[SECURITY] [DLA 2717-2] redis security update

To: debian-lts-announce@lists.debian.org
Subject: [SECURITY] [DLA 2717-2] redis security update
From: "Chris Lamb" <lamby@debian.org>
Date: Fri, 27 Aug 2021 09:43:26 -0400 (EDT)
Message-id: <[🔎] 163007176544.806501.18421775915263516587@copycat>
Mail-followup-to: debian-lts@lists.debian.org
Reply-to: debian-lts@lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

- -------------------------------------------------------------------------
Debian LTS Advisory DLA-2717-2                debian-lts@lists.debian.org
https://www.debian.org/lts/security/                           Chris Lamb
August 27, 2021                               https://wiki.debian.org/LTS
- -------------------------------------------------------------------------

Package        : redis
Version        : 3:3.2.6-3+deb9u6
CVE ID         : CVE-2021-32761

It was discovered that there was a regression in a previous update to
the Redis key-value database.

A test was not correctly backported from the latest upstream release
which meant that binaries were not available on all LTS platforms.
The Redis server code was unaffected.

For Debian 9 "Stretch", this problem has been fixed in version
3:3.2.6-3+deb9u6.

We recommend that you upgrade your redis packages.

For the detailed security status of redis please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/redis

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS

-----BEGIN PGP SIGNATURE-----
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=PzG3
-----END PGP SIGNATURE-----

Reply to:

Prev by Date: [SECURITY] [DLA 2748-1] tnef security update
Next by Date: [SECURITY] [DLA 2749-1] gthumb security update
Previous by thread: [SECURITY] [DLA 2748-1] tnef security update
Next by thread: [SECURITY] [DLA 2749-1] gthumb security update
Index(es):
- Date
- Thread