Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <debian-experimental-changes@lists.debian.org> , <debian-devel-changes@lists.debian.org>
Subject: Accepted redis 5:7.2.2-1 (source) into experimental
Date: Thu, 19 Oct 2023 15:21:16 +0000
Signed by: Chris Lamb <lamby@debian.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Thu, 19 Oct 2023 15:59:56 +0100
Source: redis
Built-For-Profiles: nocheck
Architecture: source
Version: 5:7.2.2-1
Distribution: experimental
Urgency: high
Maintainer: Chris Lamb <lamby@debian.org>
Changed-By: Chris Lamb <lamby@debian.org>
Closes: 1054225
Changes:
 redis (5:7.2.2-1) experimental; urgency=high
 .
   * New upstream security release:
 .
     - CVE-2023-45145: On startup, Redis began listening on a Unix socket before
       adjusting its permissions to the user-provided configuration. If a
       permissive umask(2) was used, this created a race condition that enabled,
       during a short period of time, another process to establish an otherwise
       unauthorized connection. (Closes: #1054225)
 .
   * Refresh patches.
Checksums-Sha1:
 e2fb861f3d0e94db24eb23d71e922595c438dfea 2231 redis_7.2.2-1.dsc
 d6b120d1a9f8aa9067fa7257fa45520d826b6feb 3422479 redis_7.2.2.orig.tar.gz
 0654275f21ea19098d5994e08313f44e165dc16c 28840 redis_7.2.2-1.debian.tar.xz
 1378e261f6fa6830b2f54974fda4749ee3f8e707 7478 redis_7.2.2-1_amd64.buildinfo
Checksums-Sha256:
 961f822945bba51a9a3b9eb99d11a18df0dac241f1d3746d29b7cd7629b86329 2231 redis_7.2.2-1.dsc
 0eca4e7aa16f5f411242a2e082863dbb266c0263141fdfd571302b02adf62594 3422479 redis_7.2.2.orig.tar.gz
 f44c8c92a04edf7eb7ef2a786f4e2efa3881948ad546af5e6c37b99c573417ba 28840 redis_7.2.2-1.debian.tar.xz
 d8894c920db0fdd140f64ae9d1b91e996216bde3a494d8060a64d89f63fdb81a 7478 redis_7.2.2-1_amd64.buildinfo
Files:
 954e730844f3f7f91d5b8d17bb2eced8 2231 database optional redis_7.2.2-1.dsc
 ef1793d5f9c4b9b33b05d66d57a9c07e 3422479 database optional redis_7.2.2.orig.tar.gz
 f8e6ae8ab301285cd9083134e638ec9b 28840 database optional redis_7.2.2-1.debian.tar.xz
 48ab8f8e0ae4dd2b8fca00af313cfd67 7478 database optional redis_7.2.2-1_amd64.buildinfo

-----BEGIN PGP SIGNATURE-----
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=XqaQ
-----END PGP SIGNATURE-----

News for package redis