ELSA-2025-21936

ELSA-2025-21936 - valkey security update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2025-12-02

Description

[8.0.6-2]
- rebase to 8.0.6 for CVE-2025-49844 CVE-2025-46817 CVE-2025-46818 CVE-2025-46819

[8.0.4-3]
- fix ImageMode: ensure ownership of /etc/valkey

[8.0.4-2]
- fix ImageMode: add tmpfiles.d entries for directories below /var

[8.0.4-1]
- rebase to 8.0.4 for CVE-2025-27151 CVE-2025-48367 and CVE-2025-32023

[8.0.3.1]
- rebase to 8.0.3

[8.0.2.1]
- rebase to 8.0.2
Resolves: RHEL-73273

[7.2.6-2]
- Bump release for October 2024 mass rebuild:
Resolves: RHEL-64018

[7.2.6.1]
- rebase to 7.2.6
- merge limit.conf in main service files
- drop /etc/sysconfig/valkey
- rename compat package
- fix working dir
- partially enable upstream test suite

[7.2.5-4]
- Bump release for June 2024 mass rebuild

[7.2.5-3]
- remove version_no_tilde code

Related CVEs

CVE-2025-46817

CVE-2025-46818

CVE-2025-46819

CVE-2025-49844

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label
Oracle Linux 10 (aarch64)	valkey-8.0.6-2.el10_1.src.rpm	5d0d0cb662af286e7b8cb4adad835fc850cdd768ded1f9d3b3a361c1f49116ec	-	ol10_aarch64_appstream
	valkey-8.0.6-2.el10_1.aarch64.rpm	9ce670635549da68e9daca47e87cb77b54e91ee77295c85a496ee4e618b64f13	-	ol10_aarch64_appstream
	valkey-devel-8.0.6-2.el10_1.aarch64.rpm	eceb2c68463a3b436892fafceb0a3f7bf8b7305c77d3672a752116d494f27f0c	-	ol10_aarch64_appstream
Oracle Linux 10 (x86_64)	valkey-8.0.6-2.el10_1.src.rpm	5d0d0cb662af286e7b8cb4adad835fc850cdd768ded1f9d3b3a361c1f49116ec	-	ol10_x86_64_appstream
	valkey-8.0.6-2.el10_1.x86_64.rpm	5ad2adf56067a6be0cdfe34e17b5a487c432ace704edcc4f8032e164add216c2	-	ol10_x86_64_appstream
	valkey-devel-8.0.6-2.el10_1.x86_64.rpm	22045839041efc152524986bacb26822f4ff2bcbecfccd1579a02c336305be15	-	ol10_x86_64_appstream

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team