-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Sun, 22 Jan 2023 08:46:14 -0800 Source: redis Built-For-Profiles: nocheck Architecture: source Version: 5:7.0.8-1 Distribution: unstable Urgency: high Maintainer: Chris Lamb <lamby@debian.org> Changed-By: Chris Lamb <lamby@debian.org> Closes: 1029363 Changes: redis (5:7.0.8-1) unstable; urgency=high . * New upstream release. <https://raw.githubusercontent.com/redis/redis/7.0/00-RELEASENOTES> * CVE-2023-22458: Integer overflow in the Redis HRANDFIELD and ZRANDMEMBER commands may have led to denial-of-service. (Closes: #1029363) * CVE-2022-35977: Integer overflow in the Redis SETRANGE and SORT/SORT_RO commands could have driven Redis to an OOM panic. Checksums-Sha1: 501ced9c26d9fb7d61853a8166cf8f53b9b3f4ce 2266 redis_7.0.8-1.dsc 28a8a6d32b4792ec75e2ed55035d95de8d866ae6 3011655 redis_7.0.8.orig.tar.gz 8bdcc230760c65fc5e88edcaaec0cb737a97d64c 27824 redis_7.0.8-1.debian.tar.xz f43aa43e478d6e5b7afff7cd3766a0752ea7d152 7443 redis_7.0.8-1_amd64.buildinfo Checksums-Sha256: 12630706520a3b0d03ac42a0cdca6018e27032400b83ff22e620f8ecb4a68b34 2266 redis_7.0.8-1.dsc 0e439cbc19f6db5a4c63d355519ab73bf6ac2ecd47df806c14b19564b3d0c593 3011655 redis_7.0.8.orig.tar.gz 1002dc1f4ec733d92572ad03bbd2c4963685c7d05030aa4ccf4b8364f7da4220 27824 redis_7.0.8-1.debian.tar.xz a7be6c429fa88398105b332a410762a095888a7771e3d9ead68c0de13b5ba1e5 7443 redis_7.0.8-1_amd64.buildinfo Files: 85b19bfb6e0944e42196c8729fa4dcdd 2266 database optional redis_7.0.8-1.dsc 42a3b0cf3adb871daaed32a59e51f573 3011655 database optional redis_7.0.8.orig.tar.gz 94aa73f3004cbeda760fcc2cdef9ab68 27824 database optional redis_7.0.8-1.debian.tar.xz b0f77b7c06fe296be08397a745d08a3d 7443 database optional redis_7.0.8-1_amd64.buildinfo -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEEwv5L0nHBObhsUz5GHpU+J9QxHlgFAmPNaQUACgkQHpU+J9Qx HlgZqw//Ud/bOzpEQhs/eAjcSLtKZsphNJkY/4FtUg6m8Hk3TgNwu4bx7BfaWqCV lpPUWWrbBSnMDqbt2vW0RZUSoVXC6dPtNYQT7cnfRpSr2c47sI4zz+AxmOjvzCSv Y4KI7YA1IwREPOLeUZRaNryNME3TqjQgXSLTQYmOkLlf1mJHh/VvfzL/HXCA1Iu4 YlsNs17GPo6jDzKJQ/xHHwdpLO6X6bDvWyhm9Hhd0DCebIug5GCktm44DanVHHJu FXxhBma8weNQuLTVmlG95pGwgxORZtbMI/XBuuJwS6ESV8oKHbT3SfDna4kz6gCj NfQ4ZUOP1bSzbB/V0OEq2c3R8Q4mkSOZvU6txsfIQ8IF1XTi6/bCiFyjugdyYHAc UHKQBiHlMZQZm7GJuD6J4FuKu9b0PS3mo3XcrAL6u6lCSMlkJ0xx0lcBzeZjuk7I ZFSvEMBlFkn7TdjsRyULu0nXE1CbTCvpoDIMxMQLmR6gOn59bJ2+MNQAAzfYHUYT UvjVOjjLO9Lkh66WolAOqex8nyIcCcVS2flN9mqfY2aSnqIsd/HOtsnNzbANONLf 2D5m9FHx6m2B7obXC+zG2ill6WuKW/z6jhg1S0KPXPg0pmQd6Vg8/HFKSRl9WGf5 5zJVvZPUQWPPGsqb1CB6yxKKlJh6EuDV0cjRwAnFkZdJCMoD5dA= =Nehr -----END PGP SIGNATURE-----
