'[oe] [meta-oe][PATCH] redis: upgrade to 6.2.4'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       openembedded-devel
Subject:    [oe] [meta-oe][PATCH] redis: upgrade to 6.2.4
From:       "Tony Tascioglu" <tony.tascioglu () windriver ! com>
Date:       2021-06-30 21:58:12
Message-ID: 20210630215812.146648-1-tony.tascioglu () windriver ! com
[Download RAW message or body]

Upstream changelog:

Upgrade urgency: SECURITY, Contains fixes to security issues that affect
authenticated client connections. MODERATE otherwise.

Fix integer overflow in STRALGO LCS (CVE-2021-32625)
An integer overflow bug in Redis version 6.0 or newer can be exploited using the
STRALGO LCS command to corrupt the heap and potentially result with remote code
execution. This is a result of an incomplete fix by CVE-2021-29477.

Bug fixes that are only applicable to previous releases of Redis 6.2:

    Fix crash after a diskless replication fork child is terminated (#8991)
    Fix redis-benchmark crash on unsupported configs (#8916)

Other bug fixes:

    Fix crash in UNLINK on a stream key with deleted consumer groups (#8932)
    SINTERSTORE: Add missing keyspace del event when none of the sources exist \
(#8949)  Sentinel: Fix CONFIG SET of empty string sentinel-user/sentinel-pass configs \
(#8958)  Enforce client output buffer soft limit when no traffic (#8833)

Improvements:

    Hide AUTH passwords in MIGRATE command from slowlog (#8859)

Signed-off-by: Tony Tascioglu <tony.tascioglu@windriver.com>
---
 .../recipes-extended/redis/{redis_6.2.3.bb => redis_6.2.4.bb}   | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)
 rename meta-oe/recipes-extended/redis/{redis_6.2.3.bb => redis_6.2.4.bb} (96%)

diff --git a/meta-oe/recipes-extended/redis/redis_6.2.3.bb \
b/meta-oe/recipes-extended/redis/redis_6.2.4.bb similarity index 96%
rename from meta-oe/recipes-extended/redis/redis_6.2.3.bb
rename to meta-oe/recipes-extended/redis/redis_6.2.4.bb
index 67ac974de..35f34a27d 100644
--- a/meta-oe/recipes-extended/redis/redis_6.2.3.bb
+++ b/meta-oe/recipes-extended/redis/redis_6.2.4.bb
@@ -17,7 +17,7 @@ SRC_URI = "http://download.redis.io/releases/${BP}.tar.gz \
            file://GNU_SOURCE.patch \
            file://0006-Define-correct-gregs-for-RISCV32.patch \
            "
-SRC_URI[sha256sum] = \
"98ed7d532b5e9671f5df0825bb71f0f37483a16546364049384c63db8764512b" \
+SRC_URI[sha256sum] = \
"ba32c406a10fc2c09426e2be2787d74ff204eb3a2e496d87cff76a476b6ae16e"  
 inherit autotools-brokensep update-rc.d systemd useradd
 
-- 
2.32.0



-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#92070): https://lists.openembedded.org/g/openembedded-devel/message/92070
Mute This Topic: https://lists.openembedded.org/mt/83903625/4455120
Group Owner: openembedded-devel+owner@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-devel/unsub [openembedded-devel@marc.info]
-=-=-=-=-=-=-=-=-=-=-=-



[prev in list] [next in list] [prev in thread] [next in thread]
Configure | About | News | Add a list | Sponsored by KoreLogic