svn commit: r566399 - head/databases/redis5
Sergey A. Osokin
osa at FreeBSD.org
Tue Feb 23 13:59:42 UTC 2021
Author: osa
Date: Tue Feb 23 13:59:42 2021
New Revision: 566399
URL: https://svnweb.freebsd.org/changeset/ports/566399
Log:
Security update to the recent version 5.0.11 if you use 32bit build of redis.
Integer overflow on 32-bit systems (CVE-2021-21309):
Redis 4.0 or newer uses a configurable limit for the maximum supported bulk
input size. By default, it is 512MB which is a safe value for all platforms.
If the limit is significantly increased, receiving a large request from a client
may trigger several integer overflow scenarios, which would result with buffer
overflow and heap corruption.
Various bugfixes.
Modified:
head/databases/redis5/Makefile
head/databases/redis5/distinfo
Modified: head/databases/redis5/Makefile
==============================================================================
--- head/databases/redis5/Makefile Tue Feb 23 13:57:29 2021 (r566398)
+++ head/databases/redis5/Makefile Tue Feb 23 13:59:42 2021 (r566399)
@@ -2,7 +2,7 @@
# $FreeBSD$
PORTNAME= redis5
-PORTVERSION= 5.0.10
+PORTVERSION= 5.0.11
CATEGORIES= databases
MASTER_SITES= https://download.redis.io/releases/
DISTNAME= redis-${PORTVERSION}
Modified: head/databases/redis5/distinfo
==============================================================================
--- head/databases/redis5/distinfo Tue Feb 23 13:57:29 2021 (r566398)
+++ head/databases/redis5/distinfo Tue Feb 23 13:59:42 2021 (r566399)
@@ -1,3 +1,3 @@
-TIMESTAMP = 1610583961
-SHA256 (redis-5.0.10.tar.gz) = e30a5e7d1593a715cdda2a82deb90190816d06c9d1dc1ef5b36874878c683382
-SIZE (redis-5.0.10.tar.gz) = 1990507
+TIMESTAMP = 1614087571
+SHA256 (redis-5.0.11.tar.gz) = 418135c453a94aac24c24243b041fb978fcc3ea4e1e1f996c1d64b16ae6ac1aa
+SIZE (redis-5.0.11.tar.gz) = 1995013
More information about the svn-ports-all
mailing list