You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: content/operate/rc/changelog/october-2025.md
+10-1Lines changed: 10 additions & 1 deletion
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -16,4 +16,13 @@ tags:
16
16
17
17
## Security fixes
18
18
19
-
Redis Cloud has already been updated with a patch for CVE-2025-49844. No further action is required at this time. For more information, see the [Redis blog post](https://redis.io/blog/security-advisory-cve-2025-49844/) about this vulnerability.
19
+
Redis Cloud has already been updated with a patches for the following vulnerabilities:
20
+
21
+
- (CVE-2025-49844) A Lua script may lead to remote code execution
22
+
- (CVE-2025-46817) A Lua script may lead to integer overflow and potential RCE
23
+
- (CVE-2025-46818) A Lua script can be executed in the context of another user
24
+
- (CVE-2025-46819) LUA out-of-bound read
25
+
26
+
No further action is required at this time.
27
+
28
+
For more information, see the [Redis blog](https://redis.io/blog/security-advisory-cve-2025-49844/) and the [Redis release notes](https://github.com/redis/redis/releases).
0 commit comments