update
ELA-838-1redis - security update
DLA-3361-1redis - security update
DSA-5081-1redis - security update
ELA-512-1redis - security update
DSA-5001-1redis - security update
DLA-2810-1redis - security update
DLA-2717-2redis - regression update
DLA-2717-1redis - security update
ELA-460-1redis - security update
DLA-2576-1redis - security update
DSA-4731-1redis - security update
DSA-4480-1redis - security update
DLA-1850-1redis - security update
ELA-34-1redis - security update
DLA-1396-1redis - security update
DSA-4230-1redis - security update
DLA-1161-1redis - security update
DSA-3634-1redis - security update
DLA-577-1redis - security update
DSA-3412-1redis - security update
DSA-3279-1redis - security update

Search for package or bug name: Reporting problems