projects / buildroot.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 158bacb) | patch
package/redis: security bump to v6.2.5
authorTitouan Christophe <titouanchristophe@gmail.com>
Mon, 26 Jul 2021 09:16:35 +0000 (11:16 +0200)
committerThomas Petazzoni <thomas.petazzoni@bootlin.com>
Mon, 26 Jul 2021 20:08:43 +0000 (22:08 +0200)
commitf4b1cda06131931d713d33723355f71e4036b73d
tree6fd9ba51e9df4376553f9834a2071b0d8b318b07tree
parent158bacbfe6fcc5bb6caffc7bceb78030790d62c9commit | diff
package/redis: security bump to v6.2.5

From the release notes:
================================================================================
Redis 6.2.5 Released Wed Jul 21 16:32:19 IDT 2021
================================================================================

Upgrade urgency: SECURITY, contains fixes to security issues that affect
authenticated client connections on 32-bit versions. MODERATE otherwise.

Fix integer overflow in BITFIELD on 32-bit versions (CVE-2021-32761).
An integer overflow bug in Redis version 2.2 or newer can be exploited using the
BITFIELD command to corrupt the heap and potentially result with remote code
execution.

See https://github.com/redis/redis/blob/6.2.5/00-RELEASENOTES

Signed-off-by: Titouan Christophe <titouanchristophe@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
package/redis/redis.hash diff | blob | history
package/redis/redis.mk diff | blob | history