Overview All releases

Version History

7.2.4 7.2.3 7.2.2 7.2.1 7.2.0 7.2-rc3

7.2-rc2

7.2-rc1

7.0.15 7.0.14 7.0.13 7.0.12 7.0.11 7.0.10 7.0.9 7.0.8 7.0.7 7.0.6 7.0.5 7.0.4 7.0.3 7.0.2 7.0.1 7.0.0

7.0-rc3

7.0-rc2

7.0-rc1

6.2.14 6.2.13 6.2.12 6.2.11 6.2.10 6.2.9 6.2.8 6.2.7

6.2.6

6.2.5

6.2.4

6.2.3

6.2.2

6.2.1

6.2-rc2

6.2-rc1

6.2.0

6.2-rc3

6.0.20 6.0.19

6.0.18

6.0.17

6.0.16

6.0.15

6.0.14

6.0.13

6.0.12

6.0.11

6.0.10

6.0.9

6.0.8

6.0.7

6.0.6

5.0.14

5.0.13

5.0.12

5.0.11

5.0.10

5.0.7

5.0.0

Redis - 6.0.18

Security

Upgrade urgency: SECURITY, contains fixes to security issues.

Security Fixes:
* (CVE-2023-25155) Specially crafted SRANDMEMBER, ZRANDMEMBER, and HRANDFIELD
commands can trigger an integer overflow, resulting in a runtime assertion
and termination of the Redis server process.
* (CVE-2022-36021) String matching commands (like SCAN or KEYS) with a specially
crafted pattern to trigger a denial-of-service attack on Redis, causing it to
hang and consume 100% CPU time.

Bug Fixes

Make sure that fork child doesn't do incremental rehashing (#11692)
Fix cluster inbound link keepalive time (#11785)

Security

Details

date

Feb. 28, 2023, 4:33 p.m.

name

6.0.18

type

Patch

official page

https://github.com/redis/redis/releases/tag/6.0.18

👇

Register or login to:

🔍View and search all Redis releases.
🛠️Create and share lists to track your tools.
🚨Setup notifications for major, security, feature or patch updates.
🚀Much more coming soon!

Continue with GitHub

Continue with Google

or

Username

Email

Password

Password (again)

leave this field blank to prove your humanity