Redict 7.3.1 includes fixes for the following security vulnerabilities: CVE-2024-31449 CVE-2024-31227 CVE-2024-31228 see https://redict.io/posts/2024-10-01-redict-7.3.1-released/, details are not yet available.
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=59d019e7421f99f97560e7d2fd64595da8a7e49c commit 59d019e7421f99f97560e7d2fd64595da8a7e49c Author: Anna (navi) Figueiredo Gomes <navi@vlhl.dev> AuthorDate: 2024-10-01 14:07:48 +0000 Commit: Petr Vaněk <arkamar@gentoo.org> CommitDate: 2024-10-01 14:19:37 +0000 dev-db/redict: drop 7.3.0-r1 Bug: https://bugs.gentoo.org/940609 Signed-off-by: Anna (navi) Figueiredo Gomes <navi@vlhl.dev> Closes: https://github.com/gentoo/gentoo/pull/38834 Signed-off-by: Petr Vaněk <arkamar@gentoo.org> dev-db/redict/Manifest | 1 - dev-db/redict/redict-7.3.0-r1.ebuild | 159 ----------------------------------- 2 files changed, 160 deletions(-) https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=924beb27a022ec4d58ef3ed12fc6c3ec18153dc7 commit 924beb27a022ec4d58ef3ed12fc6c3ec18153dc7 Author: Anna (navi) Figueiredo Gomes <navi@vlhl.dev> AuthorDate: 2024-10-01 14:03:58 +0000 Commit: Petr Vaněk <arkamar@gentoo.org> CommitDate: 2024-10-01 14:19:35 +0000 dev-db/redict: add 7.3.1 Bug: https://bugs.gentoo.org/940609 Signed-off-by: Anna (navi) Figueiredo Gomes <navi@vlhl.dev> Signed-off-by: Petr Vaněk <arkamar@gentoo.org> dev-db/redict/Manifest | 1 + dev-db/redict/redict-7.3.1.ebuild | 160 ++++++++++++++++++++++++++++++++++++++ 2 files changed, 161 insertions(+)
(CVE-2024-31449) Lua library commands may lead to stack overflow and potential RCE. (CVE-2024-31227) Potential Denial-of-service due to malformed ACL selectors. (CVE-2024-31228) Potential Denial-of-service due to unbounded pattern matching. see https://github.com/redis/redis/releases/tag/7.4.1
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=970a5714ee9aa7eb0bcc22f8225b3919fb466630 commit 970a5714ee9aa7eb0bcc22f8225b3919fb466630 Author: Petr Vaněk <arkamar@gentoo.org> AuthorDate: 2024-10-03 10:06:50 +0000 Commit: Petr Vaněk <arkamar@gentoo.org> CommitDate: 2024-10-03 15:35:30 +0000 dev-db/redis: add 7.4.1 Bug: https://bugs.gentoo.org/940609 Signed-off-by: Petr Vaněk <arkamar@gentoo.org> dev-db/redis/Manifest | 1 + dev-db/redis/redis-7.4.1.ebuild | 193 ++++++++++++++++++++++++++++++++++++++++ 2 files changed, 194 insertions(+) https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=149f3e67777ee411a450ceba2fcb81c046badc94 commit 149f3e67777ee411a450ceba2fcb81c046badc94 Author: Petr Vaněk <arkamar@gentoo.org> AuthorDate: 2024-10-03 09:57:01 +0000 Commit: Petr Vaněk <arkamar@gentoo.org> CommitDate: 2024-10-03 15:35:29 +0000 dev-db/redis: add 7.2.6 Bug: https://bugs.gentoo.org/940609 Signed-off-by: Petr Vaněk <arkamar@gentoo.org> dev-db/redis/Manifest | 1 + dev-db/redis/redis-7.2.6.ebuild | 197 ++++++++++++++++++++++++++++++++++++++++ 2 files changed, 198 insertions(+) https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=7ed12424ea11da83586d192d7e878795e81f92cd commit 7ed12424ea11da83586d192d7e878795e81f92cd Author: Petr Vaněk <arkamar@gentoo.org> AuthorDate: 2024-10-03 09:50:19 +0000 Commit: Petr Vaněk <arkamar@gentoo.org> CommitDate: 2024-10-03 15:35:28 +0000 dev-db/redis: add 6.2.16 Bug: https://bugs.gentoo.org/940609 Signed-off-by: Petr Vaněk <arkamar@gentoo.org> dev-db/redis/Manifest | 1 + dev-db/redis/redis-6.2.16.ebuild | 192 +++++++++++++++++++++++++++++++++++++++ 2 files changed, 193 insertions(+)
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=d54970656840d14c30456363c0b5136755447378 commit d54970656840d14c30456363c0b5136755447378 Author: Petr Vaněk <arkamar@gentoo.org> AuthorDate: 2024-10-29 08:48:56 +0000 Commit: Petr Vaněk <arkamar@gentoo.org> CommitDate: 2024-10-29 08:48:56 +0000 dev-db/redis: drop 6.2.14-r1, 7.2.5, 7.4.0 Bug: https://bugs.gentoo.org/940609 Signed-off-by: Petr Vaněk <arkamar@gentoo.org> dev-db/redis/Manifest | 3 - dev-db/redis/redis-6.2.14-r1.ebuild | 195 ----------------------------------- dev-db/redis/redis-7.2.5.ebuild | 197 ------------------------------------ dev-db/redis/redis-7.4.0.ebuild | 193 ----------------------------------- 4 files changed, 588 deletions(-) https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=e7fa5ea589cb38e8747d86af6bb38d3312be25cf commit e7fa5ea589cb38e8747d86af6bb38d3312be25cf Author: Petr Vaněk <arkamar@gentoo.org> AuthorDate: 2024-10-29 08:46:55 +0000 Commit: Petr Vaněk <arkamar@gentoo.org> CommitDate: 2024-10-29 08:46:55 +0000 dev-db/redis: drop 7.0.15-r1, EOL Bug: https://bugs.gentoo.org/940609 Signed-off-by: Petr Vaněk <arkamar@gentoo.org> dev-db/redis/Manifest | 1 - dev-db/redis/redis-7.0.15-r1.ebuild | 187 ------------------------------------ 2 files changed, 188 deletions(-)
