patchletter

The current version of Redis is 8.8.0 (as of 25/05/2026).

Redis

Redis Ltd. · current 8.8.0

Actively exploited vulnerabilities

The US cybersecurity agency CISA lists this vulnerability in its catalog of Known Exploited Vulnerabilities. Check your version and patch or mitigate promptly.

  • CVE-2022-0543Debian-specific Redis Server Lua Sandbox Escape Vulnerability

Source: CISA KEV. The CVE is matched to the product automatically — when in doubt, the linked NVD entry applies.

Redis at a glance

Redis is a widely used in-memory data store — cache, message broker and more, often performance-critical. Redis ships regular releases; following a licensing change, the community fork Valkey is a compatible alternative many teams evaluate in parallel.

For admins the cardinal rule: never expose Redis to the internet unprotected — an open instance is a data leak (and has been abused for takeover), even when patched. Enable authentication and TLS, and bind it to the internal network. Updates are low-risk with replication (update the replica, then fail over). The RDB/AOF data format is stable. For larger security advisories, patch promptly. Check the changelogs for changed defaults on major jumps. Track the version and its support status; consider Valkey if the license or governance matters to you.

Release history · as detected by patchletter

VersionChannelDateNotes
8.8.0STABLE25/05/2026Release notes →

Never miss a Redis update

We check the source daily and email you — instantly or as a digest. Free, one-click unsubscribe.

Watch Redis

Related tools in Servers & Databases