Alerts This Week
Warning Icon 1 1,109
Alerts This Week
Warning Icon 1 1,109

Ubuntu 7359-1: Valkey Security Advisory Updates

ubuntu
Calendar Grey March 20, 2025
Dist Ubuntu Esm H88
Valkey in Ubuntu fixed multiple security issues to prevent malicious access and exploits. Update required for safety.
Several security issues were fixed in Valkey.

Summary

Several security issues were fixed in Valkey.

Software Description:

- valkey: Conversion script and compatibility symlinks for Redis

Details:

It was discovered that Valkey did not properly handle memory

cleanup. An attacker could possibly use this issue to execute

arbitrary code. (CVE-2024-46981)

It was discovered that Valkey did not properly handle resource

access permissions. An authenticated attacker could possibly

use this issue to cause a denial of service. (CVE-2024-51741)

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 24.10
   valkey-redis-compat             7.2.8+dfsg1-0ubuntu0.24.10.2
   valkey-sentinel                 7.2.8+dfsg1-0ubuntu0.24.10.2
   valkey-server                   7.2.8+dfsg1-0ubuntu0.24.10.2
   valkey-tools                    7.2.8+dfsg1-0ubuntu0.24.10.2

Ubuntu 24.04 LTS
   valkey-redis-compat             7.2.8+dfsg1-0ubuntu0.24.04.2
   valkey-sentinel                 7.2.8+dfsg1-0ubuntu0.24.04.2
   valkey-server                   7.2.8+dfsg1-0ubuntu0.24.04.2
   valkey-tools                    7.2.8+dfsg1-0ubuntu0.24.04.2

In general, a standard system update will make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-7359-1

  CVE-2024-46981, CVE-2024-51741

Severity
important
Lowest
Low
Medium
High
Critical

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here