-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 23 Jul 2025 13:01:37 -0700
Source: redis
Binary: redis-sentinel redis-server redis-tools redis-tools-dbgsym
Architecture: mipsel
Version: 5:7.0.15-1~deb12u5
Distribution: bookworm-security
Urgency: high
Maintainer: mipsel Build Daemon (mipsel-osuosl-04) <buildd_mips64el-mipsel-osuosl-04@buildd.debian.org>
Changed-By: Chris Lamb <lamby@debian.org>
Description:
 redis-sentinel - Persistent key-value database with network interface (monitoring)
 redis-server - Persistent key-value database with network interface
 redis-tools - Persistent key-value database with network interface (client)
Closes: 1106822 1108975 1108981
Changes:
 redis (5:7.0.15-1~deb12u5) bookworm-security; urgency=high
 .
   * CVE-2025-27151: Fix an stack-based buffer overflow in redis-check-aof
     caused by the use of memcpy with strlen(filepath) when copying a
     user-supplied file path into a fixed-size stack buffer. This allowed an
     attacker to overflow the stack and potentially achieve arbitrary code
     execution. (Closes: #1106822)
   * CVE-2025-32023: An authenticated user may have used a specially-crafted
     string to trigger a stack/heap out-of-bounds write during hyperloglog
     operations, potentially leading to remote code execution. Installations
     that used Redis' ACL system to restrict hyperloglog "HLL" commands are
     unaffected by this issue. (Closes: #1108975)
   * CVE-2025-48367: An unauthenticated connection could have caused repeated IP
     protocol errors, leading to client starvation and ultimately become a
     Denial of Service (DoS) attack. (Closes: #1108981)
Checksums-Sha1:
 2a40e1ed64dbd8cc6ad62f92718eb9ca1e5f7ca1 34252 redis-sentinel_7.0.15-1~deb12u5_mipsel.deb
 92e87dadc95ec6af446a2c6c65041a3df39f7d4b 73044 redis-server_7.0.15-1~deb12u5_mipsel.deb
 c2e07d0abf33ccfaaebe713f88b496c12105d702 2727096 redis-tools-dbgsym_7.0.15-1~deb12u5_mipsel.deb
 ba9ef8645fcb2b754af53cea4327c4be5399e04e 884980 redis-tools_7.0.15-1~deb12u5_mipsel.deb
 a501082d08e3a25e639ab20fed682db8694fd623 7527 redis_7.0.15-1~deb12u5_mipsel-buildd.buildinfo
Checksums-Sha256:
 ecc3f04edf001936ac450c5b34aacc4f98bbee3233a58fdd6c9289ce1e65ddc9 34252 redis-sentinel_7.0.15-1~deb12u5_mipsel.deb
 e5d1e7afa1019fd25c5c784fd57dfe585649b417e96b9bf8ed79383c7cedff73 73044 redis-server_7.0.15-1~deb12u5_mipsel.deb
 dfd683925595e92ef34921ee08edce86c2ac148e0df4885f382064a22b532283 2727096 redis-tools-dbgsym_7.0.15-1~deb12u5_mipsel.deb
 e5e7dd6a27fe938adfdeba968cab52e02b1fc13c74680bb7fe607e83b32cf874 884980 redis-tools_7.0.15-1~deb12u5_mipsel.deb
 943f53186ad911f0bd1cf5b485a389c055e272b8a3fdb0c2ec3be3232337492a 7527 redis_7.0.15-1~deb12u5_mipsel-buildd.buildinfo
Files:
 190aba307bbf625046ae6380fe08f72b 34252 database optional redis-sentinel_7.0.15-1~deb12u5_mipsel.deb
 50b6602375bce6856b7b4800cb09bda4 73044 database optional redis-server_7.0.15-1~deb12u5_mipsel.deb
 bbc413a4b9bb04af17f7434ab59afc3e 2727096 debug optional redis-tools-dbgsym_7.0.15-1~deb12u5_mipsel.deb
 20dc5e8fea727ce6d312e4277883aceb 884980 database optional redis-tools_7.0.15-1~deb12u5_mipsel.deb
 3074c222302dc50e26423e0bf074a5f2 7527 database optional redis_7.0.15-1~deb12u5_mipsel-buildd.buildinfo

-----BEGIN PGP SIGNATURE-----
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=e4kx
-----END PGP SIGNATURE-----