[ubuntu/oracular-updates] valkey 7.2.7+dfsg1-0ubuntu0.24.10.1 (Accepted)

[Brian Murray]

valkey (7.2.7+dfsg1-0ubuntu0.24.10.1) oracular; urgency=medium

  * New upstream version 7.2.7 (LP: #2091129)
    - Security fixes:
      + CVE-2024-31449: Lua library commands may lead to stack overflow and
        potential RCE.
      + CVE-2024-31227: Potential Denial-of-service due to malformed ACL
        selectors.
      + CVE-2024-31228: Potential Denial-of-service due to unbounded pattern
        matching.
    - Bug fixes:
      + Fix re-enable of Append-Only File flag in RdbLoad module.
      + Fix cluster replica failure to establish replication link in race
        condition.
      + Fix valkeymodule-rs build issues due to typo in REGISTER_API.
      + Fix crash where command duration is not reset when client is blocked.
      + Fix CLUSTER SHARDS empty array return.
      + Fix client auth block when a cluster is down.
      + Fix MEET request reliability during link failure.
      + Ensure the --count option in redis-cli works correctly even without
        --pattern.
      + Fix redis-check-aof misidentifying data in manifest format as MP-AOF.
    - Updates:
      + Add clusterNodeIsVotingPrimary concept to fix issue where nodes outside
        the quorum group could mark nodes as failed.
      + Add compatibility with redis-sentinel for starting sentinel.
      + Update redis-check-rdb types to replace stream-v2 with stream-v3
  * d/watch: Fix repack suffix

Date: 2024-12-13 23:30:10.461128+00:00
Changed-By: Lena Voytek <lena.voytek at canonical.com>
Signed-By: Brian Murray <brian at ubuntu.com>
https://launchpad.net/ubuntu/+source/valkey/7.2.7+dfsg1-0ubuntu0.24.10.1
-------------- next part --------------
Sorry, changesfile not available.