github redis/redis 6.0.14
on GitHub

latest releases: 7.2.4, 7.0.15, 7.2.3...
2 years ago

Upgrade urgency: SECURITY, Contains fixes to security issues that affect
authenticated client connections. MODERATE otherwise.

Fix integer overflow in STRALGO LCS (CVE-2021-32625)
An integer overflow bug in Redis version 6.0 or newer can be exploited using the
STRALGO LCS command to corrupt the heap and potentially result with remote code
execution. This is a result of an incomplete fix by CVE-2021-29477.

Other bug fixes:

  • Fix crash in UNLINK on a stream key with deleted consumer groups (#8932)
  • SINTERSTORE: Add missing keyspace del event when none of the sources exist (#8949)
Check out latest releases or
releases around redis/redis 6.0.14

Don't miss a new redis release

NewReleases is sending notifications on new releases.

Get notifications