[ubuntu/noble-proposed] valkey 7.2.10+dfsg1-0ubuntu0.1 (Accepted)

Lena Voytek lena.voytek at canonical.com
Thu Aug 21 16:50:43 UTC 2025 

valkey (7.2.10+dfsg1-0ubuntu0.1) noble; urgency=medium

  * New upstream version 7.2.10 (LP: #2115258)
    - Security fixes:
      + CVE-2025-21605: Allocation of Resources Without Limits or Throttling.
      + CVE-2025-32023: Out-of-bounds write during hyperloglog operations.
      + CVE-2025-48367: IP Protocol errors resulting in DoS.
      + CVE-2025-27151: AOF file name length not checked.
    - Bug fixes:
      + Only mark the client reprocessing flag when unblocked on keys.
      + Free module context even if there was no content written in auxsave2.
      + Fix Detect SSL_new() returning NULL in outgoing connections.
      + Correctly cast the extension lengths.
      + Fix cluster myself CLUSTER SLOTS/NODES wrong port after updating
        port/tls-port.
      + Fix replica can't finish failover when config epoch is outdated.
      + Fix CLIENT UNBLOCK ability to unpause paused clients.
      + Fix defrag crash when using FLUSHDB ASYNC in cluster mode.
      + Fix memory leak in forgotten node ping ext code path.
      + Fix module LatencyAddSample still work when latency-monitor-threshold
        is 0.
      + Fix raxRemove crash at memcpy() due to key size exceeds max Rax size.
      + Fix error "SSL routines::bad length" when connTLSWrite is called second
        time with smaller buffer.
      + Fix RANDOMKEY infinite loop during CLIENT PAUSE.
      + Fix adding samples to stream object consumer trees.
      + Fix panic in primary when blocking shutdown after previous block with
        timeout.
      + Fix incorrect lag reported in XINFO GROUPS.

Date: Tue, 24 Jun 2025 15:08:25 -0400
Changed-By: Lena Voytek <lena.voytek at canonical.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/valkey/7.2.10+dfsg1-0ubuntu0.1
-------------- next part --------------
Format: 1.8
Date: Tue, 24 Jun 2025 15:08:25 -0400
Source: valkey
Built-For-Profiles: noudeb
Architecture: source
Version: 7.2.10+dfsg1-0ubuntu0.1
Distribution: noble
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Lena Voytek <lena.voytek at canonical.com>
Launchpad-Bugs-Fixed: 2115258
Changes:
 valkey (7.2.10+dfsg1-0ubuntu0.1) noble; urgency=medium
 .
   * New upstream version 7.2.10 (LP: #2115258)
     - Security fixes:
       + CVE-2025-21605: Allocation of Resources Without Limits or Throttling.
       + CVE-2025-32023: Out-of-bounds write during hyperloglog operations.
       + CVE-2025-48367: IP Protocol errors resulting in DoS.
       + CVE-2025-27151: AOF file name length not checked.
     - Bug fixes:
       + Only mark the client reprocessing flag when unblocked on keys.
       + Free module context even if there was no content written in auxsave2.
       + Fix Detect SSL_new() returning NULL in outgoing connections.
       + Correctly cast the extension lengths.
       + Fix cluster myself CLUSTER SLOTS/NODES wrong port after updating
         port/tls-port.
       + Fix replica can't finish failover when config epoch is outdated.
       + Fix CLIENT UNBLOCK ability to unpause paused clients.
       + Fix defrag crash when using FLUSHDB ASYNC in cluster mode.
       + Fix memory leak in forgotten node ping ext code path.
       + Fix module LatencyAddSample still work when latency-monitor-threshold
         is 0.
       + Fix raxRemove crash at memcpy() due to key size exceeds max Rax size.
       + Fix error "SSL routines::bad length" when connTLSWrite is called second
         time with smaller buffer.
       + Fix RANDOMKEY infinite loop during CLIENT PAUSE.
       + Fix adding samples to stream object consumer trees.
       + Fix panic in primary when blocking shutdown after previous block with
         timeout.
       + Fix incorrect lag reported in XINFO GROUPS.
Checksums-Sha1:
 f07c98fda8cea4312ea0c66e306e21a1d9d15a93 2499 valkey_7.2.10+dfsg1-0ubuntu0.1.dsc
 8e2f72dea80e6f590c04c6970e18f0c3fd5512ad 2473528 valkey_7.2.10+dfsg1.orig.tar.xz
 9a7b8317ef32fca77a4eb012cfbea3c9198f6e0b 18960 valkey_7.2.10+dfsg1-0ubuntu0.1.debian.tar.xz
 f8e232cbc9bed662a5091d053b4f45ac7938a132 7925 valkey_7.2.10+dfsg1-0ubuntu0.1_source.buildinfo
Checksums-Sha256:
 9ed1a310a7aa5044ceb15a0f4134fe655eac5fd68818487cc5165b6e611694c7 2499 valkey_7.2.10+dfsg1-0ubuntu0.1.dsc
 6032ddf3885fecad6dd1534674e8f2704a360b40c3ff9c6e1c609e64309cc328 2473528 valkey_7.2.10+dfsg1.orig.tar.xz
 7e58281f93bcc4b7d7fec5218f29a55b9f7d565ada10ecd1fdf3a8696799a3b6 18960 valkey_7.2.10+dfsg1-0ubuntu0.1.debian.tar.xz
 12fb0b4c04619a8437feeb27e91fad36b3573a409312d7ad91f6d59449c295e2 7925 valkey_7.2.10+dfsg1-0ubuntu0.1_source.buildinfo
Files:
 7f1ba502e83eb22906e9997f3841bf08 2499 database optional valkey_7.2.10+dfsg1-0ubuntu0.1.dsc
 f6b138fc2e227a9e1cfb4514b58830e7 2473528 database optional valkey_7.2.10+dfsg1.orig.tar.xz
 1d788225639273489205a64d9528c230 18960 database optional valkey_7.2.10+dfsg1-0ubuntu0.1.debian.tar.xz
 8a2bee68463bf05bcb63291c66dff2ca 7925 database optional valkey_7.2.10+dfsg1-0ubuntu0.1_source.buildinfo
Original-Maintainer: Lucas Kanashiro <kanashiro at debian.org>
Vcs-Git: https://git.launchpad.net/~lvoytek/ubuntu/+source/valkey
Vcs-Git-Commit: 5e59223bf16ba36f4f704295c68b51995cb5ae2b
Vcs-Git-Ref: refs/heads/backport-lp2115258-noble

More information about the noble-changes mailing list