projects / buildroot.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 728d680) | patch
package/redis: bump to 5.0.6
authorTitouan Christophe <titouan.christophe@railnova.eu>
Mon, 18 Nov 2019 15:22:16 +0000 (16:22 +0100)
committerThomas Petazzoni <thomas.petazzoni@bootlin.com>
Mon, 18 Nov 2019 20:20:28 +0000 (21:20 +0100)
commit43683d2d9bf2cf3117033d25bd9b2c7d0328e4ab
tree0ee40a6471c48b7f41fa8407bdf948c03f798ff5tree
parent728d6800bb0af0fcbd66db701412b1ad0572a5dccommit | diff
package/redis: bump to 5.0.6

The release notes at
https://raw.githubusercontent.com/antirez/redis/5.0/00-RELEASENOTES
say:

==
Upgrade urgency CRITICAL: Only in case of exposed instances to untrusted users.

This Redis release, 5.0.6, is a bugfix and enhancement release. The most
important bugfix is a corruption related to the HyperLogLog. A malformed
HyperLogLog string could cause an invalid access to the memory. At a first
glance the vulnerability appears to be not exploitable but just a DoS. The
way to trigger the issue is complex, we'll not provide any information about
how to do that for the users safety.
==

Signed-off-by: Titouan Christophe <titouan.christophe@railnova.eu>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
package/redis/redis.hash diff | blob | history
package/redis/redis.mk diff | blob | history