package/redis: bump to 5.0.6
The release notes at https://raw.githubusercontent.com/antirez/redis/5.0/00-RELEASENOTES say: == Upgrade urgency CRITICAL: Only in case of exposed instances to untrusted users. This Redis release, 5.0.6, is a bugfix and enhancement release. The most important bugfix is a corruption related to the HyperLogLog. A malformed HyperLogLog string could cause an invalid access to the memory. At a first glance the vulnerability appears to be not exploitable but just a DoS. The way to trigger the issue is complex, we'll not provide any information about how to do that for the users safety. == Signed-off-by:Titouan Christophe <titouan.christophe@railnova.eu> Signed-off-by:
Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Loading
Please register or sign in to comment