-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Mon, 13 Jul 2026 13:01:48 -0700 Source: redis Architecture: source Version: 5:7.0.15-1~deb12u8 Distribution: bookworm-security Urgency: high Maintainer: Chris Lamb <lamby@debian.org> Changed-By: Chris Lamb <lamby@debian.org> Changes: redis (5:7.0.15-1~deb12u8) bookworm-security; urgency=high . * Non-maintainer upload by the Debian LTS team. * CVE-2026-23631: An authenticated attacker could have exploited the master-replica synchronization mechanism to trigger a use-after-free on replicas where "replica-read-only" is disabled (or could be disabled), which may have led to remote code execution. Installations that prevent users from executing Lua scripts were unaffected. * CVE-2026-25243: The RESTORE command did not properly validate serialized values. An authenticated attacker with permission to execute RESTORE could have suppled a crafted serialized payload that triggers invalid memory access and this could have led to remote code execution. Checksums-Sha1: 14946e090843c59e26e6f27ac98273f056bc30bc 2305 redis_7.0.15-1~deb12u8.dsc b5d51660215a5402d146b8ec045ae712a14783de 3025940 redis_7.0.15.orig.tar.gz 271eb92ee849849a361b95a1377dd1be06c9fd1c 49096 redis_7.0.15-1~deb12u8.debian.tar.xz 6e3c0199efe248eb8bb21359f08b5b2bee06ca3f 6071 redis_7.0.15-1~deb12u8_source.buildinfo Checksums-Sha256: 5dde73d3feb53e572c60bfab9187b994f8dbdf31e82fd6ec942b163b0fe9c3ab 2305 redis_7.0.15-1~deb12u8.dsc 4b1dc4ee6d622a09fff9c6777191209750fb5e5a725ef78ea012d6eef4c22982 3025940 redis_7.0.15.orig.tar.gz 7b2dd52b82a80bbd3bcf0cb0a51e610efb8b1582416a941c7066331ec7c81435 49096 redis_7.0.15-1~deb12u8.debian.tar.xz 7165a835dc2d5c54441784c380a54e221689f1a6246589c0d2b09b4184256ff8 6071 redis_7.0.15-1~deb12u8_source.buildinfo Files: a68fce145689655cda71a815f44745f3 2305 database optional redis_7.0.15-1~deb12u8.dsc d4572b9ddf01b3aeeb43859119ad62f9 3025940 database optional redis_7.0.15.orig.tar.gz af82318f601b258b9aa977e42aaa75c0 49096 database optional redis_7.0.15-1~deb12u8.debian.tar.xz 59c22819ce1ed4c349d08156c8170091 6071 database optional redis_7.0.15-1~deb12u8_source.buildinfo -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEwv5L0nHBObhsUz5GHpU+J9QxHlgFAmpVaoEACgkQHpU+J9Qx Hli5TxAAnLhlNGZ6i/tLBfSi7aQk13OEJVb6tTJcy/6LxJXtjmPMyYnp8bWv/JEa wqCxge2ln/8kLUyk6SJI46mSRz2kY3L19byb58RnRK8imGXhIgdWNUW+KlWMinYX /Fu/JehLfiHVw2HMqubuSgaeXwFHoMEpWmG0ueF4pi1NRQ8VT6BBI3g6tZAc8Uhq iYbAuS+4NmRQTfkN5OkQeaR1zx8x1UFm5d2f+mkawyYTeEfUmoiLXSmTEkmkCcjJ 6NQhOUktdFwNJxrNp/IH9eJ8x6JhekrwY1Th8HCj60b2WOcV43bXhmx5sP0fR+JY y9C0JZcHdTXvpPNoLhQMNpNEv3vJX0HEzomuKFEDTYk7gIkmEkRWJdag1FalyT44 oTWfET+hJSqgZ7H0eMXFyzIjEsYJGn106PoHkXwBFP+Y6LZnRxZ/8o5PkTNwMtT1 OeJlNEFAlIYspTrJlYXWxu5SJ5u/JdMKvIjz+Ab2AOkgi9+CBJwKq3xLsj1rUS9Q q3dqCV5KC/visP/rxsWkpqsMDlzNS2SwhjjZ8x36p+Dymu+NAOgAoGYWbU0O5skX hq0i2pSObKxc3zS2sHPnf1y05CLjKEMHtXZMITR2ZKi+RvdFIRgn5ZbVVh5JgrJ4 +oISEjSgcPRs3VwW/tL8xTwkqXQc9CNA8UQsmWfZnPqi2AUm2e0= =Uifb -----END PGP SIGNATURE-----