Test ID:	1.3.6.1.4.1.25623.1.0.884796
Category:	Fedora Local Security Checks
Title:	Fedora: Security Advisory (FEDORA-2023-5a7cc198c2)
Summary:	The remote host is missing an update for the 'redis' package(s) announced via the FEDORA-2023-5a7cc198c2 advisory.
Description:	Summary: The remote host is missing an update for the 'redis' package(s) announced via the FEDORA-2023-5a7cc198c2 advisory. Vulnerability Insight: **Redis 7.2.1** Released Wed 06 Sep 2023 15:00:00 IDT Upgrade urgency SECURITY: See security fixes below. Security Fixes * (**CVE-2023-41053**) Redis does not correctly identify keys accessed by SORT_RO and, as a result, may grant users executing this command access to keys that are not explicitly authorized by the ACL configuration. Bug Fixes * Fix crashes when joining a node to an existing 7.0 Redis Cluster (#12538) * Correct request_policy and response_policy command tips on for some admin / configuration commands (#12545, #12530) Affected Software/OS: 'redis' package(s) on Fedora 39. Solution: Please install the updated package(s). CVSS Score: 1.7 CVSS Vector: AV:L/AC:L/Au:S/C:P/I:N/A:N
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2023-41053 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UA4MSJ623BH6HP5UHSJD2FOTN3QM5DQS/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YLYNYT52EHR63E7L7SHRTHEPUMAFFDLX/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OLBPIUUD273UGRN2WAYHPVUAULY36QVL/ https://github.com/redis/redis/commit/9e505e6cd842338424e05883521ca1fb7d0f47f6 https://github.com/redis/redis/security/advisories/GHSA-q4jr-5p56-4xwc
Copyright	Copyright (C) 2023 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.