-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

SUMMARY

cPanel, L.L.C. has updated packages for EasyApache 4 with an updated version of Valkey 7.2.8. This release addresses vulnerabilities related to CVE-2024-46981 and CVE-2024-51741. We strongly encourage all Valkey users to update to version 7.2.8.

 
AFFECTED VERSIONS
All versions of Valkey through 7.2.7.


SECURITY RATING
The National Vulnerability Database (NIST) has given the following severity ratings to these CVEs:


CVE-2024-46981 - HIGH
Valkey 7.2.8
Fixed vulnerability related to CVE-2024-46981

CVE-2024-51741 - HIGH
Valkey 7.2.8
Fixed vulnerability related to CVE-2024-51741


SOLUTION
cPanel, L.L.C. has released updated packages for EasyApache 4 25.2 on January 15, 2025, with Valkey version 7.2.8. Unless you have enabled automatic package updates in your cron, update your system with either your package manager or WHM's Run System Update interface.

 
REFERENCES
https://www.cve.org/CVERecord?id=CVE-2024-46981
https://www.cve.org/CVERecord?id=CVE-2024-51741
https://github.com/valkey-io/valkey/releases

-----BEGIN PGP SIGNATURE-----
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=hTi+
-----END PGP SIGNATURE-----