-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 13 May 2026 12:00:00 +0800
Source: redis
Binary: redis-sentinel redis-server redis-tools redis-tools-dbgsym
Architecture: i386
Version: 5:7.0.15-1~deb12u7
Distribution: bookworm-security
Urgency: high
Maintainer: i386 Build Daemon (x86-grnet-01) <buildd_amd64-x86-grnet-01@buildd.debian.org>
Changed-By: Aron Xu <aron@debian.org>
Description:
 redis-sentinel - Persistent key-value database with network interface (monitoring)
 redis-server - Persistent key-value database with network interface
 redis-tools - Persistent key-value database with network interface (client)
Changes:
 redis (5:7.0.15-1~deb12u7) bookworm-security; urgency=high
 .
   * CVE-2025-67733: RESP protocol injection via Lua error_reply. A user
     could manipulate data read by a connection by injecting CR/LF
     sequences into a Redis error reply.
     6910256443c7 ("Strip CRLF from error and simple string replies").
   * CVE-2026-21863: Remote DoS with malformed Cluster bus message. A peer
     could send a crafted PING/PONG/MEET packet whose gossip count or
     ping-extension header exceeds the received packet length, causing
     out-of-bounds reads and a server crash.
Checksums-Sha1:
 87e5d98f56df5268e3ef160a174c53b9bdd3dce6 34572 redis-sentinel_7.0.15-1~deb12u7_i386.deb
 9fa878a013acf46d6fd3ba17cd63b92dc754e1dc 73392 redis-server_7.0.15-1~deb12u7_i386.deb
 47f9a6306842a7f6b47257a476472571e42878de 2453980 redis-tools-dbgsym_7.0.15-1~deb12u7_i386.deb
 f5d3fafd5e3bf047177aee86e20bf6de02d6fd5d 1058880 redis-tools_7.0.15-1~deb12u7_i386.deb
 8f1ec73d57a1cefa5b13d664275025a7fdf0481b 7692 redis_7.0.15-1~deb12u7_i386-buildd.buildinfo
Checksums-Sha256:
 87fea8d5e13631934eae0e0685156031a85cc4d8a7c344155dab327871baca11 34572 redis-sentinel_7.0.15-1~deb12u7_i386.deb
 cdc1d6c4204726b91d4a3639884537d6ba40ca4b58d131dac445cb4fb34e8b93 73392 redis-server_7.0.15-1~deb12u7_i386.deb
 39baf1c6d947e9911f3ae76557d379cb6fbcd5d38dd08c072a06f8c92f9cb74c 2453980 redis-tools-dbgsym_7.0.15-1~deb12u7_i386.deb
 e9be7fe4753e1a09d0486b0be344830d7463d8d13d5c4f640bf56e00efd59021 1058880 redis-tools_7.0.15-1~deb12u7_i386.deb
 288ffe91c67c8660f7f692b2a0744aa2797b9429b04943e09e047a47ea750a56 7692 redis_7.0.15-1~deb12u7_i386-buildd.buildinfo
Files:
 b977d0dcd8af39fe78798e9905ed23e7 34572 database optional redis-sentinel_7.0.15-1~deb12u7_i386.deb
 947b9d4e7bb87bb517f12ae2adbb9ea8 73392 database optional redis-server_7.0.15-1~deb12u7_i386.deb
 c4ff6137f737c4624f028cf0fe4eb5d7 2453980 debug optional redis-tools-dbgsym_7.0.15-1~deb12u7_i386.deb
 1baaec6a4f892030c82fd5f3953375dd 1058880 database optional redis-tools_7.0.15-1~deb12u7_i386.deb
 5303ee4ed6f04ea9ec0b73317e00dddb 7692 database optional redis_7.0.15-1~deb12u7_i386-buildd.buildinfo

-----BEGIN PGP SIGNATURE-----
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=A751
-----END PGP SIGNATURE-----