Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <dispatch@tracker.debian.org> , <debian-lts-changes@lists.debian.org>
Subject: Accepted redis 3:3.2.6-3+deb9u8 (source amd64) into oldoldstable
Date: Fri, 05 Nov 2021 11:20:15 +0000
Signed by: Chris Lamb <lamby@debian.org>
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Fri, 05 Nov 2021 10:59:30 +0000
Source: redis
Binary: redis-sentinel redis-server redis-server-dbgsym redis-tools redis-tools-dbgsym
Built-For-Profiles: nocheck
Architecture: source amd64
Version: 3:3.2.6-3+deb9u8
Distribution: stretch-security
Urgency: high
Maintainer: Chris Lamb <lamby@debian.org>
Changed-By: Chris Lamb <lamby@debian.org>
Description:
 redis-sentinel - Persistent key-value database with network interface (monitoring)
 redis-server - Persistent key-value database with network interface
 redis-tools - Persistent key-value database with network interface (client)
Changes:
 redis (3:3.2.6-3+deb9u8) stretch-security; urgency=high
 .
   * CVE-2021-41099: Integer to heap buffer overflow handling certain string
     commands and network payloads, when proto-max-bulk-len is manually
     configured to a non-default, very large value.
   * CVE-2021-32762: Integer to heap buffer overflow issue in redis-cli and
     redis-sentinel parsing large multi-bulk replies on some older and less
     common platforms.
   * CVE-2021-32687: Integer to heap buffer overflow with intsets, when
     set-max-intset-entries is manually configured to a non-default, very
     large value.
   * CVE-2021-32675: Denial Of Service when processing RESP request payloads
     with a large number of elements on many connections.
   * CVE-2021-32672: Random heap reading issue with Lua Debugger.
   * CVE-2021-32626: Specially crafted Lua scripts may result with Heap
     buffer overflow.
Checksums-Sha1:
 0d9f9bd9a5f0129816ccbf0de496d627c5035315 2013 redis_3.2.6-3+deb9u8.dsc
 0c7bc5c751bdbc6fabed178db9cdbdd948915d1b 1544806 redis_3.2.6.orig.tar.gz
 fb673b48d881ff97506b5d4db68d6351a1cd2094 46072 redis_3.2.6-3+deb9u8.debian.tar.xz
 7ee4ce111cc2db3e23e1b122723a72e449eab604 19140 redis-sentinel_3.2.6-3+deb9u8_amd64.deb
 ce3d974630cbb492f196545fcd39ba94bcc4338d 1333416 redis-server-dbgsym_3.2.6-3+deb9u8_amd64.deb
 ac3704a4b3e4f576352c5f515c26ae44fbbc5ca0 436064 redis-server_3.2.6-3+deb9u8_amd64.deb
 66185bdcb0a12e23bbe612f9f755b9f8f0113491 1607188 redis-tools-dbgsym_3.2.6-3+deb9u8_amd64.deb
 97dd19e276a2a9aaad8139fc69d4887307ee5e54 490772 redis-tools_3.2.6-3+deb9u8_amd64.deb
 47653978748980cc7c68d6247573fab860b5b979 7184 redis_3.2.6-3+deb9u8_amd64.buildinfo
Checksums-Sha256:
 bd6b88dc8ecd2c02a8658dbd374680d5dfc689edec6ec36dceb132212517c526 2013 redis_3.2.6-3+deb9u8.dsc
 2e1831c5a315e400d72bda4beaa98c0cfbe3f4eb8b20c269371634390cf729fa 1544806 redis_3.2.6.orig.tar.gz
 612074354b1a052860fef7a6357e75321e7ca2898e47023a49d92b3fe830b2cb 46072 redis_3.2.6-3+deb9u8.debian.tar.xz
 94d542c1883a2dd1464738062f9757fa1cecd311ef93747455bd0a0f26f45e4a 19140 redis-sentinel_3.2.6-3+deb9u8_amd64.deb
 121378edab0b9759a9285755a36a5934f73a7b78b468bccc7f696df566a8749f 1333416 redis-server-dbgsym_3.2.6-3+deb9u8_amd64.deb
 202769de308282f43c06d8be350ab4304d118874d95934af0cb62d44b930141e 436064 redis-server_3.2.6-3+deb9u8_amd64.deb
 a5d0191dda5295e32449411264355b5664f0171c1bdab91ef30c272e26c1a7ac 1607188 redis-tools-dbgsym_3.2.6-3+deb9u8_amd64.deb
 e7d29d0bf72858d2117e5c068ec032180a1b6431e1ffd4203d81c1171b565007 490772 redis-tools_3.2.6-3+deb9u8_amd64.deb
 855488ec1f35181b8b5748bbb12cc09ae963bcc746782bfa98235896b9f455ca 7184 redis_3.2.6-3+deb9u8_amd64.buildinfo
Files:
 171edfc1ec48d72efe175425ff51566d 2013 database optional redis_3.2.6-3+deb9u8.dsc
 d0e81d1e19f673fd84d01784bf9fb5f0 1544806 database optional redis_3.2.6.orig.tar.gz
 52fd1773b9b8a50476ac93b486ec133e 46072 database optional redis_3.2.6-3+deb9u8.debian.tar.xz
 e881033cf20cea5d5f7705ac65188963 19140 database optional redis-sentinel_3.2.6-3+deb9u8_amd64.deb
 fa09dd992761c7638781c90836277525 1333416 debug optional redis-server-dbgsym_3.2.6-3+deb9u8_amd64.deb
 cb560fc95990e7bab3c6fc10deb75c3b 436064 database optional redis-server_3.2.6-3+deb9u8_amd64.deb
 08407deab942861616d29c5bc79404d6 1607188 debug optional redis-tools-dbgsym_3.2.6-3+deb9u8_amd64.deb
 b47c0d8722f495d9509f1a3be0e0948e 490772 database optional redis-tools_3.2.6-3+deb9u8_amd64.deb
 217a7cee6d3e99bf216da1374fb0df93 7184 database optional redis_3.2.6-3+deb9u8_amd64.buildinfo

-----BEGIN PGP SIGNATURE-----
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=6hTE
-----END PGP SIGNATURE-----
News for package redis
