Debian Package Tracker
Register | Log in
Subscribe

redict

Persistent key-value database with network interface (metapackage)

Choose email to subscribe with

general
  • source: redict (main)
  • version: 7.3.2+ds-1
  • maintainer: Debian Redict Maintainers (DMD)
  • uploaders: Maytham Alsudany [DMD] – Alex Myczko [DMD]
  • arch: all any
  • std-ver: 4.7.0
  • VCS: Git (Browse, QA)
versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]
[pool directory]
  • unstable: 7.3.2+ds-1
versioned links
  • 7.3.2+ds-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
binaries
  • redict
  • redict-sentinel
  • redict-server
  • redict-tools
action needed
A new upstream version is available: 7.3.3 high
A new upstream version 7.3.3 is available, you should consider packaging it.
Created: 2025-05-08 Last update: 2025-05-28 23:28
1 security issue in sid high

There is 1 open security issue in sid.

1 important issue:
  • CVE-2025-21605: Redis is an open source, in-memory database that persists on disk. In versions starting at 2.6 and prior to 7.4.3, An unauthenticated client can cause unlimited growth of output buffers, until the server runs out of memory or is killed. By default, the Redis configuration does not limit the output buffer of normal clients (see client-output-buffer-limit). Therefore, the output buffer can grow unlimitedly over time. As a result, the service is exhausted and the memory is unavailable. When password authentication is enabled on the Redis server, but no password is provided, the client can still cause the output buffer to grow from "NOAUTH" responses until the system will run out of memory. This issue has been patched in version 7.4.3. An additional workaround to mitigate this problem without patching the redis-server executable is to block access to prevent unauthenticated users from connecting to Redis. This can be done in different ways. Either using network access control tools like firewalls, iptables, security groups, etc, or enabling TLS and requiring users to authenticate using client side certificates.
Created: 2025-04-24 Last update: 2025-05-23 18:00
1 security issue in trixie high

There is 1 open security issue in trixie.

1 important issue:
  • CVE-2025-21605: Redis is an open source, in-memory database that persists on disk. In versions starting at 2.6 and prior to 7.4.3, An unauthenticated client can cause unlimited growth of output buffers, until the server runs out of memory or is killed. By default, the Redis configuration does not limit the output buffer of normal clients (see client-output-buffer-limit). Therefore, the output buffer can grow unlimitedly over time. As a result, the service is exhausted and the memory is unavailable. When password authentication is enabled on the Redis server, but no password is provided, the client can still cause the output buffer to grow from "NOAUTH" responses until the system will run out of memory. This issue has been patched in version 7.4.3. An additional workaround to mitigate this problem without patching the redis-server executable is to block access to prevent unauthenticated users from connecting to Redis. This can be done in different ways. Either using network access control tools like firewalls, iptables, security groups, etc, or enabling TLS and requiring users to authenticate using client side certificates.
Created: 2025-04-24 Last update: 2025-04-24 10:32
The package has not entered testing even though the delay is over normal
The package has not entered testing even though the 20-day delay is over. Check why.
Created: 2025-05-23 Last update: 2025-05-29 04:34
1 new commit since last upload, is it time to release? normal
vcswatch reports that this package seems to have new commits in its VCS but has not yet updated debian/changelog. You should consider updating the Debian changelog and uploading this new version into the archive.

Here are the relevant commit logs:
commit 2266816b4d5e03d215543735cf1b0a989b2207f7
Author: Maytham Alsudany <maytha8thedev@gmail.com>
Date:   Wed Jan 8 22:07:12 2025 +0800

    [skip ci] d/gbp.conf: Ignore branch
    
    Gbp-Dch: ignore
Created: 2024-05-14 Last update: 2025-05-25 07:32
lintian reports 6 warnings normal
Lintian reports 6 warnings about this package. You should make the package lintian clean getting rid of them.
Created: 2025-01-09 Last update: 2025-01-09 05:02
Build log checks report 1 warning low
Build log checks report 1 warning
Created: 2024-05-12 Last update: 2024-05-12 14:43
Standards version of the package is outdated. wishlist
The package should be updated to follow the last version of Debian Policy (Standards-Version 4.7.2 instead of 4.7.0).
Created: 2025-02-21 Last update: 2025-02-27 13:25
testing migrations
  • excuses:
    • Migration status for redict (- to 7.3.2+ds-1): BLOCKED: Rejected/violates migration policy/introduces a regression
    • Issues preventing migration:
    • ∙ ∙ Updating redict would introduce bugs in testing: #1104011
    • ∙ ∙ blocked by freeze: is not in testing
    • Additional info:
    • ∙ ∙ Piuparts tested OK - https://piuparts.debian.org/sid/source/r/redict.html
    • ∙ ∙ autopkgtest for redict/7.3.2+ds-1: amd64: Pass, arm64: Pass, armel: Pass, armhf: Pass, i386: Pass, ppc64el: Pass, riscv64: Pass, s390x: Pass
    • ∙ ∙ Reproducible on amd64 - info ♻
    • ∙ ∙ Reproducible on arm64 - info ♻
    • ∙ ∙ Reproducible on armhf - info ♻
    • ∙ ∙ Reproducible on i386 - info ♻
    • ∙ ∙ 140 days old (needed 20 days)
    • Not considered
news
[rss feed]
  • [2025-05-24] redict REMOVED from testing (Debian testing watch)
  • [2025-01-11] redict 7.3.2+ds-1 MIGRATED to testing (Debian testing watch)
  • [2025-01-09] Accepted redict 7.3.2+ds-1~bpo12+1 (source) into stable-backports (Maytham Alsudany)
  • [2025-01-08] Accepted redict 7.3.2+ds-1 (source) into unstable (Maytham Alsudany)
  • [2024-10-15] redict 7.3.1+ds-1 MIGRATED to testing (Debian testing watch)
  • [2024-10-13] Accepted redict 7.3.1+ds-1 (source) into unstable (Maytham Alsudany)
  • [2024-06-25] Accepted redict 7.3.0+ds-3~bpo12+1 (source amd64 all) into stable-backports (Debian FTP Masters) (signed by: Gürkan Myczko)
  • [2024-05-17] redict 7.3.0+ds-3 MIGRATED to testing (Debian testing watch)
  • [2024-05-17] redict 7.3.0+ds-3 MIGRATED to testing (Debian testing watch)
  • [2024-05-15] Accepted redict 7.3.0+ds-3 (source) into unstable (Maytham Alsudany) (signed by: Gürkan Myczko)
  • [2024-05-12] Accepted redict 7.3.0+ds-2 (source) into unstable (Maytham Alsudany) (signed by: Gürkan Myczko)
  • [2024-05-11] Accepted redict 7.3.0+ds-1 (source amd64 all) into unstable (Debian FTP Masters) (signed by: Gürkan Myczko)
bugs [bug history graph]
  • all: 3
  • RC: 1
  • I&N: 0
  • M&W: 2
  • F&P: 0
  • patch: 0
links
  • homepage
  • lintian (0, 6)
  • buildd: logs, checks, reproducibility, cross
  • popcon
  • browse source code
  • edit tags
  • other distros
  • security tracker
  • screenshots
  • debian patches
  • debci
ubuntu Ubuntu logo [Information about Ubuntu for Debian Developers]
  • version: 7.3.2+ds-1

Debian Package Tracker — Copyright 2013-2025 The Distro Tracker Developers
Report problems to the tracker.debian.org pseudo-package in the Debian BTS.
Documentation — Bugs — Git Repository — Contributing