Portworx Data Services (PDS) is our managed SaaS platform that makes it simple to deploy, scale, protect, and self-serve data services on Kubernetes—covering a broad catalog from Kafka and PostgreSQL to Redis, MongoDB, and more.
Below is a summary of what’s new in the PDS 25.11.01 release.
Fixed in Release
-
DS-15915: Redis vulnerability resolved
-
When scripting is enabled in Redis it utilizes the embedded Lua scripting engine. Malicious Lua script execution might lead to remote code execution, as detailed in CVE-2025-49844.
-
For Redis 7.2.x, PDS now provides upgrade to Redis 7.2.11 build that includes the security fix for CVE-2025-49844.
-
For Redis 7.0.x, PDS now will mitigate CVE-2025-49844 by disabling Lua scripting via redis.conf on all nodes (masters and replicas) by blocking the LUA commands.
-
Available now in the PDS SaaS at https://cloud.portworx.io/ .
-
Learn more
-
Release notes ( 25.11.01 ): Full details, dates, and issue tracking.
-
PDS docs home: Concepts, supported services, getting started, and how-to guides.