Recently, vulnerabilities identified as CVE-2023-41053 and CVE-2023-41056 have been discovered in Redis 7.0. Tair (Redis OSS-compatible) has addressed these vulnerabilities with patches. We recommend that you update the minor version of your Redis Open-Source Edition 7.0 instances.
Vulnerability details
Scope of impacts
Redis Open-Source Edition 7.0 instances
Suggestions
To ensure the secure and stable operation of your Redis Open-Source Edition 7.0 instances, we recommend that you update the instances to the latest minor version (7.0.1.4 or later) at the earliest opportunity. For more information, see Update the minor version of an instance.