Upgrade urgency SECURITY: See security fixes below.
Security Fixes
- (CVE-2023-41053) Redis does not correctly identify keys accessed by SORT_RO and
as a result may grant users executing this command access to keys that are not
explicitly authorized by the ACL configuration.
Bug Fixes
- Cluster: fix a race condition where a slot migration may revert on a
subsequent failover or node joining (redis/redis#12344) - Ensure that the function load timeout is disabled during loading from RDB/AOF
and on replicas. (redis/redis#12451) - Fix the assertion when script timeout occurs after it signaled a blocked client (redis/redis#12459)
Hashes
=========
Algorithm : SHA256
Hash : 32804154D7BE01AE59D24444DE7D8D70D920DD088A441E0DB91C421BE3F198EC
Path : D:\a\redis-windows\redis-windows\Redis-7.0.13-Windows-x64-msys2.zip
Algorithm : SHA256
Hash : 6014F61746BA1F4353AEDD982A1AFBA43060EA20CD069C91BD75346F544363C8
Path : D:\a\redis-windows\redis-windows\Redis-7.0.13-Windows-x64-msys2-with-Service.zip
Algorithm : SHA256
Hash : C4E1A00B29F209B847271720A807036C4D08394FE1E6305CFF10D7834E636F1E
Path : D:\a\redis-windows\redis-windows\Redis-7.0.13-Windows-x64-cygwin.zip
Algorithm : SHA256
Hash : 72732168CE87B43CC7E48FA8AFCD86832F5EE6C7192491B18972DAB9D7A7FE64
Path : D:\a\redis-windows\redis-windows\Redis-7.0.13-Windows-x64-cygwin-with-Service.zip
From workflow: https://github.com/redis-windows/redis-windows/actions/runs/8515957670