{"document":{"aggregate_severity":{"namespace":"https://www.suse.com/support/security/rating/","text":"moderate"},"category":"csaf_vex","csaf_version":"2.0","distribution":{"text":"Copyright 2024 SUSE LLC. All rights reserved.","tlp":{"label":"WHITE","url":"https://www.first.org/tlp/"}},"lang":"en","notes":[{"category":"summary","text":"SUSE CVE-2026-21863","title":"Title"},{"category":"description","text":"Valkey is a distributed key-value database. Prior to versions 9.0.2, 8.1.6, 8.0.7, and 7.2.12, a malicious actor with access to the Valkey clusterbus port can send an invalid packet that may cause an out bound read, which might result in the system crashing. The Valkey clusterbus packet processing code does not validate that a clusterbus ping extension packet is located within buffer of the clusterbus packet before attempting to read it. Versions 9.0.2, 8.1.6, 8.0.7, and 7.2.12 fix the issue. As an additional mitigation, don't expose the cluster bus connection directly to end users, and protect the connection with its own network ACLs.","title":"Description of the CVE"},{"category":"legal_disclaimer","text":"CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).","title":"Terms of use"}],"publisher":{"category":"vendor","contact_details":"https://www.suse.com/support/security/contact/","name":"SUSE Product Security Team","namespace":"https://www.suse.com/"},"references":[{"category":"external","summary":"CVE-2026-21863","url":"https://www.suse.com/security/cve/CVE-2026-21863"},{"category":"external","summary":"SUSE Security Ratings","url":"https://www.suse.com/support/security/rating/"},{"category":"external","summary":"SUSE Bug 1258788 for CVE-2026-21863","url":"https://bugzilla.suse.com/1258788"},{"category":"external","summary":"Advisory link for SUSE-SU-2026:0685-1","url":"https://lists.suse.com/pipermail/sle-security-updates/2026-February/024491.html"},{"category":"external","summary":"Advisory link for SUSE-SU-2026:0848-1","url":"https://lists.suse.com/pipermail/sle-security-updates/2026-March/024650.html"}],"title":"SUSE CVE CVE-2026-21863","tracking":{"current_release_date":"2026-03-13T13:24:35Z","generator":{"date":"2026-02-25T00:26:28Z","engine":{"name":"cve-database.git:bin/generate-csaf-vex.pl","version":"1"}},"id":"CVE-2026-21863","initial_release_date":"2026-02-25T00:26:28Z","revision_history":[{"date":"2026-02-25T00:26:28Z","number":"2","summary":"vulnerabilities added,references added,severity changed from  to moderate"},{"date":"2026-02-27T00:28:11Z","number":"3","summary":"scores added,updates released"},{"date":"2026-02-28T00:26:37Z","number":"4","summary":"more updates released"},{"date":"2026-03-01T00:25:26Z","number":"5","summary":"references added"},{"date":"2026-03-03T00:26:14Z","number":"6","summary":"updates entered QA"},{"date":"2026-03-08T00:24:44Z","number":"7","summary":"more updates released"},{"date":"2026-03-09T13:30:57Z","number":"8","summary":"references added"},{"date":"2026-03-10T00:29:11Z","number":"9","summary":"unknown changes"},{"date":"2026-03-13T13:24:35Z","number":"10","summary":"more updates marked as affected"}],"status":"interim","version":"10"}},"product_tree":{"branches":[{"branches":[{"branches":[{"category":"product_name","name":"SUSE Linux Enterprise High Performance Computing 15 SP7","product":{"name":"SUSE Linux Enterprise High Performance Computing 15 SP7","product_id":"SUSE Linux Enterprise High Performance Computing 15 SP7","product_identification_helper":{"cpe":"cpe:/o:suse:sle_hpc:15:sp7"}}},{"category":"product_name","name":"SUSE Linux Enterprise Module for Server Applications 15 SP7","product":{"name":"SUSE Linux Enterprise Module for Server Applications 15 SP7","product_id":"SUSE Linux Enterprise Module for Server Applications 15 SP7","product_identification_helper":{"cpe":"cpe:/o:suse:sle-module-server-applications:15:sp7"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server 15 SP6-LTSS","product":{"name":"SUSE Linux Enterprise Server 15 SP6-LTSS","product_id":"SUSE Linux Enterprise Server 15 SP6-LTSS","product_identification_helper":{"cpe":"cpe:/o:suse:sles-ltss:15:sp6"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server 15 SP7","product":{"name":"SUSE Linux Enterprise Server 15 SP7","product_id":"SUSE Linux Enterprise Server 15 SP7","product_identification_helper":{"cpe":"cpe:/o:suse:sles:15:sp7"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server 16.0","product":{"name":"SUSE Linux Enterprise Server 16.0","product_id":"SUSE Linux Enterprise Server 16.0","product_identification_helper":{"cpe":"cpe:/o:suse:sles:16:16.0:server"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server for SAP Applications 15 SP6","product":{"name":"SUSE Linux Enterprise Server for SAP Applications 15 SP6","product_id":"SUSE Linux Enterprise Server for SAP Applications 15 SP6","product_identification_helper":{"cpe":"cpe:/o:suse:sles_sap:15:sp6"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server for SAP Applications 15 SP7","product":{"name":"SUSE Linux Enterprise Server for SAP Applications 15 SP7","product_id":"SUSE Linux Enterprise Server for SAP Applications 15 SP7","product_identification_helper":{"cpe":"cpe:/o:suse:sles_sap:15:sp7"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server for SAP applications 16.0","product":{"name":"SUSE Linux Enterprise Server for SAP applications 16.0","product_id":"SUSE Linux Enterprise Server for SAP applications 16.0","product_identification_helper":{"cpe":"cpe:/o:suse:sles:16:16.0:server-sap"}}},{"category":"product_name","name":"openSUSE Leap 15.6","product":{"name":"openSUSE Leap 15.6","product_id":"openSUSE Leap 15.6","product_identification_helper":{"cpe":"cpe:/o:opensuse:leap:15.6"}}},{"category":"product_name","name":"openSUSE Tumbleweed","product":{"name":"openSUSE Tumbleweed","product_id":"openSUSE Tumbleweed","product_identification_helper":{"cpe":"cpe:/o:opensuse:tumbleweed"}}},{"category":"product_version","name":"valkey","product":{"name":"valkey","product_id":"valkey","product_identification_helper":{"purl":"pkg:rpm/suse/valkey@?upstream=valkey.src.rpm"}}},{"category":"product_version","name":"valkey-8.0.7-150600.13.20.1","product":{"name":"valkey-8.0.7-150600.13.20.1","product_id":"valkey-8.0.7-150600.13.20.1","product_identification_helper":{"purl":"pkg:rpm/suse/valkey@8.0.7-150600.13.20.1?upstream=valkey-8.0.7-150600.13.20.1.src.rpm"}}},{"category":"product_version","name":"valkey-8.0.7-150700.3.14.1","product":{"name":"valkey-8.0.7-150700.3.14.1","product_id":"valkey-8.0.7-150700.3.14.1","product_identification_helper":{"purl":"pkg:rpm/suse/valkey@8.0.7-150700.3.14.1?upstream=valkey-8.0.7-150700.3.14.1.src.rpm"}}},{"category":"product_version","name":"valkey-9.0.3-1.1","product":{"name":"valkey-9.0.3-1.1","product_id":"valkey-9.0.3-1.1","product_identification_helper":{"purl":"pkg:rpm/suse/valkey@9.0.3-1.1?upstream=valkey-9.0.3-1.1.src.rpm"}}},{"category":"product_version","name":"valkey-compat-redis","product":{"name":"valkey-compat-redis","product_id":"valkey-compat-redis","product_identification_helper":{"purl":"pkg:rpm/suse/valkey-compat-redis@?upstream=valkey.src.rpm"}}},{"category":"product_version","name":"valkey-compat-redis-8.0.7-150600.13.20.1","product":{"name":"valkey-compat-redis-8.0.7-150600.13.20.1","product_id":"valkey-compat-redis-8.0.7-150600.13.20.1","product_identification_helper":{"purl":"pkg:rpm/suse/valkey-compat-redis@8.0.7-150600.13.20.1?upstream=valkey-8.0.7-150600.13.20.1.src.rpm"}}},{"category":"product_version","name":"valkey-compat-redis-8.0.7-150700.3.14.1","product":{"name":"valkey-compat-redis-8.0.7-150700.3.14.1","product_id":"valkey-compat-redis-8.0.7-150700.3.14.1","product_identification_helper":{"purl":"pkg:rpm/suse/valkey-compat-redis@8.0.7-150700.3.14.1?upstream=valkey-8.0.7-150700.3.14.1.src.rpm"}}},{"category":"product_version","name":"valkey-compat-redis-9.0.3-1.1","product":{"name":"valkey-compat-redis-9.0.3-1.1","product_id":"valkey-compat-redis-9.0.3-1.1","product_identification_helper":{"purl":"pkg:rpm/suse/valkey-compat-redis@9.0.3-1.1?upstream=valkey-9.0.3-1.1.src.rpm"}}},{"category":"product_version","name":"valkey-devel","product":{"name":"valkey-devel","product_id":"valkey-devel","product_identification_helper":{"purl":"pkg:rpm/suse/valkey-devel@?upstream=valkey.src.rpm"}}},{"category":"product_version","name":"valkey-devel-8.0.7-150600.13.20.1","product":{"name":"valkey-devel-8.0.7-150600.13.20.1","product_id":"valkey-devel-8.0.7-150600.13.20.1","product_identification_helper":{"purl":"pkg:rpm/suse/valkey-devel@8.0.7-150600.13.20.1?upstream=valkey-8.0.7-150600.13.20.1.src.rpm"}}},{"category":"product_version","name":"valkey-devel-8.0.7-150700.3.14.1","product":{"name":"valkey-devel-8.0.7-150700.3.14.1","product_id":"valkey-devel-8.0.7-150700.3.14.1","product_identification_helper":{"purl":"pkg:rpm/suse/valkey-devel@8.0.7-150700.3.14.1?upstream=valkey-8.0.7-150700.3.14.1.src.rpm"}}},{"category":"product_version","name":"valkey-devel-9.0.3-1.1","product":{"name":"valkey-devel-9.0.3-1.1","product_id":"valkey-devel-9.0.3-1.1","product_identification_helper":{"purl":"pkg:rpm/suse/valkey-devel@9.0.3-1.1?upstream=valkey-9.0.3-1.1.src.rpm"}}}],"category":"product_family","name":"SUSE Linux Enterprise"}],"category":"vendor","name":"SUSE"}],"relationships":[{"category":"default_component_of","full_product_name":{"name":"valkey-8.0.7-150700.3.14.1 as component of SUSE Linux Enterprise Server 15 SP7","product_id":"SUSE Linux Enterprise Server 15 SP7:valkey-8.0.7-150700.3.14.1"},"product_reference":"valkey-8.0.7-150700.3.14.1","relates_to_product_reference":"SUSE Linux Enterprise Server 15 SP7"},{"category":"default_component_of","full_product_name":{"name":"valkey-compat-redis-8.0.7-150700.3.14.1 as component of SUSE Linux Enterprise Server 15 SP7","product_id":"SUSE Linux Enterprise Server 15 SP7:valkey-compat-redis-8.0.7-150700.3.14.1"},"product_reference":"valkey-compat-redis-8.0.7-150700.3.14.1","relates_to_product_reference":"SUSE Linux Enterprise Server 15 SP7"},{"category":"default_component_of","full_product_name":{"name":"valkey-devel-8.0.7-150700.3.14.1 as component of SUSE Linux Enterprise Server 15 SP7","product_id":"SUSE Linux Enterprise Server 15 SP7:valkey-devel-8.0.7-150700.3.14.1"},"product_reference":"valkey-devel-8.0.7-150700.3.14.1","relates_to_product_reference":"SUSE Linux Enterprise Server 15 SP7"},{"category":"default_component_of","full_product_name":{"name":"valkey-8.0.7-150700.3.14.1 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP7","product_id":"SUSE Linux Enterprise Server for SAP Applications 15 SP7:valkey-8.0.7-150700.3.14.1"},"product_reference":"valkey-8.0.7-150700.3.14.1","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 15 SP7"},{"category":"default_component_of","full_product_name":{"name":"valkey-compat-redis-8.0.7-150700.3.14.1 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP7","product_id":"SUSE Linux Enterprise Server for SAP Applications 15 SP7:valkey-compat-redis-8.0.7-150700.3.14.1"},"product_reference":"valkey-compat-redis-8.0.7-150700.3.14.1","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 15 SP7"},{"category":"default_component_of","full_product_name":{"name":"valkey-devel-8.0.7-150700.3.14.1 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP7","product_id":"SUSE Linux Enterprise Server for SAP Applications 15 SP7:valkey-devel-8.0.7-150700.3.14.1"},"product_reference":"valkey-devel-8.0.7-150700.3.14.1","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 15 SP7"},{"category":"default_component_of","full_product_name":{"name":"valkey-8.0.7-150700.3.14.1 as component of SUSE Linux Enterprise High Performance Computing 15 SP7","product_id":"SUSE Linux Enterprise High Performance Computing 15 SP7:valkey-8.0.7-150700.3.14.1"},"product_reference":"valkey-8.0.7-150700.3.14.1","relates_to_product_reference":"SUSE Linux Enterprise High Performance Computing 15 SP7"},{"category":"default_component_of","full_product_name":{"name":"valkey-compat-redis-8.0.7-150700.3.14.1 as component of SUSE Linux Enterprise High Performance Computing 15 SP7","product_id":"SUSE Linux Enterprise High Performance Computing 15 SP7:valkey-compat-redis-8.0.7-150700.3.14.1"},"product_reference":"valkey-compat-redis-8.0.7-150700.3.14.1","relates_to_product_reference":"SUSE Linux Enterprise High Performance Computing 15 SP7"},{"category":"default_component_of","full_product_name":{"name":"valkey-devel-8.0.7-150700.3.14.1 as component of SUSE Linux Enterprise High Performance Computing 15 SP7","product_id":"SUSE Linux Enterprise High Performance Computing 15 SP7:valkey-devel-8.0.7-150700.3.14.1"},"product_reference":"valkey-devel-8.0.7-150700.3.14.1","relates_to_product_reference":"SUSE Linux Enterprise High Performance Computing 15 SP7"},{"category":"default_component_of","full_product_name":{"name":"valkey-8.0.7-150700.3.14.1 as component of SUSE Linux Enterprise Module for Server Applications 15 SP7","product_id":"SUSE Linux Enterprise Module for Server Applications 15 SP7:valkey-8.0.7-150700.3.14.1"},"product_reference":"valkey-8.0.7-150700.3.14.1","relates_to_product_reference":"SUSE Linux Enterprise Module for Server Applications 15 SP7"},{"category":"default_component_of","full_product_name":{"name":"valkey-compat-redis-8.0.7-150700.3.14.1 as component of SUSE Linux Enterprise Module for Server Applications 15 SP7","product_id":"SUSE Linux Enterprise Module for Server Applications 15 SP7:valkey-compat-redis-8.0.7-150700.3.14.1"},"product_reference":"valkey-compat-redis-8.0.7-150700.3.14.1","relates_to_product_reference":"SUSE Linux Enterprise Module for Server Applications 15 SP7"},{"category":"default_component_of","full_product_name":{"name":"valkey-devel-8.0.7-150700.3.14.1 as component of SUSE Linux Enterprise Module for Server Applications 15 SP7","product_id":"SUSE Linux Enterprise Module for Server Applications 15 SP7:valkey-devel-8.0.7-150700.3.14.1"},"product_reference":"valkey-devel-8.0.7-150700.3.14.1","relates_to_product_reference":"SUSE Linux Enterprise Module for Server Applications 15 SP7"},{"category":"default_component_of","full_product_name":{"name":"valkey-8.0.7-150600.13.20.1 as component of openSUSE Leap 15.6","product_id":"openSUSE Leap 15.6:valkey-8.0.7-150600.13.20.1"},"product_reference":"valkey-8.0.7-150600.13.20.1","relates_to_product_reference":"openSUSE Leap 15.6"},{"category":"default_component_of","full_product_name":{"name":"valkey-compat-redis-8.0.7-150600.13.20.1 as component of openSUSE Leap 15.6","product_id":"openSUSE Leap 15.6:valkey-compat-redis-8.0.7-150600.13.20.1"},"product_reference":"valkey-compat-redis-8.0.7-150600.13.20.1","relates_to_product_reference":"openSUSE Leap 15.6"},{"category":"default_component_of","full_product_name":{"name":"valkey-devel-8.0.7-150600.13.20.1 as component of openSUSE Leap 15.6","product_id":"openSUSE Leap 15.6:valkey-devel-8.0.7-150600.13.20.1"},"product_reference":"valkey-devel-8.0.7-150600.13.20.1","relates_to_product_reference":"openSUSE Leap 15.6"},{"category":"default_component_of","full_product_name":{"name":"valkey-9.0.3-1.1 as component of openSUSE Tumbleweed","product_id":"openSUSE Tumbleweed:valkey-9.0.3-1.1"},"product_reference":"valkey-9.0.3-1.1","relates_to_product_reference":"openSUSE Tumbleweed"},{"category":"default_component_of","full_product_name":{"name":"valkey-compat-redis-9.0.3-1.1 as component of openSUSE Tumbleweed","product_id":"openSUSE Tumbleweed:valkey-compat-redis-9.0.3-1.1"},"product_reference":"valkey-compat-redis-9.0.3-1.1","relates_to_product_reference":"openSUSE Tumbleweed"},{"category":"default_component_of","full_product_name":{"name":"valkey-devel-9.0.3-1.1 as component of openSUSE Tumbleweed","product_id":"openSUSE Tumbleweed:valkey-devel-9.0.3-1.1"},"product_reference":"valkey-devel-9.0.3-1.1","relates_to_product_reference":"openSUSE Tumbleweed"},{"category":"default_component_of","full_product_name":{"name":"valkey as component of SUSE Linux Enterprise Server 15 SP6-LTSS","product_id":"SUSE Linux Enterprise Server 15 SP6-LTSS:valkey"},"product_reference":"valkey","relates_to_product_reference":"SUSE Linux Enterprise Server 15 SP6-LTSS"},{"category":"default_component_of","full_product_name":{"name":"valkey-compat-redis as component of SUSE Linux Enterprise Server 15 SP6-LTSS","product_id":"SUSE Linux Enterprise Server 15 SP6-LTSS:valkey-compat-redis"},"product_reference":"valkey-compat-redis","relates_to_product_reference":"SUSE Linux Enterprise Server 15 SP6-LTSS"},{"category":"default_component_of","full_product_name":{"name":"valkey-devel as component of SUSE Linux Enterprise Server 15 SP6-LTSS","product_id":"SUSE Linux Enterprise Server 15 SP6-LTSS:valkey-devel"},"product_reference":"valkey-devel","relates_to_product_reference":"SUSE Linux Enterprise Server 15 SP6-LTSS"},{"category":"default_component_of","full_product_name":{"name":"valkey as component of SUSE Linux Enterprise Server 16.0","product_id":"SUSE Linux Enterprise Server 16.0:valkey"},"product_reference":"valkey","relates_to_product_reference":"SUSE Linux Enterprise Server 16.0"},{"category":"default_component_of","full_product_name":{"name":"valkey-compat-redis as component of SUSE Linux Enterprise Server 16.0","product_id":"SUSE Linux Enterprise Server 16.0:valkey-compat-redis"},"product_reference":"valkey-compat-redis","relates_to_product_reference":"SUSE Linux Enterprise Server 16.0"},{"category":"default_component_of","full_product_name":{"name":"valkey-devel as component of SUSE Linux Enterprise Server 16.0","product_id":"SUSE Linux Enterprise Server 16.0:valkey-devel"},"product_reference":"valkey-devel","relates_to_product_reference":"SUSE Linux Enterprise Server 16.0"},{"category":"default_component_of","full_product_name":{"name":"valkey as component of SUSE Linux Enterprise Server for SAP Applications 15 SP6","product_id":"SUSE Linux Enterprise Server for SAP Applications 15 SP6:valkey"},"product_reference":"valkey","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 15 SP6"},{"category":"default_component_of","full_product_name":{"name":"valkey-compat-redis as component of SUSE Linux Enterprise Server for SAP Applications 15 SP6","product_id":"SUSE Linux Enterprise Server for SAP Applications 15 SP6:valkey-compat-redis"},"product_reference":"valkey-compat-redis","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 15 SP6"},{"category":"default_component_of","full_product_name":{"name":"valkey-devel as component of SUSE Linux Enterprise Server for SAP Applications 15 SP6","product_id":"SUSE Linux Enterprise Server for SAP Applications 15 SP6:valkey-devel"},"product_reference":"valkey-devel","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 15 SP6"},{"category":"default_component_of","full_product_name":{"name":"valkey as component of SUSE Linux Enterprise Server for SAP applications 16.0","product_id":"SUSE Linux Enterprise Server for SAP applications 16.0:valkey"},"product_reference":"valkey","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP applications 16.0"},{"category":"default_component_of","full_product_name":{"name":"valkey-compat-redis as component of SUSE Linux Enterprise Server for SAP applications 16.0","product_id":"SUSE Linux Enterprise Server for SAP applications 16.0:valkey-compat-redis"},"product_reference":"valkey-compat-redis","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP applications 16.0"},{"category":"default_component_of","full_product_name":{"name":"valkey-devel as component of SUSE Linux Enterprise Server for SAP applications 16.0","product_id":"SUSE Linux Enterprise Server for SAP applications 16.0:valkey-devel"},"product_reference":"valkey-devel","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP applications 16.0"}]},"vulnerabilities":[{"cve":"CVE-2026-21863","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2026-21863"}],"notes":[{"category":"general","text":"Valkey is a distributed key-value database. Prior to versions 9.0.2, 8.1.6, 8.0.7, and 7.2.12, a malicious actor with access to the Valkey clusterbus port can send an invalid packet that may cause an out bound read, which might result in the system crashing. The Valkey clusterbus packet processing code does not validate that a clusterbus ping extension packet is located within buffer of the clusterbus packet before attempting to read it. Versions 9.0.2, 8.1.6, 8.0.7, and 7.2.12 fix the issue. As an additional mitigation, don't expose the cluster bus connection directly to end users, and protect the connection with its own network ACLs.","title":"CVE description"}],"product_status":{"known_affected":["SUSE Linux Enterprise Server 15 SP6-LTSS:valkey","SUSE Linux Enterprise Server 15 SP6-LTSS:valkey-compat-redis","SUSE Linux Enterprise Server 15 SP6-LTSS:valkey-devel","SUSE Linux Enterprise Server 16.0:valkey","SUSE Linux Enterprise Server 16.0:valkey-compat-redis","SUSE Linux Enterprise Server 16.0:valkey-devel","SUSE Linux Enterprise Server for SAP Applications 15 SP6:valkey","SUSE Linux Enterprise Server for SAP Applications 15 SP6:valkey-compat-redis","SUSE Linux Enterprise Server for SAP Applications 15 SP6:valkey-devel","SUSE Linux Enterprise Server for SAP applications 16.0:valkey","SUSE Linux Enterprise Server for SAP applications 16.0:valkey-compat-redis","SUSE Linux Enterprise Server for SAP applications 16.0:valkey-devel"],"recommended":["SUSE Linux Enterprise High Performance Computing 15 SP7:valkey-8.0.7-150700.3.14.1","SUSE Linux Enterprise High Performance Computing 15 SP7:valkey-compat-redis-8.0.7-150700.3.14.1","SUSE Linux Enterprise High Performance Computing 15 SP7:valkey-devel-8.0.7-150700.3.14.1","SUSE Linux Enterprise Module for Server Applications 15 SP7:valkey-8.0.7-150700.3.14.1","SUSE Linux Enterprise Module for Server Applications 15 SP7:valkey-compat-redis-8.0.7-150700.3.14.1","SUSE Linux Enterprise Module for Server Applications 15 SP7:valkey-devel-8.0.7-150700.3.14.1","SUSE Linux Enterprise Server 15 SP7:valkey-8.0.7-150700.3.14.1","SUSE Linux Enterprise Server 15 SP7:valkey-compat-redis-8.0.7-150700.3.14.1","SUSE Linux Enterprise Server 15 SP7:valkey-devel-8.0.7-150700.3.14.1","SUSE Linux Enterprise Server for SAP Applications 15 SP7:valkey-8.0.7-150700.3.14.1","SUSE Linux Enterprise Server for SAP Applications 15 SP7:valkey-compat-redis-8.0.7-150700.3.14.1","SUSE Linux Enterprise Server for SAP Applications 15 SP7:valkey-devel-8.0.7-150700.3.14.1","openSUSE Leap 15.6:valkey-8.0.7-150600.13.20.1","openSUSE Leap 15.6:valkey-compat-redis-8.0.7-150600.13.20.1","openSUSE Leap 15.6:valkey-devel-8.0.7-150600.13.20.1","openSUSE Tumbleweed:valkey-9.0.3-1.1","openSUSE Tumbleweed:valkey-compat-redis-9.0.3-1.1","openSUSE Tumbleweed:valkey-devel-9.0.3-1.1"]},"references":[{"category":"external","summary":"CVE-2026-21863","url":"https://www.suse.com/security/cve/CVE-2026-21863"},{"category":"external","summary":"SUSE Security Ratings","url":"https://www.suse.com/support/security/rating/"},{"category":"external","summary":"SUSE Bug 1258788 for CVE-2026-21863","url":"https://bugzilla.suse.com/1258788"},{"category":"external","summary":"Advisory link for SUSE-SU-2026:0685-1","url":"https://lists.suse.com/pipermail/sle-security-updates/2026-February/024491.html"},{"category":"external","summary":"Advisory link for SUSE-SU-2026:0848-1","url":"https://lists.suse.com/pipermail/sle-security-updates/2026-March/024650.html"}],"remediations":[{"category":"vendor_fix","details":"To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n","product_ids":["SUSE Linux Enterprise High Performance Computing 15 SP7:valkey-8.0.7-150700.3.14.1","SUSE Linux Enterprise High Performance Computing 15 SP7:valkey-compat-redis-8.0.7-150700.3.14.1","SUSE Linux Enterprise High Performance Computing 15 SP7:valkey-devel-8.0.7-150700.3.14.1","SUSE Linux Enterprise Module for Server Applications 15 SP7:valkey-8.0.7-150700.3.14.1","SUSE Linux Enterprise Module for Server Applications 15 SP7:valkey-compat-redis-8.0.7-150700.3.14.1","SUSE Linux Enterprise Module for Server Applications 15 SP7:valkey-devel-8.0.7-150700.3.14.1","SUSE Linux Enterprise Server 15 SP7:valkey-8.0.7-150700.3.14.1","SUSE Linux Enterprise Server 15 SP7:valkey-compat-redis-8.0.7-150700.3.14.1","SUSE Linux Enterprise Server 15 SP7:valkey-devel-8.0.7-150700.3.14.1","SUSE Linux Enterprise Server for SAP Applications 15 SP7:valkey-8.0.7-150700.3.14.1","SUSE Linux Enterprise Server for SAP Applications 15 SP7:valkey-compat-redis-8.0.7-150700.3.14.1","SUSE Linux Enterprise Server for SAP Applications 15 SP7:valkey-devel-8.0.7-150700.3.14.1","openSUSE Leap 15.6:valkey-8.0.7-150600.13.20.1","openSUSE Leap 15.6:valkey-compat-redis-8.0.7-150600.13.20.1","openSUSE Leap 15.6:valkey-devel-8.0.7-150600.13.20.1","openSUSE Tumbleweed:valkey-9.0.3-1.1","openSUSE Tumbleweed:valkey-compat-redis-9.0.3-1.1","openSUSE Tumbleweed:valkey-devel-9.0.3-1.1"]}],"scores":[{"cvss_v3":{"baseScore":6.5,"baseSeverity":"MEDIUM","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","version":"3.1"},"products":["SUSE Linux Enterprise High Performance Computing 15 SP7:valkey-8.0.7-150700.3.14.1","SUSE Linux Enterprise High Performance Computing 15 SP7:valkey-compat-redis-8.0.7-150700.3.14.1","SUSE Linux Enterprise High Performance Computing 15 SP7:valkey-devel-8.0.7-150700.3.14.1","SUSE Linux Enterprise Module for Server Applications 15 SP7:valkey-8.0.7-150700.3.14.1","SUSE Linux Enterprise Module for Server Applications 15 SP7:valkey-compat-redis-8.0.7-150700.3.14.1","SUSE Linux Enterprise Module for Server Applications 15 SP7:valkey-devel-8.0.7-150700.3.14.1","SUSE Linux Enterprise Server 15 SP7:valkey-8.0.7-150700.3.14.1","SUSE Linux Enterprise Server 15 SP7:valkey-compat-redis-8.0.7-150700.3.14.1","SUSE Linux Enterprise Server 15 SP7:valkey-devel-8.0.7-150700.3.14.1","SUSE Linux Enterprise Server for SAP Applications 15 SP7:valkey-8.0.7-150700.3.14.1","SUSE Linux Enterprise Server for SAP Applications 15 SP7:valkey-compat-redis-8.0.7-150700.3.14.1","SUSE Linux Enterprise Server for SAP Applications 15 SP7:valkey-devel-8.0.7-150700.3.14.1","openSUSE Leap 15.6:valkey-8.0.7-150600.13.20.1","openSUSE Leap 15.6:valkey-compat-redis-8.0.7-150600.13.20.1","openSUSE Leap 15.6:valkey-devel-8.0.7-150600.13.20.1","openSUSE Tumbleweed:valkey-9.0.3-1.1","openSUSE Tumbleweed:valkey-compat-redis-9.0.3-1.1","openSUSE Tumbleweed:valkey-devel-9.0.3-1.1"]}],"threats":[{"category":"impact","date":"2026-02-23T21:04:58Z","details":"moderate"}],"title":"CVE-2026-21863"}]}