CVE-2023-45145 - The wrong order of listen(2) and chmod(2) calls creates a race condition that can be used by another process to bypass desired Unix socket permissions on startup. Upstream have released version 7.0.14/7.2.2 to fix CVE-2023-45145. Reference: - https://github.com/redis/redis/releases/tag/7.0.14 - https://bugs.mageia.org/32406
Created redis tracking bugs for this issue: Affects: epel-all [bug 2244941] Affects: fedora-all [bug 2244942]