Msrc Azl3 Valkey 8.0.4-1 On Azure Linux 3.0 vulnerabilities

CVE-2025-49844 [CRITICAL] CWE-416 Redis Lua Use-After-Free may lead to remote code execution Redis Lua Use-After-Free may lead to remote code execution FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries wi

CVE-2025-46817 [HIGH] CWE-190 Lua library commands may lead to integer overflow and potential RCE Lua library commands may lead to integer overflow and potential RCE FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open sourc

CVE-2025-46818 [MEDIUM] CWE-94 Redis: Authenticated users can execute LUA scripts as a different user Redis: Authenticated users can execute LUA scripts as a different user FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the ope

CVE-2025-46819 [MEDIUM] CWE-190 Redis is vulnerable to DoS via specially crafted LUA scripts Redis is vulnerable to DoS via specially crafted LUA scripts FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries

CVE-2025-32023 [HIGH] CWE-680 Redis allows out of bounds writes in hyperloglog commands leading to RCE Redis allows out of bounds writes in hyperloglog commands leading to RCE FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the

CVE-2025-48367 [HIGH] CWE-770 Redis DoS Vulnerability due to bad connection error handling Redis DoS Vulnerability due to bad connection error handling FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries wi