Tue Jan 17 11:05:57 2023 UTC ()
redis: updated to 7.0.8

Redis 7.0.8 Released Mon Jan 16 12:00:00 IDT 2023

Upgrade urgency: SECURITY, contains fixes to security issues.

Security Fixes:
* (CVE-2022-35977) Integer overflow in the Redis SETRANGE and SORT/SORT_RO
  commands can drive Redis to OOM panic
* (CVE-2023-22458) Integer overflow in the Redis HRANDFIELD and ZRANDMEMBER
  commands can lead to denial-of-service

Bug Fixes
* Avoid possible hang when client issues long KEYS, SRANDMEMBER, HRANDFIELD,
  and ZRANDMEMBER commands and gets disconnected by client output buffer limit
* Make sure that fork child doesn't do incremental rehashing
* Fix a bug where blocking commands with a sub-second timeout would block forever
* Fix sentinel issue if replica changes IP


(adam)
diff -r1.76 -r1.77 pkgsrc/databases/redis/Makefile
diff -r1.69 -r1.70 pkgsrc/databases/redis/distinfo
cvs diff -r1.76 -r1.77 pkgsrc/databases/redis/Makefile (expand / switch to unified diff)

--- pkgsrc/databases/redis/Makefile 2022/12/17 06:14:19 1.76
+++ pkgsrc/databases/redis/Makefile 2023/01/17 11:05:56 1.77
@@ -1,16 +1,16 @@ @@ -1,16 +1,16 @@
1# $NetBSD: Makefile,v 1.76 2022/12/17 06:14:19 adam Exp $ 1# $NetBSD: Makefile,v 1.77 2023/01/17 11:05:56 adam Exp $
2 2
3DISTNAME= redis-7.0.7 3DISTNAME= redis-7.0.8
4CATEGORIES= databases 4CATEGORIES= databases
5MASTER_SITES= http://download.redis.io/releases/ 5MASTER_SITES= http://download.redis.io/releases/
6 6
7MAINTAINER= pkgsrc-users@NetBSD.org 7MAINTAINER= pkgsrc-users@NetBSD.org
8HOMEPAGE= https://redis.io/ 8HOMEPAGE= https://redis.io/
9COMMENT= Persistent key-value database with built-in net interface 9COMMENT= Persistent key-value database with built-in net interface
10LICENSE= modified-bsd 10LICENSE= modified-bsd
11 11
12TEST_DEPENDS+= tcl>=8.5:../../lang/tcl 12TEST_DEPENDS+= tcl>=8.5:../../lang/tcl
13 13
14USE_LANGUAGES= c99 14USE_LANGUAGES= c99
15USE_TOOLS+= gmake pkg-config 15USE_TOOLS+= gmake pkg-config
16 16
cvs diff -r1.69 -r1.70 pkgsrc/databases/redis/distinfo (expand / switch to unified diff)

--- pkgsrc/databases/redis/distinfo 2022/12/17 06:14:19 1.69
+++ pkgsrc/databases/redis/distinfo 2023/01/17 11:05:56 1.70
@@ -1,9 +1,9 @@ @@ -1,9 +1,9 @@
1$NetBSD: distinfo,v 1.69 2022/12/17 06:14:19 adam Exp $ 1$NetBSD: distinfo,v 1.70 2023/01/17 11:05:56 adam Exp $
2 2
3BLAKE2s (redis-7.0.7.tar.gz) = 019e492e08f00b2ac7fda25580537ea059ed2bb90702b8b9ca7b89589ab0f24b 3BLAKE2s (redis-7.0.8.tar.gz) = 3a83663d93dae0c4f2d26660e5649e3f6c43fccfe6b5c1b1e0f2074dc01ffb08
4SHA512 (redis-7.0.7.tar.gz) = 56e33cf80439efa54694f26037ed8520fe51b25dbdfe57875d916c8f921131c71324b1dd1e974d0f9d523752d05e0f028cc8dd783ec8fa6d5d7e60b3081f78c0 4SHA512 (redis-7.0.8.tar.gz) = d760fce02203265551198082f75b1e6be78a2cdb3d464e518d65a31839a3b6e45401c6bca6a091f59e121212aee7363d5e83c25365ab347a66b807015b32eeb6
5Size (redis-7.0.7.tar.gz) = 2979019 bytes 5Size (redis-7.0.8.tar.gz) = 2981212 bytes
6SHA1 (patch-redis.conf) = ee657a9d82711263ceb0fb8f7d8059ed23528fe9 6SHA1 (patch-redis.conf) = ee657a9d82711263ceb0fb8f7d8059ed23528fe9
7SHA1 (patch-src_Makefile) = 2c23fb065e827e0cb25fdfba1bc1976db03dc789 7SHA1 (patch-src_Makefile) = 2c23fb065e827e0cb25fdfba1bc1976db03dc789
8SHA1 (patch-src_hyperloglog.c) = e9bdd3c630024a6fbe02c2c1d85e26131ad938cf 8SHA1 (patch-src_hyperloglog.c) = e9bdd3c630024a6fbe02c2c1d85e26131ad938cf
9SHA1 (patch-src_object.c) = 30ffaec9c7e6135e3a5576cd1a35d7bcec668299 9SHA1 (patch-src_object.c) = 30ffaec9c7e6135e3a5576cd1a35d7bcec668299