Skip to content

valkey

Caching

A high‑performance key/value data structure server forked from Redis

Track releases GitHub Website
C Latest 8.1.8 · 1d ago Security brief →

Features

  • Supports native data structures (strings, hashes, lists, sets, sorted sets)
  • Extensible plugin system for custom data types and access patterns
  • Runs on Linux, macOS, OpenBSD, NetBSD, FreeBSD with both big‑endian/little‑endian and 32/64‑bit architectures

Recent releases

View all 12 releases →
Upgrade now
8.1.8 Bug fix

ACL LOAD use‑after‑free fix

Open
Review required
9.1.0 Mixed

Security fixes + bug fixes

Open
7.2.13 Security relevant
Security fixes
  • CVE-2026-23479 — Use‑After‑Free in unblock client flow
  • CVE-2026-25243 — Invalid Memory Access in RESTORE command
  • CVE-2026-23631 — Use‑after‑free when full sync occurs during a yielding Lua/function execution
Full changelog

Upgrade urgency SECURITY: This release includes security fixes we recommend you
apply as soon as possible.

Security fixes

  • (CVE-2026-23479) Use-After-Free in unblock client flow
  • (CVE-2026-25243) Invalid Memory Access in RESTORE command
  • (CVE-2026-23631) Use-after-free when full sync occurs during a yielding Lua/function execution
View release on GitHub
8.0.8 Security relevant
Security fixes
  • CVE-2026-23479 – Use‑After‑Free in unblock client flow
  • CVE-2026-25243 – Invalid Memory Access in RESTORE command
  • CVE-2026-23631 – Use‑after‑free when full sync occurs during yielding Lua/function execution
Full changelog

Upgrade urgency SECURITY: This release includes security fixes we recommend you
apply as soon as possible.

Security fixes

  • (CVE-2026-23479) Use-After-Free in unblock client flow
  • (CVE-2026-25243) Invalid Memory Access in RESTORE command
  • (CVE-2026-23631) Use-after-free when full sync occurs during a yielding Lua/function execution
View release on GitHub
8.1.7 Security relevant
Security fixes
  • CVE-2026-23479 — Use-After-Free in unblock client flow
  • CVE-2026-25243 — Invalid Memory Access in RESTORE command
  • CVE-2026-23631 — Use-after-free when full sync occurs during yielding Lua/function execution
Full changelog

Upgrade urgency SECURITY: This release includes security fixes we recommend you
apply as soon as possible.

Security fixes

  • (CVE-2026-23479) Use-After-Free in unblock client flow
  • (CVE-2026-25243) Invalid Memory Access in RESTORE command
  • (CVE-2026-23631) Use-after-free when full sync occurs during a yielding Lua/function execution
View release on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

About

Stars
26,000
Forks
1,164
Languages
C Tcl C++
View on GitHub Homepage Documentation

Install & Platforms

Platforms
linux macos

Similar tools

kvrocks
redis
dragonfly
rocksdb
BetterDB-inc/monitor

Beta — feedback welcome: [email protected]