Debian Security Advisory
DLA-577-1 redis -- LTS security update
- Date Reported:
- 30 Jul 2016
- Affected Packages:
- Security database references:
- In the Debian bugtracking system: Bug 832460.
In Mitre's CVE dictionary: CVE-2013-7458.
- More information:
It was discovered that the redis-cli tool in redis (an in-memory key-value database) created world-readable history files.
For Debian 7
Wheezy, this issue has been fixed in redis version 2:2.4.14-1+deb7u1.
We recommend that you upgrade your redis packages.