Home Explore Help
Register Sign In
PUBLIC_REPOS
/
buildroot
mirror of git://git.buildroot.net/buildroot
2
1
Fork 0
Files
Browse Source

package/redis: security bump to v8.0.3

For release note, see:
https://github.com/redis/redis/releases/tag/8.0.3

This fixes the following vulnerabilities:

- CVE-2025-32023:
    An authenticated user may use a specially crafted string to trigger a
    stack/heap out of bounds write on hyperloglog operations, potentially
    leading to remote code execution.
    https://github.com/redis/redis/security/advisories/GHSA-rp2m-q4j6-gr43

- CVE-2025-48367:
    An unauthenticated connection can cause repeated IP protocol errors,
    leading to client starvation and, ultimately, a denial of service.
    https://github.com/redis/redis/security/advisories/GHSA-4q32-c38c-pwgq

Signed-off-by: Titouan Christophe <titouan.christophe@mind.be>
[Julien: add link to release note]
Signed-off-by: Julien Olivain <ju.o@free.fr>
Titouan Christophe 4 weeks ago
parent
7981df0c82
commit
c87ddd6ee4
2 changed files with 2 additions and 2 deletions
Split View Show Diff Stats
  1. 1 1
      package/redis/redis.hash
  2. 1 1
      package/redis/redis.mk

+ 1 - 1
package/redis/redis.hash
View File 

@@ -1,5 +1,5 @@
 
 # From https://github.com/redis/redis-hashes/blob/master/README
 
-sha256  e9296b67b54c91befbcca046d67071c780a1f7c9f9e1ae5ed94773c3bb9b542f  redis-8.0.2.tar.gz
 
+sha256  33f37290b00b14e9a884dd4dcba335febd63ea16c51609d34fa41e031ad587df  redis-8.0.3.tar.gz
 
 
 # Locally calculated
 
 sha256  4a0e416b9537688f30dfe69ddaceb2ca64d96b7df02a0a6760d376890ddc4e40  LICENSE.txt

+ 1 - 1
package/redis/redis.mk
View File 

@@ -4,7 +4,7 @@
 
 #
 
 ################################################################################
 
 
-REDIS_VERSION = 8.0.2
 
+REDIS_VERSION = 8.0.3
 
 REDIS_SITE = http://download.redis.io/releases
 
 REDIS_LICENSE = \
 
 	AGPL-3.0 or SSPL-1.0 or RSAL-2.0 (core); \