Redis - 6.2.12
Security
Upgrade urgency: SECURITY, contains fixes to security issues.
Security Fixes:
* (CVE-2023-28856) Authenticated users can use the HINCRBYFLOAT command to create
an invalid hash field that will crash Redis on access
Bug Fixes
- Fix CLIENT REPLY OFF|SKIP to not silence push notifications (#11875)
- Disconnect pub-sub subscribers when revoking allchannels permission (#11992)
- Trim excessive memory usage in stream nodes when exceeding
stream-node-max-bytes
(#11885)
Security
Details
date
April 17, 2023, 12:56 p.m.
name
6.2.12
type
Patch
official page
👇
Register or login to:
- 🔍View and search all Redis releases.
- 🛠️Create and share lists to track your tools.
- 🚨Setup notifications for major, security, feature or patch updates.
- 🚀Much more coming soon!