Skip to content

Comments

fix(container): update image ghcr.io/valkey-io/valkey ( 8.1.1 ➔ 8.1.5 ) - autoclosed#168

Closed
renovate[bot] wants to merge 1 commit intomainfrom
renovate/ghcr.io-valkey-io-valkey-8.x
Closed

fix(container): update image ghcr.io/valkey-io/valkey ( 8.1.1 ➔ 8.1.5 ) - autoclosed#168
renovate[bot] wants to merge 1 commit intomainfrom
renovate/ghcr.io-valkey-io-valkey-8.x

Conversation

@renovate
Copy link
Contributor

@renovate renovate bot commented Feb 22, 2026

This PR contains the following updates:

Package Update Change
ghcr.io/valkey-io/valkey patch 8.1.18.1.5

Warning

Some dependencies could not be looked up. Check the Dependency Dashboard for more information.

Release Notes

valkey-io/valkey (ghcr.io/valkey-io/valkey)

v8.1.5

Compare Source

Upgrade urgency MODERATE: Program an upgrade of the server, but it's not urgent.

Bug fixes

  • Fix Lua VM crash after FUNCTION FLUSH ASYNC + FUNCTION LOAD (#​1826)
  • Fix invalid memory address caused by hashtable shrinking during safe iteration (#​2753)
  • Cluster: Avoid usage of light weight messages to nodes with not ready bidirectional links (#​2817)
  • Send duplicate multi meet packet only for node which supports it (#​2840)
  • Fix loading AOF files from future Valkey versions (#​2899)

Full Changelog: valkey-io/valkey@8.1.4...8.1.5

v8.1.4

Compare Source

Valkey 8.1.4

Upgrade urgency SECURITY: This release includes security fixes we recommend you
apply as soon as possible.

Security fixes

  • (CVE-2025-49844) A Lua script may lead to remote code execution
  • (CVE-2025-46817) A Lua script may lead to integer overflow and potential RCE
  • (CVE-2025-46818) A Lua script can be executed in the context of another user
  • (CVE-2025-46819) LUA out-of-bound read

Bug fixes

  • Fix accounting for dual channel RDB bytes in replication stats (#​2614)
  • Fix EVAL to report unknown error when empty error table is provided (#​2229)
  • Fix use-after-free when active expiration triggers hashtable to shrink (#​2257)
  • Fix MEMORY USAGE to account for embedded keys (#​2290)
  • Fix memory leak when shrinking a hashtable without entries (#​2288)
  • Prevent potential assertion in active defrag handling large allocations (#​2353)
  • Prevent bad memory access when NOTOUCH client gets unblocked (#​2347)
  • Converge divergent shard-id persisted in nodes.conf to primary's shard id (#​2174)
  • Fix client tracking memory overhead calculation (#​2360)
  • Fix RDB load per slot memory pre-allocation when loading from RDB snapshot (#​2466)
  • Don't use AVX2 instructions if the CPU doesn't support it (#​2571)
  • Fix bug where active defrag may be unable to defrag sparsely filled pages (#​2656)

Full Changelog: valkey-io/valkey@8.1.3...8.1.4

v8.1.3

Compare Source

Upgrade urgency SECURITY: This release includes security fixes we recommend you
apply as soon as possible.

Bug fixes

  • Fix missing response when AUTH is errored inside a transaction (#​2287)

Security fixes

  • CVE-2025-32023 prevent out-of-bounds write during hyperloglog operations (#​2146)
  • CVE-2025-48367 retry accept on transient errors (#​2315)

v8.1.2

Compare Source

Upgrade urgency HIGH: This release includes CVE fix for valkey-check-aof tool, we recommend you
apply as soon as possible if you use the tool.

Security fixes

  • CVE-2025-27151 Check length of AOF file name in valkey-check-aof (#​2146)

Bug fixes

  • Properly escape double quotes and backslash in MONITOR command (#​2036)
  • Fix high CPU usage when fetching a random element in skewed sparse hash table (#​2085)
  • Fix a bug that allowed clients to process commands when the server has paused command processing (#​2109)
  • Fix a crash where the wrong slot is used when processing sharded pubsub unsubscribe events (#​2137)
  • Fix a crash when a module attempts to write auxiliary data with AOF enabled (#​2132)
  • Fix a bug where the engine may crash when establishing new outbound TLS connections (#​2140)
  • Fix a bug where a cluster bus packet may be incorrectly marked as invalid (#​2144)
  • Fix a bug where CLUSTER SLOTS/NODES information can be stale after updating node port/tls-port (#​2186)
  • Fix a bug where replica in cluster mode can't finish failover when config epoch is outdated (#​2178)
  • Fix a bug to avoid CLIENT UNBLOCK command to unblock paused clients (#​2117)

Full Changelog: valkey-io/valkey@8.1.1...8.1.2

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about these updates again.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate renovate bot changed the title fix(container): update image ghcr.io/valkey-io/valkey ( 8.1.1 ➔ 8.1.5 ) fix(container): update image ghcr.io/valkey-io/valkey ( 8.1.1 ➔ 8.1.5 ) - autoclosed Feb 24, 2026
@renovate renovate bot closed this Feb 24, 2026
@renovate renovate bot deleted the renovate/ghcr.io-valkey-io-valkey-8.x branch February 24, 2026 03:05
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

renovate/container type/patch

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants