Format: 1.8
Date: Wed, 12 Jul 2023 10:07:09 +0100
Source: redis
Binary: redis-sentinel redis-server redis-tools
Built-For-Profiles: noudeb
Architecture: ppc64el
Version: 5:7.0.12-1
Distribution: mantic-proposed
Urgency: high
Maintainer: Launchpad Build Daemon <buildd@bos02-ppc64el-004.buildd>
Changed-By: Chris Lamb <lamby@debian.org>
Description:
 redis-sentinel - Persistent key-value database with network interface (monitoring)
 redis-server - Persistent key-value database with network interface
 redis-tools - Persistent key-value database with network interface (client)
Closes: 1040879
Changes:
 redis (5:7.0.12-1) unstable; urgency=high
 .
   * New upstream security release:
 .
     - CVE-2022-24834: A specially-crafted Lua script executing in Redis could
       have triggered a heap overflow in the cjson and cmsgpack libraries and
       result in heap corruption and potentially remote code execution. The
       problem exists in all versions of Redis with Lua scripting support and
       affects only authenticated/authorised users.
 .
     - CVE-2023-36824: Extracting key names from a command and a list of
       arguments may, in some cases, have triggered a heap overflow and result
       in reading random heap memory, heap corruption and potentially remote
       code execution. (Specifically using COMMAND GETKEYS* and validation of
       key names in ACL rules). (Closes: #1040879)
 .
     For more information, please see:
 .
       <https://raw.githubusercontent.com/redis/redis/7.0/00-RELEASENOTES>
Checksums-Sha1:
 28cb0c3c7eedf668dbe3f59f554018b374e1070d 12242 redis-sentinel_7.0.12-1_ppc64el.deb
 89d124782e0c9eee0dd0547a7b00c94354ee5463 51692 redis-server_7.0.12-1_ppc64el.deb
 ac9451a3d676c3abe87040b848bff2ee721f420b 4052718 redis-tools-dbgsym_7.0.12-1_ppc64el.ddeb
 1bb9a31445f1b1d7db0ac29021e8665da9dfb3de 1414212 redis-tools_7.0.12-1_ppc64el.deb
 94753377a81f6f152e11ec8159010fc30ee0792c 7221 redis_7.0.12-1_ppc64el.buildinfo
Checksums-Sha256:
 208532653d5d38e940bde2d394b08af1c689adeefd16ac37a1f46db8ce9ffa57 12242 redis-sentinel_7.0.12-1_ppc64el.deb
 e71ca3b30f02ecc661ab55dbdb6a827e2bc4de6a2282b608ab4b366eae142e84 51692 redis-server_7.0.12-1_ppc64el.deb
 790853af56154ebfe7a90bbf0dbdcca8519a8edc57ddbea29ad85323db72c528 4052718 redis-tools-dbgsym_7.0.12-1_ppc64el.ddeb
 1b08423fac94b55c83f34f4e2031e056b695ec1e7cf14721afc3247fb2f46a9c 1414212 redis-tools_7.0.12-1_ppc64el.deb
 4b5a6b4e568b40f9ba82d5daf591396dca18e3e8d87522f9861ccd288eee037f 7221 redis_7.0.12-1_ppc64el.buildinfo
Files:
 8452c5021f15459bd587c751dbc410b7 12242 database optional redis-sentinel_7.0.12-1_ppc64el.deb
 f2d63209ed8ac236b6405c296c8d15ed 51692 database optional redis-server_7.0.12-1_ppc64el.deb
 187cf25ba711bc91b1c973b057e719b4 4052718 debug optional redis-tools-dbgsym_7.0.12-1_ppc64el.ddeb
 4533e9ea845066568aed90141869903d 1414212 database optional redis-tools_7.0.12-1_ppc64el.deb
 1bad65fb39505618cf906e87d4aadc04 7221 database optional redis_7.0.12-1_ppc64el.buildinfo