Alerts This Week
Warning Icon 1 1,295
Alerts This Week
Warning Icon 1 1,295

openSUSE Leap 15.6 - valkey - Moderate Data Tampering DoS Issue 2026-0685-1

opensuse
Calendar Grey February 27, 2026
Dist Opensuse Esm H88
Update for valkey addresses two vulnerabilities and ensures enhanced security on openSUSE Leap 15.6 systems.
An update that solves two vulnerabilities can now be installed.

Description

This update for valkey fixes the following issues:

Update to version 8.0.7.

Security issues fixed:

* CVE-2025-67733: data tampering and denial of service via improper null

character handling in Lua scripts (bsc#1258746).

* CVE-2026-21863: denial of service via invalid clusterbus packet

(bsc#1258788).

Other updates and bugfixes:

* ltrim should not call signalModifiedKey when no elements are removed (#2787)

* chained replica crash when doing dual channel replication (#2983)

* used_memory_dataset underflow due to miscalculated used_memory_overhead

(#3005)

* avoids crash during MODULE UNLOAD when ACL rules reference a module command

and subcommand (#3160)

* server assert on ACL LOAD and resetchannels (#3182)

* bug causing no response flush sometimes when IO threads are busy (#3205)

Topics%20covered

Topics Covered

security advisory moderate DoS OpenSUSE data tampering valkey

Patch

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like

YaST online_update or "zypper patch".

Alternatively you can run the command listed for your product:

* openSUSE Leap 15.6

zypper in -t patch openSUSE-SLE-15.6-2026-685=1 SUSE-2026-685=1

Package List

* openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586)

* valkey-debugsource-8.0.7-150600.13.20.1

* valkey-8.0.7-150600.13.20.1

* valkey-debuginfo-8.0.7-150600.13.20.1

* valkey-devel-8.0.7-150600.13.20.1

* openSUSE Leap 15.6 (noarch)

* valkey-compat-redis-8.0.7-150600.13.20.1

References

* bsc#1258746

* bsc#1258788

## References:

* https://www.suse.com/security/cve/CVE-2025-67733.html

* https://www.suse.com/security/cve/CVE-2026-21863.html

* https://bugzilla.suse.com/show_bug.cgi?id=1258746

* https://bugzilla.suse.com/show_bug.cgi?id=1258788

Severity
moderate
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2026:0685-1
Release Date: 2026-02-27T11:53:26Z
Affected Products: * openSUSE Leap 15.6

Topics%20covered

Topics Covered

security advisory moderate DoS OpenSUSE data tampering valkey

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here