redis-windows
Redis 6.0.20 6.2.14 7.0.15 7.2.4 7.4.0 for Windows
APACHE-2.0 License
Bot releases are visible (Hide)
Published by github-actions[bot] 3 months ago
This is the General Availability release of Redis Community Edition 7.4.
Changes to new 7.4 features (compared to 7.4 RC2)
- https://github.com/redis/redis/pull/13391,https://github.com/redis/redis/pull/13438 Hash - expiration of individual fields: RDB file format changes
-
https://github.com/redis/redis/pull/13372 Hash - expiration of individual fields: rename and fix counting of
expired_subkeysmetric -
https://github.com/redis/redis/pull/13372 Hash - expiration of individual fields: rename
INFOkeyspace field tosubexpiry
Configuration parameters
- https://github.com/redis/redis/pull/13400 Add hide-user-data-from-log - allows hiding user data from the log file
Bug fixes
-
https://github.com/redis/redis/pull/13407 Trigger Lua GC after
SCRIPT LOAD - https://github.com/redis/redis/pull/13380 Fix possible crash due to OOM panic on invalid command
-
https://github.com/redis/redis/pull/13383
FUNCTION FLUSH- improve Lua GC behavior and fix thread race in ASYNC mode -
https://github.com/redis/redis/pull/13408
HEXPIRE-like commands should emitHDELkeyspace notification if expire time is in the past
Hashes
Algorithm : SHA256
Hash : 50BB759300A33EB3E5631F315E7BC6D78B5D6CFD772DCD2AE6AB6C7AB23FA85B
Path : D:\a\redis-windows\redis-windows\Redis-7.4.0-Windows-x64-msys2.zip
Algorithm : SHA256
Hash : F4527D0978DC354DFC89F4EFC749F385CACF2CFE417D9E1332217E090A96F410
Path : D:\a\redis-windows\redis-windows\Redis-7.4.0-Windows-x64-msys2-with-Service.zip
Algorithm : SHA256
Hash : 614AD8D48B90B54C788DC1DADA12C5D0B331FE42A7688251EB8F025DD02B3690
Path : D:\a\redis-windows\redis-windows\Redis-7.4.0-Windows-x64-cygwin.zip
Algorithm : SHA256
Hash : BEF5D156F292D77F3D0CE69CA80A723D8A28B0C2EBECC901AADBD2294955C064
Path : D:\a\redis-windows\redis-windows\Redis-7.4.0-Windows-x64-cygwin-with-Service.zip
From workflow: https://github.com/redis-windows/redis-windows/actions/runs/10145236094
Published by github-actions[bot] 5 months ago
Upgrade urgency MODERATE: Program an upgrade of the server, but it's not urgent.
Bug fixes
- A single shard cluster leaves failed replicas in CLUSTER SLOTS instead of removing them (https://github.com/redis/redis/pull/12824)
- Crash in LSET command when replacing small items and exceeding 4GB (https://github.com/redis/redis/pull/12955)
- Blocking commands timeout is reset due to re-processing command (https://github.com/redis/redis/pull/13004)
- Conversion of numbers in Lua args to redis args can fail. Bug introduced in 7.2.0 (https://github.com/redis/redis/pull/13115)
Bug fixes in CLI tools
- redis-cli: --count (for --scan, --bigkeys, etc) was ignored unless --pattern was also used (https://github.com/redis/redis/pull/13092)
- redis-check-aof: incorrectly considering data in manifest format as MP-AOF (https://github.com/redis/redis/pull/12958)
Hashes
Algorithm : SHA256
Hash : BE71A03D60D5719BACDAD068EBBF22B17C6E7A125BE42576A799406B2D058CA9
Path : D:\a\redis-windows\redis-windows\Redis-7.2.5-Windows-x64-msys2.zip
Algorithm : SHA256
Hash : 2FD630B61624FED5FA21A9291783517025C0C8B21C9D1833B1EE1C74240F6AF8
Path : D:\a\redis-windows\redis-windows\Redis-7.2.5-Windows-x64-msys2-with-Service.zip
Algorithm : SHA256
Hash : 749205C2D3C23C9E16874FAEE335677567C1A13D5B6B8D7A01B8E7789CCF6055
Path : D:\a\redis-windows\redis-windows\Redis-7.2.5-Windows-x64-cygwin.zip
Algorithm : SHA256
Hash : 19F98B38EB053092334653475C4DFBCAA4548D3FA95FAEDAB25CFABAD3372BE4
Path : D:\a\redis-windows\redis-windows\Redis-7.2.5-Windows-x64-cygwin-with-Service.zip
From workflow: https://github.com/redis-windows/redis-windows/actions/runs/9144226566
Published by yes8080 7 months ago
Upgrade urgency SECURITY: See security fixes below.
Security fixes
- (CVE-2023-41056) In some cases, Redis may incorrectly handle resizing of memory
buffers which can result in incorrect accounting of buffer sizes and lead to
heap overflow and potential remote code execution.
Bug fixes
- Fix crashes of cluster commands clusters with mixed versions of 7.0 and 7.2 (https://github.com/redis/redis/pull/12805, #12832)
- Fix slot ownership not being properly handled when deleting a slot from a node (https://github.com/redis/redis/pull/12564)
- Fix atomicity issues with the RedisModuleEvent_Key module API event (https://github.com/redis/redis/pull/12733)
Hashes
Algorithm : SHA256
Hash : 799D81A99EB28B542AFFA2C0CA8F35917C606B11DAE5F74626B968B1806B4009
Path : D:\a\redis-windows\redis-windows\Redis-7.2.4-Windows-x64-msys2.zip
Algorithm : SHA256
Hash : 40B48B9AB22B94A3F5F096DD2143498014500733481261DF4035298878EC3566
Path : D:\a\redis-windows\redis-windows\Redis-7.2.4-Windows-x64-msys2-with-Service.zip
Algorithm : SHA256
Hash : BF75738CF2B5D83ADA067C8484390B3544467D8537B979649C0C35D58A438C60
Path : D:\a\redis-windows\redis-windows\Redis-7.2.4-Windows-x64-cygwin.zip
Algorithm : SHA256
Hash : 4C6CAEFC7E34A28E29921595638C7D33DB861C5D1B7B182EA760BD73AFB9ABF5
Path : D:\a\redis-windows\redis-windows\Redis-7.2.4-Windows-x64-cygwin-with-Service.zip
From workflow: https://github.com/redis-windows/redis-windows/actions/runs/8428906768
Published by yes8080 7 months ago
Upgrade urgency: HIGH, Fixes critical bugs affecting most users.
Bug fixes
- Fix file descriptor leak preventing deleted files from freeing disk space on
replicas (https://github.com/redis/redis/pull/12693) - Fix a possible crash after cluster node removal (https://github.com/redis/redis/pull/12702)
Hashes
Algorithm : SHA256
Hash : ADFE6AB1C85F235FD6D480D0D05A8975EB8CE7E8CD440C9FA29A361B6A8EE80F
Path : D:\a\redis-windows\redis-windows\Redis-7.2.3-Windows-x64.tar.gz
Algorithm : SHA256
Hash : 32FF477C100BD4AE1AB85658951FBF5B9CE32D3D4F49207AC2ED40E551FBCA1E
Path : D:\a\redis-windows\redis-windows\Redis-7.2.3-Windows-x64-with-Service.tar.gz
From workflow: https://github.com/redis-windows/redis-windows/actions/runs/8340066310
Published by yes8080 7 months ago
Upgrade urgency SECURITY: See security fixes below.
Security fixes
- (CVE-2023-45145) The wrong order of listen(2) and chmod(2) calls creates a
race condition that can be used by another process to bypass desired Unix
socket permissions on startup.
Platform / toolchain support related changes
- Fix compilation error on MacOS 13 (https://github.com/redis/redis/pull/12611)
Bug fixes
- WAITAOF could timeout in the absence of write traffic in case a new AOF is
created and an AOF rewrite can't immediately start (https://github.com/redis/redis/pull/12620)
Redis cluster
- Fix crash when running rebalance command in a mixed cluster of 7.0 and 7.2
nodes (https://github.com/redis/redis/pull/12604) - Fix the return type of the slot number in cluster shards to integer, which
makes it consistent with past behavior (https://github.com/redis/redis/pull/12561) - Fix CLUSTER commands are called from modules or scripts to return TLS info
appropriately (https://github.com/redis/redis/pull/12569)
Changes in CLI tools
- redis-cli, fix crash on reconnect when in SUBSCRIBE mode (https://github.com/redis/redis/pull/12571)
Module API changes
- Fix overflow calculation for next timer event (https://github.com/redis/redis/pull/12474)
Hashes
Algorithm : SHA256
Hash : 5C60F1A0205C6017077CD10C8788B0E2B1206DB4FC5DE4987F39242295CA61B6
Path : D:\a\redis-windows\redis-windows\Redis-7.2.2-Windows-x64.tar.gz
Algorithm : SHA256
Hash : 796A35A752F4728D8D489F223FFA96EC2924B9A8B512A310BCC11E7820B1F3B8
Path : D:\a\redis-windows\redis-windows\Redis-7.2.2-Windows-x64-with-Service.tar.gz
From workflow: https://github.com/redis-windows/redis-windows/actions/runs/8339369644
Published by yes8080 7 months ago
Upgrade urgency SECURITY: See security fixes below.
Security Fixes
- (CVE-2023-41053) Redis does not correctly identify keys accessed by SORT_RO and,
as a result, may grant users executing this command access to keys that are not
explicitly authorized by the ACL configuration.
Bug Fixes
- Fix crashes when joining a node to an existing 7.0 Redis Cluster (https://github.com/redis/redis/pull/12538)
- Correct request_policy and response_policy command tips on for some admin /
configuration commands (https://github.com/redis/redis/pull/12545, #12530)
Hashes
=========
Algorithm : SHA256
Hash : 0FE03FB4BFA199E50C40C65CF5D4A026DA1057EB255C11450B4B3566CDBDC65F
Path : D:\a\redis-windows\redis-windows\Redis-7.2.1-Windows-x64.tar.gz
Algorithm : SHA256
Hash : 0368CACDD266D12CA6076DDA1939A84368E1726AB23644EED9B0C9055207AEBD
Path : D:\a\redis-windows\redis-windows\Redis-7.2.1-Windows-x64-with-Service.tar.gz
From workflow: https://github.com/redis-windows/redis-windows/actions/runs/8339300856
Published by yes8080 7 months ago
Upgrade urgency LOW: This is the first stable Release for Redis 7.2.
Bug Fixes
- redis-cli in cluster mode handles
unknown-endpoint(https://github.com/redis/redis/pull/12273) - Update request / response policy hints for a few commands (https://github.com/redis/redis/pull/12417)
- Ensure that the function load timeout is disabled during loading from RDB/AOF and on replicas. (https://github.com/redis/redis/pull/12451)
- Fix false success and a memory leak for ACL selector with bad parenthesis combination (https://github.com/redis/redis/pull/12452)
- Fix the assertion when script timeout occurs after it signaled a blocked client (https://github.com/redis/redis/pull/12459)
Fixes for issues in previous releases of Redis 7.2
- Update MONITOR client's memory correctly for INFO and client-eviction (https://github.com/redis/redis/pull/12420)
- The response of cluster nodes was unnecessarily adding an extra comma when no
hostname was present. (https://github.com/redis/redis/pull/12411)
Hashes
Algorithm : SHA256
Hash : 1AC7CBBEB54D05619D2D4322E22C6513BAAA4247EF6CD692CFB16BE10CFF6959
Path : D:\a\redis-windows\redis-windows\Redis-7.2.0-Windows-x64.tar.gz
Algorithm : SHA256
Hash : 26E5822F9B9D01114C45719B0D8EAA007CE16A92234C88B285A19DA4E79CA455
Path : D:\a\redis-windows\redis-windows\Redis-7.2.0-Windows-x64-with-Service.tar.gz
From workflow: https://github.com/redis-windows/redis-windows/actions/runs/8338622471
Published by yes8080 9 months ago
Upgrade urgency SECURITY: See security fixes below.
Security fixes
- (CVE-2023-41056) In some cases, Redis may incorrectly handle resizing of memory
buffers which can result in incorrect accounting of buffer sizes and lead to
heap overflow and potential remote code execution.
Hashes
Algorithm : SHA256
Hash : EB04E2040C067A8FB29E55056F35D9D4569670A26E7AD915B5FD1A440D91A204
Path : D:\a\redis-windows\redis-windows\Redis-7.0.15-Windows-x64.tar.gz
Algorithm : SHA256
Hash : 4E15811A5806077B0A170733261C9E1E9E96AA8D346DF89BFC67F22738764287
Path : D:\a\redis-windows\redis-windows\Redis-7.0.15-Windows-x64-with-Service.tar.gz
From workflow: https://github.com/redis-windows/redis-windows/actions/runs/7486064249
Published by yes8080 about 1 year ago
Upgrade urgency SECURITY: See security fixes below.
Security fixes
- (CVE-2023-45145) The wrong order of listen(2) and chmod(2) calls creates a
race condition that can be used by another process to bypass desired Unix
socket permissions on startup.
Hashes
Algorithm : SHA256
Hash : 023E522498437AE477588AE4D9D50096182A02050A4D032BD0C3CBB7D7ED19CE
Path : D:\a\redis-windows\redis-windows\Redis-7.0.14-Windows-x64.tar.gz
Algorithm : SHA256
Hash : EE8D327742F50ED73F0BD8D61878C73A72489B15CD3C96C4E90E8B72CCCAB7BA
Path : D:\a\redis-windows\redis-windows\Redis-7.0.14-Windows-x64-with-Service.tar.gz
From workflow: https://github.com/redis-windows/redis-windows/actions/runs/6558182743
Published by yes8080 about 1 year ago
Upgrade urgency SECURITY: See security fixes below.
Security fixes
- (CVE-2023-45145) The wrong order of listen(2) and chmod(2) calls creates a
race condition that can be used by another process to bypass desired Unix
socket permissions on startup.
Hashes
Algorithm : SHA256
Hash : 682C2114B547E70C918AE0A1285FAC74D9090A0FBCF3E179843B607D56E998A8
Path : D:\a\redis-windows\redis-windows\Redis-6.2.14-Windows-x64.tar.gz
Algorithm : SHA256
Hash : 5160F04D8E382191B4597A152E49B73F7138F3098BB45E382665196818ED3354
Path : D:\a\redis-windows\redis-windows\Redis-6.2.14-Windows-x64-with-Service.tar.gz
From workflow: https://github.com/redis-windows/redis-windows/actions/runs/6558147009
Published by yes8080 about 1 year ago
Upgrade urgency SECURITY: See security fixes below.
Security Fixes
- (CVE-2023-41053) Redis does not correctly identify keys accessed by SORT_RO and
as a result may grant users executing this command access to keys that are not
explicitly authorized by the ACL configuration.
Bug Fixes
- Cluster: fix a race condition where a slot migration may revert on a
subsequent failover or node joining (https://github.com/redis/redis/pull/12344) - Ensure that the function load timeout is disabled during loading from RDB/AOF
and on replicas. (https://github.com/redis/redis/pull/12451) - Fix the assertion when script timeout occurs after it signaled a blocked client (https://github.com/redis/redis/pull/12459)
Hashes
=========
Algorithm : SHA256
Hash : E37F9A0873C7DB164CB8500E7F1822775694C030ACA151E619C664D7D13F4F86
Path : D:\a\redis-windows\redis-windows\Redis-7.0.13-Windows-x64.tar.gz
Algorithm : SHA256
Hash : 947A0BC7907451D96CE46781E269930A4F6A731E8EB3940D29BEF7DA2A850434
Path : D:\a\redis-windows\redis-windows\Redis-7.0.13-Windows-x64-with-Service.tar.gz
From workflow: https://github.com/redis-windows/redis-windows/actions/runs/6106363282
Published by yes8080 about 1 year ago
Upgrade urgency SECURITY: See security fixes below.
Security Fixes
- (CVE-2023-41053) Redis does not correctly identify keys accessed by SORT_RO and,
as a result, may grant users executing this command access to keys that are not
explicitly authorized by the ACL configuration.
Bug Fixes
- Fix crashes when joining a node to an existing 7.0 Redis Cluster (https://github.com/redis/redis/pull/12538)
- Correct request_policy and response_policy command tips on for some admin /
configuration commands (https://github.com/redis/redis/pull/12545, #12530)
Hashes
=========
Algorithm : SHA256
Hash : C8E4BB7706689B154BED0681194160679370E4C42531DF60A39CBB855ACADED7
Path : D:\a\redis-windows\redis-windows\Redis-7.2.1-Windows-x64.tar.gz
Algorithm : SHA256
Hash : 37F92B2186DDF1B48E4346F2F8B5F6496CF318DED4A51CC29436A907851218E5
Path : D:\a\redis-windows\redis-windows\Redis-7.2.1-Windows-x64-with-Service.tar.gz
From workflow: https://github.com/redis-windows/redis-windows/actions/runs/6104387284
Published by yes8080 over 1 year ago
Upgrade urgency SECURITY: See security fixes below.
Security Fixes:
- (CVE-2022-24834) A specially crafted Lua script executing in Redis can trigger
a heap overflow in the cjson and cmsgpack libraries, and result in heap
corruption and potentially remote code execution. The problem exists in all
versions of Redis with Lua scripting support, starting from 2.6, and affects
only authenticated and authorized users. - (CVE-2023-36824) Extracting key names from a command and a list of arguments
may, in some cases, trigger a heap overflow and result in reading random heap
memory, heap corruption and potentially remote code execution. Specifically:
using COMMAND GETKEYS* and validation of key names in ACL rules.
Bug Fixes
- Re-enable downscale rehashing while there is a fork child (https://github.com/redis/redis/pull/12276)
- Fix possible hang in HRANDFIELD, SRANDMEMBER, ZRANDMEMBER when used with
<count>(https://github.com/redis/redis/pull/12276) - Improve fairness issue in RANDOMKEY, HRANDFIELD, SRANDMEMBER, ZRANDMEMBER, SPOP, and eviction (https://github.com/redis/redis/pull/12276)
- Fix WAIT to be effective after a blocked module command being unblocked (https://github.com/redis/redis/pull/12220)
- Avoid unnecessary full sync after master restart in a rare case (https://github.com/redis/redis/pull/12088)
Hashes
Algorithm : SHA256
Hash : 4D705BEA80227A5459E7348A231650F66A753C4537867B730CA9CF00BCD7E3CF
Path : D:\a\redis-windows\redis-windows\Redis-7.0.12-Windows-x64.tar.gz
Algorithm : SHA256
Hash : F61CF0D5927975B233F9052960DEE23B0E326E91FD6FFE0249793282E4B729C3
Path : D:\a\redis-windows\redis-windows\Redis-7.0.12-Windows-x64-with-Service.tar.gz
From workflow: https://github.com/redis-windows/redis-windows/actions/runs/5526888355
Published by yes8080 over 1 year ago
Upgrade urgency SECURITY: See security fixes below.
Security Fixes:
- (CVE-2022-24834) A specially crafted Lua script executing in Redis can trigger
a heap overflow in the cjson and cmsgpack libraries, and result in heap
corruption and potentially remote code execution. The problem exists in all
versions of Redis with Lua scripting support, starting from 2.6, and affects
only authenticated and authorized users.
Bug Fixes
- Re-enable downscale rehashing while there is a fork child (https://github.com/redis/redis/pull/12276)
Hashes
Algorithm : SHA256
Hash : 29089A0F015DCED9AFC5763094FC195BA8CC6F7B47CFF28A7D36AFD21018CFD6
Path : D:\a\redis-windows\redis-windows\Redis-6.2.13-Windows-x64.tar.gz
Algorithm : SHA256
Hash : 1DAC994D15F49328B5116EF591C3D4778DB2507E82BAED8EF8EF91A2161552B7
Path : D:\a\redis-windows\redis-windows\Redis-6.2.13-Windows-x64-with-Service.tar.gz
From workflow: https://github.com/redis-windows/redis-windows/actions/runs/5736391562
Published by yes8080 over 1 year ago
Upgrade urgency SECURITY: See security fixes below.
Security Fixes:
- (CVE-2022-24834) A specially crafted Lua script executing in Redis can trigger
a heap overflow in the cjson and cmsgpack libraries, and result in heap
corruption and potentially remote code execution. The problem exists in all
versions of Redis with Lua scripting support, starting from 2.6, and affects
only authenticated and authorized users.
Bug Fixes
- Re-enable downscale rehashing while there is a fork child (https://github.com/redis/redis/pull/12276)
Hashes
Algorithm : SHA256
Hash : FECA133128B482DF02F14BC1F23D83E7FF7A314474A708ED16CAEBBD4FF3438C
Path : D:\a\redis-windows\redis-windows\Redis-6.0.20-Windows-x64.tar.gz
Algorithm : SHA256
Hash : 09DFDE8478477F2D29CC9F1488F5493BFF427923DC82B968B4126A423EE1F566
Path : D:\a\redis-windows\redis-windows\Redis-6.0.20-Windows-x64-with-Service.tar.gz
From workflow: https://github.com/redis-windows/redis-windows/actions/runs/5515624354
Published by yes8080 over 1 year ago
Upgrade urgency: SECURITY, contains fixes to security issues.
Security Fixes:
- (CVE-2023-28856) Authenticated users can use the HINCRBYFLOAT command to create
an invalid hash field that will crash Redis on access
Bug Fixes
- Fix CLIENT REPLY OFF|SKIP to not silence push notifications (https://github.com/redis/redis/pull/11875)
- Disconnect pub-sub subscribers when revoking allchannels permission (https://github.com/redis/redis/pull/11992)
- Trim excessive memory usage in stream nodes when exceeding
stream-node-max-bytes(https://github.com/redis/redis/pull/11885)
Hashes
Algorithm : SHA256
Hash : F39C259417FE9A4F665F31B8434ABD1B55FA113AF7D3B6D38DB53C50C0EABDB0
Path : D:\a\redis-windows\redis-windows\Redis-6.2.12-Windows-x64.tar.gz
Algorithm : SHA256
Hash : 6112C33EBF3E18377F3869ECAC27CA845B468B239256F4A3B86C03D3EBAD1678
Path : D:\a\redis-windows\redis-windows\Redis-6.2.12-Windows-x64-with-Service.tar.gz
From workflow: https://github.com/redis-windows/redis-windows/actions/runs/5286181847
Published by yes8080 over 1 year ago
Upgrade urgency: SECURITY, contains fixes to security issues.
Security Fixes:
- (CVE-2023-28856) Authenticated users can use the HINCRBYFLOAT command to create
an invalid hash field that will crash Redis on access
Bug Fixes
- Fix CLIENT REPLY OFF|SKIP to not silence push notifications (https://github.com/redis/redis/pull/11875)
Hashes
Algorithm : SHA256
Hash : 8129B3A99037048A418E0DA7E4D7F4F401E9703CAEAACA399BE29C49F1757759
Path : D:\a\redis-windows\redis-windows\Redis-6.0.19-Windows-x64.tar.gz
Algorithm : SHA256
Hash : 6755588D326BE16419A01460EDD6F4485F55BE7BB35E4CB99C483701D413471F
Path : D:\a\redis-windows\redis-windows\Redis-6.0.19-Windows-x64-with-Service.tar.gz
From workflow: https://github.com/redis-windows/redis-windows/actions/runs/5286182990
Published by yes8080 over 1 year ago
Upgrade urgency: SECURITY, contains fixes to security issues.
Security Fixes:
- (CVE-2023-28856) Authenticated users can use the HINCRBYFLOAT command to create
an invalid hash field that will crash Redis on access
Bug Fixes
- Add a missing fsync of AOF file in rare cases (https://github.com/redis/redis/pull/11973)
- Disconnect pub-sub subscribers when revoking allchannels permission (https://github.com/redis/redis/pull/11992)
Platform / toolchain support related improvements
- Fix a compiler fortification induced crash when used with link time optimizations (https://github.com/redis/redis/pull/11982)
Hashes
Algorithm : SHA256
Hash : 9F1B3F183A6A5A2A8481DD158927385671A2B3AED97995A7442078B8D3B753EA
Path : D:\a\redis-windows\redis-windows\Redis-7.0.11-Windows-x64.tar.gz
Algorithm : SHA256
Hash : BEE607FF70EE9A9F0D4BD564C6800B32B9D0B9EABA9B9EAB594991BB2E3EFD9E
Path : D:\a\redis-windows\redis-windows\Redis-7.0.11-Windows-x64-with-Service.tar.gz
From workflow: https://github.com/redis-windows/redis-windows/actions/runs/5286180443
Published by yes8080 over 1 year ago
Upgrade urgency: SECURITY, contains fixes to security issues.
Security Fixes:
- (CVE-2023-28425) Specially crafted MSETNX command can lead to assertion and denial-of-service
Bug Fixes
- Large blocks of replica client output buffer may lead to PSYNC loops and unnecessary memory usage (https://github.com/redis/redis/pull/11666)
- Fix CLIENT REPLY OFF|SKIP to not silence push notifications (https://github.com/redis/redis/pull/11875)
- Trim excessive memory usage in stream nodes when exceeding
stream-node-max-bytes(https://github.com/redis/redis/pull/11885) - Fix module RM_Call commands failing with OOM when maxmemory is changed to zero (https://github.com/redis/redis/pull/11319)
Hashes
=========
Algorithm : SHA256
Hash : 2C4BA73EE0D34141F2EF848E210F8A85E4F871BB63838F63CBE350E124AA8F5C
Path : D:\a\redis-windows\redis-windows\Redis-7.0.10-Windows-x64.tar.gz
Algorithm : SHA256
Hash : 1E620E1855DB6DD9F6FDA149E0B6682EF9C64DC8F1A1CBB3549662EB6ABB2808
Path : D:\a\redis-windows\redis-windows\Redis-7.0.10-Windows-x64-with-Service.tar.gz
From workflow: https://github.com/redis-windows/redis-windows/actions/runs/5286185059
Published by yes8080 over 1 year ago
Upgrade urgency: SECURITY, contains fixes to security issues.
Security Fixes:
- (CVE-2023-25155) Specially crafted SRANDMEMBER, ZRANDMEMBER, and HRANDFIELD
commands can trigger an integer overflow, resulting in a runtime assertion
and termination of the Redis server process. - (CVE-2022-36021) String matching commands (like SCAN or KEYS) with a specially
crafted pattern to trigger a denial-of-service attack on Redis, causing it to
hang and consume 100% CPU time.
Bug Fixes
- Fix a crash when reaching the maximum invalidations limit of client-side tracking (https://github.com/redis/redis/pull/11814)
- Fix cluster inbound link keepalive time (https://github.com/redis/redis/pull/11785)
- Make sure that fork child doesn't do incremental rehashing (https://github.com/redis/redis/pull/11692)
Performance and resource utilization improvements
- Avoid realloc to reduce size of strings when it is unneeded (https://github.com/redis/redis/pull/11766)
Hashes
Algorithm : SHA256
Hash : 962C2C345D2D36FD4D796D72F3AB9E4BA42464690366BAFE02307CF8780C5F77
Path : D:\a\redis-windows\redis-windows\Redis-6.2.11-Windows-x64.tar.gz
Algorithm : SHA256
Hash : A6E8F8DD27C8F3B1EE1472B213DFDC0A5C22E8C9FF0D20CBDC99DC5FFA5303FB
Path : D:\a\redis-windows\redis-windows\Redis-6.2.11-Windows-x64-with-Service.tar.gz
From workflow: https://github.com/redis-windows/redis-windows/actions/runs/5286186914
