Zum Inhalt springen.
Sympa Menü

it-securitynotifies - [IT-SecNots] [SECURITY] [DSA 5001-1] redis security update

it-securitynotifies AT lists.piratenpartei.de

Betreff: Sicherheitsankündigungen

Listenarchiv

[IT-SecNots] [SECURITY] [DSA 5001-1] redis security update


Chronologisch Thread 
  • From: Moritz Muehlenhoff <jmm AT debian.org>
  • To: debian-security-announce AT lists.debian.org
  • Subject: [IT-SecNots] [SECURITY] [DSA 5001-1] redis security update
  • Date: Fri, 5 Nov 2021 19:30:06 +0000
  • List-archive: https://lists.debian.org/msgid-search/20211105193006.GA6484 AT seger.debian.org
  • List-id: <debian-security-announce.lists.debian.org>
  • List-url: <http://lists.debian.org/debian-security-announce/>
  • Old-dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=debian.org; s=smtpauto.seger; h=Content-Type:MIME-Version:Message-ID:Subject:To:From: Date:Reply-To:Cc:Content-Transfer-Encoding:Content-ID:Content-Description: In-Reply-To:References; bh=5pUyAoGt9CFZl0szgRJ5VZoPFnBQah7F7v0YIGiA/uU=; b=H8 PAfkYucUFQbTHt4q2TJy9QNbWDw5v5oF0ib5C3ZzskjMk7DFV8t2p3S9dMY8jKlO8oxnQxR+gSDwL 9OhOGEs3oo6DHDbP0QeW753yXyXDJdOGcMiRXj2z4dDn1ZnLb/bAVZtKNFqL9OuZQXb4gPf0iv96n BmlbhDqbbIHbqdM/J7OY/no2MtJ3ndVExCqCucLLfV+T1MNh9OrSEMijzTFD7qkm7agJaOiOGGSO8 BZocILws70UXL7/thobCzAREs8kEJcDFW6tUJAblEHwuw7Q07gYG8/JVM+aAZL5HtOkNPc1uezhko rJVwCVGmT4nEQnteKWu+xyKyX7viIvxg==;
  • Old-return-path: <jmm AT seger.debian.org>
  • Priority: urgent
  • Resent-date: Fri, 5 Nov 2021 19:30:24 +0000 (UTC)
  • Resent-from: debian-security-announce AT lists.debian.org
  • Resent-message-id: <dmO0h4rdK1.A.IAH.QZYhhB@bendel>
  • Resent-sender: debian-security-announce-request AT lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-5001-1 security AT debian.org
https://www.debian.org/security/ Moritz Muehlenhoff
November 05, 2021 https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package : redis
CVE ID : CVE-2021-32626 CVE-2021-32627 CVE-2021-32628 CVE-2021-32672
CVE-2021-32675 CVE-2021-32687 CVE-2021-32762 CVE-2021-41099
CVE-2021-32761

Multiple vulnerabilities were discovered in Redis, a persistent key-value
database, which could result in denial of service or the execution of
arbitrary code.

For the oldstable distribution (buster), these problems have been fixed
in version 5:5.0.14-1+deb10u1.

For the stable distribution (bullseye), these problems have been fixed in
version 5:6.0.16-1+deb11u1.

We recommend that you upgrade your redis packages.

For the detailed security status of redis please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/redis

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce AT lists.debian.org
-----BEGIN PGP SIGNATURE-----
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=+ktC
-----END PGP SIGNATURE-----



  • [IT-SecNots] [SECURITY] [DSA 5001-1] redis security update, Moritz Muehlenhoff, 05.11.2021

Archiv bereitgestellt durch MHonArc 2.6.24.

Seitenanfang