FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2025-01-20 13:42:49 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
4d79fd1a-cc93-11ef-abed-08002784c58dredis,valkey -- Denial-of-service valnerability due to malformed ACL selectors

Redis core team reports:

An authenticated with sufficient privileges may create a malformed ACL selector which, when accessed, triggers a server panic and subsequent denial of service.The problem exists in Redis 7.0.0 or newer.


Discovery 2025-01-06
Entry 2025-01-10
redis
>= 7.0.0 lt 7.4.2

redis72
< 7.2.7

valkey
< 8.0.2

CVE-2024-51741
https://github.com/redis/redis/security/advisories/GHSA-prpq-rh5h-46g9
5f19ac58-cc90-11ef-abed-08002784c58dredis,valkey -- Remote code execution valnerability

Redis core team reports:

An authenticated user may use a specially crafted Lua script to manipulate the garbage collector and potentially lead to remote code execution. The problem exists in all versions of Redis with Lua scripting.


Discovery 2025-01-06
Entry 2025-01-10
redis
< 7.4.2

redis72
< 7.2.7

redis62
< 6.2.17

valkey
< 8.0.2

CVE-2024-46981
https://github.com/redis/redis/security/advisories/GHSA-39h2-x6c4-6w4c