Upgrade urgency SECURITY: This release includes security fixes we recommend you
apply as soon as possible.
Security fixes
- (CVE-2024-46981) Lua script commands may lead to remote code execution. (#1513)
- (CVE-2024-51741) Denial-of-service due to malformed ACL selectors. (#1514)
Bug fixes
- Fix a bug where extra memory would be used when storing strings in the
inline protocol. (#1213) - Send the correct error message when
FUNCTION KILLis used to kill an
ongoing script. (#1171) - Make sure the last accessed time is correctly updated when using the
TOUCH
command with theCLIENT NO-TOUCHoption. (#1499)