Path to this page:
Subject: CVS commit: pkgsrc/databases/redis
From: Adam Ciarcinski
Date: 2024-01-10 09:26:42
Message id: 20240110082642.AF68DFA42@cvs.NetBSD.org
Log Message:
redis: updated to 7.2.4
Redis 7.2.4
Upgrade urgency SECURITY: See security fixes below.
Security fixes
* (CVE-2023-41056) In some cases, Redis may incorrectly handle resizing of memory
buffers which can result in incorrect accounting of buffer sizes and lead to
heap overflow and potential remote code execution.
Bug fixes
* Fix crashes of cluster commands clusters with mixed versions of 7.0 and 7.2
* Fix slot ownership not being properly handled when deleting a slot from a node
* Fix atomicity issues with the RedisModuleEvent_Key module API event
Files: