FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2025-08-29 03:34:00 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
f11d0a69-5b2d-11f0-b507-000c295725e4	redis,valkey -- Out of bounds write in hyperloglog commands leads to RCE Seunghyun Lee reports: An authenticated user may use a specially crafted string to trigger a stack/heap out of bounds write on hyperloglog operations, potentially leading to remote code execution. Discovery 2025-07-06 Entry 2025-07-07 redis >= 8.0.0 lt 8.0.3 redis74 >= 7.4.0 lt 7.4.5 redis72 >= 7.2.0 lt 7.2.10 redis62 >= 6.2.0 lt 6.2.19 valkey < 8.1.3 CVE-2025-32023 https://github.com/redis/redis/security/advisories/GHSA-rp2m-q4j6-gr43
7b3e7f71-5b30-11f0-b507-000c295725e4	redis,valkey -- DoS Vulnerability due to bad connection error handling @julienperriercornet reports: An unauthenticated connection can cause repeated IP protocol errors, leading to client starvation and, ultimately, a denial of service. Discovery 2025-07-06 Entry 2025-07-07 redis >= 8.0.0 lt 8.0.3 redis74 >= 7.4.0 lt 7.4.5 redis72 >= 7.2.0 lt 7.2.10 redis62 >= 6.2.0 lt 6.2.19 valkey < 8.1.3 CVE-2025-48367 https://github.com/redis/redis/security/advisories/GHSA-4q32-c38c-pwgq

VuXML ID

Description

f11d0a69-5b2d-11f0-b507-000c295725e4

redis,valkey -- Out of bounds write in hyperloglog commands leads to RCE

Seunghyun Lee reports:

An authenticated user may use a specially crafted string to trigger a stack/heap out of bounds write on hyperloglog operations, potentially leading to remote code execution.

Discovery 2025-07-06
Entry 2025-07-07
redis