FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-11-16 12:24:49 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
8706e097-6db7-11ee-8744-080027f5fec9	redis -- Possible bypassing Unix socket permissions Redis core team reports: The wrong order of listen(2) and chmod(2) calls creates a race condition that can be used by another process to bypass desired Unix socket permissions on startup. Discovery 2023-10-18 Entry 2023-10-18 redis < 7.2.2 redis-devel < 7.2.2.20231018 redis70 < 7.0.14 redis62 < 6.2.14 CVE-2023-45145 https://groups.google.com/g/redis-db/c/r81pHa-dcI8

VuXML ID

Description

8706e097-6db7-11ee-8744-080027f5fec9

redis -- Possible bypassing Unix socket permissions

Redis core team reports:

The wrong order of listen(2) and chmod(2) calls creates a race condition that can be used by another process to bypass desired Unix socket permissions on startup.

Discovery 2023-10-18
Entry 2023-10-18
redis

< 7.2.2

redis-devel

< 7.2.2.20231018

redis70

< 7.0.14

redis62

< 6.2.14

CVE-2023-45145
https://groups.google.com/g/redis-db/c/r81pHa-dcI8