Redis Security Update for Debian 8 LTS

Debian 9894 Published by

Updated redis packages has been released for Debian GNU/Linux 8 LTS to address two security issues



Package : redis
Version : 2:2.8.17-1+deb8u6
CVE IDs : CVE-2018-11218, CVE-2018-11219, CVE-2018-12326
Debian Bugs : #901495, #902410

It was discovered that there were a number of vulnerabilities in redis,
a persistent key-value database:

* CVE-2018-11218, CVE-2018-11219: Multiple heap
corruption and integer overflow vulnerabilities. (#901495)

* CVE-2018-12326: Buffer overflow in the "redis-cli" tool which could
have allowed an attacker to achieve code execution and/or escalate to
higher privileges via a crafted command line. (#902410)

For Debian 8 "Jessie", these issues have been fixed in redis version
2:2.8.17-1+deb8u6.

We recommend that you upgrade your redis packages.

OpenSSL Security Update for Ubuntu Linux

Zsh, Libvirt, Samba, GlibC, Ding-Libs, Kernel, Oracle-Ofed Updates for Oracle Linux

Windows

Linux

macOS

Community

  • dhamu
    Hello Phil, I have a Linux Tutorial website that curre ...
  • StephanX
    Hi friends, i am new in the Linux universe but i try to ...
  • Philipp
    I would try the XanMod kernel: https://xanmod.orgĀ  I ...