-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Wed, 13 May 2026 12:00:00 +0800 Source: redis Binary: redis-sentinel redis-server redis-tools redis-tools-dbgsym Architecture: armhf Version: 5:7.0.15-1~deb12u7 Distribution: bookworm-security Urgency: high Maintainer: armhf Build Daemon (arm-ubc-06) Changed-By: Aron Xu Description: redis-sentinel - Persistent key-value database with network interface (monitoring) redis-server - Persistent key-value database with network interface redis-tools - Persistent key-value database with network interface (client) Changes: redis (5:7.0.15-1~deb12u7) bookworm-security; urgency=high . * CVE-2025-67733: RESP protocol injection via Lua error_reply. A user could manipulate data read by a connection by injecting CR/LF sequences into a Redis error reply. 6910256443c7 ("Strip CRLF from error and simple string replies"). * CVE-2026-21863: Remote DoS with malformed Cluster bus message. A peer could send a crafted PING/PONG/MEET packet whose gossip count or ping-extension header exceeds the received packet length, causing out-of-bounds reads and a server crash. Checksums-Sha1: a1cc69c3c3950aa502ddb3b56e727141b2d4e954 34572 redis-sentinel_7.0.15-1~deb12u7_armhf.deb 53a6257a9717569769ead76a25e4f66f8bb30513 73392 redis-server_7.0.15-1~deb12u7_armhf.deb 13cf1d8cbb95ffd71863967759fb6f51288a9c1c 2610492 redis-tools-dbgsym_7.0.15-1~deb12u7_armhf.deb 6c48f76e0f64076016a37325294fda08c87cbb0a 842492 redis-tools_7.0.15-1~deb12u7_armhf.deb 1cea3fa1cec1234966d1ea48e85f6a395793ebe3 7614 redis_7.0.15-1~deb12u7_armhf-buildd.buildinfo Checksums-Sha256: 3fc74695a932b89b7bfa71bd89e9e899a4c66958e6075c8991284bf90867d6c8 34572 redis-sentinel_7.0.15-1~deb12u7_armhf.deb 6f6b156ddf7f7e249c4bec0e032d53c96a65a9269239103b10901a23c3b2b358 73392 redis-server_7.0.15-1~deb12u7_armhf.deb 26463a119e4622d1e64a9c173f4ec5e78747b2a9279aef41ce10366bc21716de 2610492 redis-tools-dbgsym_7.0.15-1~deb12u7_armhf.deb aeed96484e9be219a0608c037bbb27a843522995e5387d5f2c36b3d075725837 842492 redis-tools_7.0.15-1~deb12u7_armhf.deb f83d6554c516c4e667e53c2462bf2e3e560e6aeb87c24a606d4919cc71a7d170 7614 redis_7.0.15-1~deb12u7_armhf-buildd.buildinfo Files: 93dc3149bb3a5a66937d2c145034f170 34572 database optional redis-sentinel_7.0.15-1~deb12u7_armhf.deb a082e86a421eeef33cde367b47f3d640 73392 database optional redis-server_7.0.15-1~deb12u7_armhf.deb 544df86c9c805208940c4a21d2d27ce7 2610492 debug optional redis-tools-dbgsym_7.0.15-1~deb12u7_armhf.deb 624789d6dc03a5e988704f9f18b8d8c6 842492 database optional redis-tools_7.0.15-1~deb12u7_armhf.deb cea51e09c4e390db11ab3836745c8509 7614 database optional redis_7.0.15-1~deb12u7_armhf-buildd.buildinfo -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEBOUsBrtd5lcy6oRfutMAkCxKbL0FAmoEzCYACgkQutMAkCxK bL0+Vw//YLnHBeRyu1hvLmgBVETfi9EdGw9eulp20aHZZbmeuIVt2Nv3FXHRaE14 gfxqYr0GCpsMhDdXb9iCvHXasLIC3Yu8aWZU7W9nBBIfn0YDnO1qJ89mrqUWxlcD DfowJDIjMwSk0qYwMYg4NIc5Dg6xRJxfT8LVD4/+5SY8OrMn7dd2j3kcsWO+gWZT 2v0Lun2AmsEQwWQSdwgViTrj+GUJWNU5ZpE7Q5W7Hic74Mm+KxBplJ0gqF+Le2ta WqehxjYU9wxw0C/66FWW0y8mJKtN7iQ6Dqb6JlmV94i58Jdz/EY1nvKHWOaDfWFX QqMvZw/4qSkeeKksRmVW3vfqGITYs+VtMgbkPeLCLxifN+zbAvbyiGwJtvpVr/bE DmtUa3NlWlTSqEGgHOerB71JfrrRcl8z1vb/eInwvwAWoKty25MnSHh6YBbjqY3M xObhquIgBByRuMnOBTiE9Zp/8Gz2kZ6hADQIO4xaRq9MGSrg9txJhyhYEio5hB4v bxmo/NJctY6ni0/ImoqgxIOJT9oxZOSdrLTslazZl/P5xH8sMPiy1/R/aRroGxkH DyjhHnK04sBL9kfU4H2Km+35USJcoFMFseytegFHwuh61Cuknl9TNvZfOJb2kV3C 5Kn7SzC3BB0HBvjxhKClqBezQslC5j2GSdOGRGvQDcN/YAEav5c= =ny0o -----END PGP SIGNATURE-----