-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

SUMMARY

WebPros International, LLC has updated packages for EasyApache 4 with updated versions of Redis, Valkey, and Ruby Rack. This release addresses vulnerabilities related to CVE-2025-61772, CVE-2025-61771, CVE-2025-61770, CVE-2025-49844, CVE-2025-46817, CVE-2025-46818, CVE-2025-46819. We strongly encourage all Redis, Valkey, and Ruby Rack users to update to version 25.31.


AFFECTED VERSIONS
All versions of Redis through 6.2.19.
All versions of Valkey through 7.2.10.
All versions of Ruby Rack through 2.2.18.


SECURITY RATING
The National Vulnerability Database (NIST) has given the following severity ratings to these CVEs:

CVE-2025-61772 - HIGH
Ruby Rack 2.2.19
Fixed vulnerability related to CVE-2025-61772.

CVE-2025-61771 - HIGH
Ruby Rack 2.2.19
Fixed vulnerability related to CVE-2025-61771.

CVE-2025-61770 - HIGH
Ruby Rack 2.2.19
Fixed vulnerability related to CVE-2025-61770.

CVE-2025-49844 - CRITICAL
Redis 6.2.20
Fixed vulnerability related to CVE-2025-49844.

Valkey 7.2.11
Fixed vulnerability related to CVE-2025-49844.

CVE-2025-46817 - CRITICAL
Redis 6.2.20
Fixed vulnerability related to CVE-2025-46817.

Valkey 7.2.11
Fixed vulnerability related to CVE-2025-46817.

CVE-2025-46818 - MEDIUM
Redis 6.2.20
Fixed vulnerability related to CVE-2025-46818.

Valkey 7.2.11
Fixed vulnerability related to CVE-2025-46818.

CVE-2025-46819 - MEDIUM
Redis 6.2.20
Fixed vulnerability related to CVE-2025-46819.

Valkey 7.2.11
Fixed vulnerability related to CVE-2025-46819.


SOLUTION
WebPros International, LLC has released updated packages for EasyApache 4 on 2025 October 8, with Redis version 6.2.20, Valkey version 7.2.11, and Ruby Rack version 2.2.19. Unless you have enabled automatic package updates in your cron, update your system with either your package manager or WHM's Run System Update interface.


REFERENCES
https://www.cve.org/CVERecord?id=CVE-2025-61772
https://www.cve.org/CVERecord?id=CVE-2025-61771
https://www.cve.org/CVERecord?id=CVE-2025-61770
https://www.cve.org/CVERecord?id=CVE-2025-49844
https://www.cve.org/CVERecord?id=CVE-2025-46817
https://www.cve.org/CVERecord?id=CVE-2025-46818
https://www.cve.org/CVERecord?id=CVE-2025-46819
https://raw.githubusercontent.com/redis/redis/6.2/00-RELEASENOTES
https://github.com/valkey-io/valkey/releases/tag/7.2.11
https://github.com/rack/rack/blob/main/CHANGELOG.md#2219---2025-10-07
-----BEGIN PGP SIGNATURE-----
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=Ob4V
-----END PGP SIGNATURE-----