-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Wed, 13 May 2026 12:00:00 +0800 Source: redis Binary: redis-sentinel redis-server redis-tools redis-tools-dbgsym Architecture: arm64 Version: 5:7.0.15-1~deb12u7 Distribution: bookworm-security Urgency: high Maintainer: arm64 Build Daemon (arm-ubc-01) Changed-By: Aron Xu Description: redis-sentinel - Persistent key-value database with network interface (monitoring) redis-server - Persistent key-value database with network interface redis-tools - Persistent key-value database with network interface (client) Changes: redis (5:7.0.15-1~deb12u7) bookworm-security; urgency=high . * CVE-2025-67733: RESP protocol injection via Lua error_reply. A user could manipulate data read by a connection by injecting CR/LF sequences into a Redis error reply. 6910256443c7 ("Strip CRLF from error and simple string replies"). * CVE-2026-21863: Remote DoS with malformed Cluster bus message. A peer could send a crafted PING/PONG/MEET packet whose gossip count or ping-extension header exceeds the received packet length, causing out-of-bounds reads and a server crash. Checksums-Sha1: b95eb775f3dbea4cd95af915687c4f3b98910800 34572 redis-sentinel_7.0.15-1~deb12u7_arm64.deb 726ab9b17751017f66c33cf5a8ef1ed0597da66f 73392 redis-server_7.0.15-1~deb12u7_arm64.deb 26dbd9f7bc301403e30f69fcade685facbc82188 2753136 redis-tools-dbgsym_7.0.15-1~deb12u7_arm64.deb cb6db5dfa4158624207db4a50122b077c5b82a28 900580 redis-tools_7.0.15-1~deb12u7_arm64.deb f3fbaffaaf3e5cae0db756c53221131a670c7afa 7770 redis_7.0.15-1~deb12u7_arm64-buildd.buildinfo Checksums-Sha256: 1b3251619d46b0fc253fa028a648350dd5672132a522618fa0cbea211581c53c 34572 redis-sentinel_7.0.15-1~deb12u7_arm64.deb ebde2a3c6b8d65fe655cc2cd24f7feaf30df538226e61df6941f966acef75415 73392 redis-server_7.0.15-1~deb12u7_arm64.deb f587a198e5f1858bd739777dc9f8ffae0ef7db5e1402d6b816dbb3cad3ae05a5 2753136 redis-tools-dbgsym_7.0.15-1~deb12u7_arm64.deb a25bf48365275f484203e35932a5105b40ac5d90fa873473b1c608918c777588 900580 redis-tools_7.0.15-1~deb12u7_arm64.deb 5f1507f19ede8401103ede0d6007320e4db6e2dbcefd5548b72167a75ae52932 7770 redis_7.0.15-1~deb12u7_arm64-buildd.buildinfo Files: 93efd2da1c7d4f9a069d4b25e1e7b3a1 34572 database optional redis-sentinel_7.0.15-1~deb12u7_arm64.deb 5ea79c0ad9269b4739984a23c41e4757 73392 database optional redis-server_7.0.15-1~deb12u7_arm64.deb f6183c1b8ac43892a0a798dd1ea64a77 2753136 debug optional redis-tools-dbgsym_7.0.15-1~deb12u7_arm64.deb 67753fdb9cdcb7d253f8eaebfb904906 900580 database optional redis-tools_7.0.15-1~deb12u7_arm64.deb d31f0f554a6d6cc73d49dc4de067a017 7770 database optional redis_7.0.15-1~deb12u7_arm64-buildd.buildinfo -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEE0Ha//LlsGOpbQ/H4xqCFmsOWgoYFAmoEzEcACgkQxqCFmsOW goYcUg/8DFg8uTWbAMzEZTg6RtR3SadwAxWEnMPH/e8MwTFgJlPcmdE6n3EjvC3h SXi687bUz8Kwdd54qGbS84MMEsYottM5pgZ63k3Wlg1MI6qr5s3d/qScuuFHTcar c7AgdRvgE6GneyivtU8wVzkQUqtgvTsXhCCtbjSSaIOA34eY1kV6lgOERNMW1LyZ GF11hPqcSPO3LGJfap14o8W5C6prYum2TmLOY9LVyHuTg3ztnMaSwAiURzKCcY3u nhcpuc1968R0F+UnFKDN/dCevd2xzijgYYgJVPBAjV8CUCzvSkZQtKK51Ypyh0Vn ejNq918jDhdexz3OS0xYeMZwZi4iNyPumN1BTkgsfjtpEy9uDSHDJBX4XY0XWCdl ueusCFkUHn95LJOI659LjjYs2kBhBMb53b1aiyq63/lPrGidfIr0BU7F72crzZC6 6ugQ7iywDHdAcKPG5eZwMebMU2Mu0/2ZAM4Dwk0TdqPdKkBuWwoCTkw/Q8rN12FE nbqUsClHbAZ6TAeacOxnirfZtzm8eSfexKkFcYyFTtjtwY9/6EWrtDr3KFsuEoCA fOkql5ECBiz5w/62hSyS5PK2WoLeSC8Om9pLUP4nstUkzhzM/k+HUVucQKTWG4zz 10B7taoQaClj9xRzJ27/PdNyssExEN4MHgkKH8aE5aJUb3UdpAw= =hg0L -----END PGP SIGNATURE-----