Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <debian-devel-changes@lists.debian.org> , <debian-experimental-changes@lists.debian.org>
Subject: Accepted redis 5:8.6.3-1 (source) into experimental
Date: Wed, 13 May 2026 18:33:42 +0000
Signed by: Chris Lamb <lamby@debian.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 13 May 2026 11:17:08 -0700
Source: redis
Built-For-Profiles: nocheck
Architecture: source
Version: 5:8.6.3-1
Distribution: experimental
Urgency: high
Maintainer: Chris Lamb <lamby@debian.org>
Changed-By: Chris Lamb <lamby@debian.org>
Changes:
 redis (5:8.6.3-1) experimental; urgency=high
 .
   * New upstream security release:
 .
     - CVE-2026-23479: Use-After-Free in unblock client flow may lead to Remote
       Code Execution.
     - CVE-2026-25243: Invalid memory access in RESTORE may lead to Remote Code
       Execution.
     - CVE-2026-23631: Lua Use-After-Free may lead to remote code execution.
     - CVE-2026-25588: Invalid memory access in RESTORE may lead to Remote Code
       Execution (Time Series).
     - CVE-2026-25589: Invalid memory access in RESTORE may lead to Remote Code
       Execution (Probabilistic).
 .
     Full release notes: <https://github.com/redis/redis/releases/tag/8.6.3>
   * Bump Standards-Version to 4.7.4.
Checksums-Sha1:
 79ff18a78ed773e0c94f8000ec98bff446fe65be 2228 redis_8.6.3-1.dsc
 6187b6b0e62284c4d8109cd133cd5b4c2082aeb0 4303046 redis_8.6.3.orig.tar.gz
 61355c41527bba58bfc1e04c0d47577a05a1741a 30540 redis_8.6.3-1.debian.tar.xz
 0dc6820bc90c7972668d4e4ab936847218513f94 7277 redis_8.6.3-1_amd64.buildinfo
Checksums-Sha256:
 78ffcf052d82ae1ae9ef8fccc7af638e407e536d2604886fd0cc75f770bc1d33 2228 redis_8.6.3-1.dsc
 58d0d1eb49a1ea6c2179659707fec171b1e2e2b8d5157ed2ec59d1d66ad5a654 4303046 redis_8.6.3.orig.tar.gz
 9630f94c5fd0dd15ba7c2b31c32f364b09246a591d3a12bea55355c780d9e590 30540 redis_8.6.3-1.debian.tar.xz
 355867daef7738541890fe8f6573b76264150a28b1fe074f45dd97f27960a84b 7277 redis_8.6.3-1_amd64.buildinfo
Files:
 924eb2d80db30451a71d8c29fc2a8d72 2228 database optional redis_8.6.3-1.dsc
 93ac83a5b8c1e0570270e1d960278fca 4303046 database optional redis_8.6.3.orig.tar.gz
 bb1db6d13e47ef8b0698b3434218f53a 30540 database optional redis_8.6.3-1.debian.tar.xz
 999b75a6f52d5fef4ba648aa7473bfa0 7277 database optional redis_8.6.3-1_amd64.buildinfo

-----BEGIN PGP SIGNATURE-----
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=BIN7
-----END PGP SIGNATURE-----

News for package redis