diff options
author | Oran Agra <oran@redislabs.com> | 2021-06-01 09:18:59 +0300 |
---|---|---|
committer | Oran Agra <oran@redislabs.com> | 2021-06-01 17:03:44 +0300 |
commit | 941d58d4c916a8a273936fc168f62dad181f9705 (patch) | |
tree | 93c65c6b6a0282790345849d6db0200d43a93ad5 | |
parent | dd27c4e15ee54251093c5895d3681c3894d2b68b (diff) | |
download | redis-941d58d4c916a8a273936fc168f62dad181f9705.tar.gz |
Redis 6.0.146.0.14
-rw-r--r-- | 00-RELEASENOTES | 16 | ||||
-rw-r--r-- | src/version.h | 4 |
2 files changed, 18 insertions, 2 deletions
diff --git a/00-RELEASENOTES b/00-RELEASENOTES index 093a98883..3d8c17a7a 100644 --- a/00-RELEASENOTES +++ b/00-RELEASENOTES @@ -12,6 +12,22 @@ SECURITY: There are security fixes in the release. -------------------------------------------------------------------------------- ================================================================================ +Redis 6.0.14 Released Tue July 1 12:00:00 IST 2021 +================================================================================ + +Upgrade urgency: SECURITY, Contains fixes to security issues that affect +authenticated client connections. MODERATE otherwise. + +Fix integer overflow in STRALGO LCS (CVE-2021-32625) +An integer overflow bug in Redis version 6.0 or newer can be exploited using the +STRALGO LCS command to corrupt the heap and potentially result with remote code +execution. This is a result of an incomplete fix by CVE-2021-29477. + +Other bug fixes: +* Fix crash in UNLINK on a stream key with deleted consumer groups (#8932) +* SINTERSTORE: Add missing keyspace del event when none of the sources exist (#8949) + +================================================================================ Redis 6.0.13 Released Mon May 3 19:00:00 IST 2021 ================================================================================ diff --git a/src/version.h b/src/version.h index d35e52950..b7b853cf3 100644 --- a/src/version.h +++ b/src/version.h @@ -1,2 +1,2 @@ -#define REDIS_VERSION "6.0.13" -#define REDIS_VERSION_NUM 0x0006000d +#define REDIS_VERSION "6.0.14" +#define REDIS_VERSION_NUM 0x0006000e |