-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Wed, 13 May 2026 12:00:00 +0800 Source: redis Binary: redis-sentinel redis-server redis-tools redis-tools-dbgsym Architecture: amd64 Version: 5:7.0.15-1~deb12u7 Distribution: bookworm-security Urgency: high Maintainer: all / amd64 / i386 Build Daemon (x86-conova-01) Changed-By: Aron Xu Description: redis-sentinel - Persistent key-value database with network interface (monitoring) redis-server - Persistent key-value database with network interface redis-tools - Persistent key-value database with network interface (client) Changes: redis (5:7.0.15-1~deb12u7) bookworm-security; urgency=high . * CVE-2025-67733: RESP protocol injection via Lua error_reply. A user could manipulate data read by a connection by injecting CR/LF sequences into a Redis error reply. 6910256443c7 ("Strip CRLF from error and simple string replies"). * CVE-2026-21863: Remote DoS with malformed Cluster bus message. A peer could send a crafted PING/PONG/MEET packet whose gossip count or ping-extension header exceeds the received packet length, causing out-of-bounds reads and a server crash. Checksums-Sha1: d1ca82d4f9fb1dbdd8315be93b1a0c4098e4074f 34572 redis-sentinel_7.0.15-1~deb12u7_amd64.deb 0541bb2ab4451b7beffd79d46b25bebed85e3500 73392 redis-server_7.0.15-1~deb12u7_amd64.deb 1f220db1d0c959392bbf0ffc2efca8549b67f1dc 2783424 redis-tools-dbgsym_7.0.15-1~deb12u7_amd64.deb 2f83e78965059db39b7e67d254ec5d11dbf5572c 991888 redis-tools_7.0.15-1~deb12u7_amd64.deb cd52e42bf21c4e711cb66bd9322051518f6a5e70 7755 redis_7.0.15-1~deb12u7_amd64-buildd.buildinfo Checksums-Sha256: a1d06179ad6892c11cb1ef01d8597c75a0235cff755bc5af56bdf46c5247e171 34572 redis-sentinel_7.0.15-1~deb12u7_amd64.deb 1f43e46f153d1653586e72871dd3e2ea08acba5c3d2b38b02f90d63d16352cac 73392 redis-server_7.0.15-1~deb12u7_amd64.deb bf50bbb4df44e3247fe51e655acdf8d2b3792a72041f4bbbedc40ba841498cc7 2783424 redis-tools-dbgsym_7.0.15-1~deb12u7_amd64.deb 3c8cd27847c6a06b6f6c29e7415a9057462a89661e3a8e2eb8dd5b2d7830bb40 991888 redis-tools_7.0.15-1~deb12u7_amd64.deb cfdb6399c5b22b30b3f0ab5fa6c3793690e9582b6b11e7d9e7c1bc0d6baec6ed 7755 redis_7.0.15-1~deb12u7_amd64-buildd.buildinfo Files: 0d7992100ffe33eeb71d300e4225ef9b 34572 database optional redis-sentinel_7.0.15-1~deb12u7_amd64.deb 2113dd191f9491f5e1c6b43e3dba4890 73392 database optional redis-server_7.0.15-1~deb12u7_amd64.deb d61c91406ad4a5156235c67da0b48875 2783424 debug optional redis-tools-dbgsym_7.0.15-1~deb12u7_amd64.deb 36676d2ef6ebff07773c53b495783eb3 991888 database optional redis-tools_7.0.15-1~deb12u7_amd64.deb b7e33ac5bd5c1754e6825282641bf487 7755 database optional redis_7.0.15-1~deb12u7_amd64-buildd.buildinfo -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEE7cQ9mRD4+dWjjrb6PkCWRKsh20cFAmoEzLcACgkQPkCWRKsh 20eAmg/8Cq8gXLr7zOgcuO+rfizNDv9i63FFma06VwF4KN1WP2K/czOSfmkcfJJa Oj8vvaMUnfsjI6xrJUreqe+KoGGANtctCpv3SFaFmCkIAqHer2jT9phOx5jUBgLi rWfpmyPE7gEXiAuOZso6TRcsRPQ5Od7YpDc3GbBHf8hKUuilk938RRg3MmL4GXNe jEdHbWLElnayr/dGukQ4jasawuiezrolNMtnKUQ30cN18HM9+xbdFYvvbO6xhJtl tSpP5LgEEa2amVYe9MQx8zthOw7VFQp2UZ/h6057adRrNTYjmU8W+2kQmN30GTDB lvXBS6CnK0b0phEPBaiO3DiuW1QDUuQpmsFX2iJ9BM1BV8cuV/0VV4U/1Qw235MZ l2nzN9kxnqEGteTQNoURiYMKHVSO/TjvRoP1F7of0bbBUb1ZF39x+fCHQac+ldzm /1TGtX6quwxBU1zQNYoLyvGpU0L5fzI+PWqIxu6DkDv66wnfLIO2vOmdUMyw5q4z JzgzkzQclxGQe8UswEyLNKVpPl6nZTA5M5il5pSWoBy36DrtrFaERfs/DmYp30Ur E6p8KuANMCbAxOlh42tmhgu1WK9+NyVHDQV8zZ0/AZqRQOBEsJdBiEl3ve4Zf3sk KdSYvUYvrOqOd9nZmRnLCjCv8wd2XeYNgOhEVED0BIri1FBD8oo= =nHEf -----END PGP SIGNATURE-----