[Buildroot] [PATCH 1/1] package/redis: bump to v7.0.3
Peter Korsgaard
peter at korsgaard.com
Wed Aug 10 10:37:16 UTC 2022
>>>>> "Titouan" == Titouan Christophe <titouanchristophe at gmail.com> writes:
> Signed-off-by: Titouan Christophe <titouanchristophe at gmail.com>
Committed to 2022.05.x given the fixes, thanks.
I see there is also a 7.0.4 release with security fixes, care to send a
patch?
================================================================================
Redis 7.0.4 Released Monday Jul 18 12:00:00 IST 2022
================================================================================
Upgrade urgency: SECURITY, contains fixes to security issues.
Security Fixes:
* (CVE-2022-31144) A specially crafted XAUTOCLAIM command on a stream
key in a specific state may result with heap overflow, and potentially
remote code execution. The problem affects Redis versions 7.0.0 or
newer.
--
Bye, Peter Korsgaard
More information about the buildroot
mailing list