[ubuntu/questing-proposed] valkey 8.1.3+dfsg1-0ubuntu1 (Accepted)

Lena Voytek lena.voytek at canonical.com
Wed Jul 9 19:55:15 UTC 2025 

valkey (8.1.3+dfsg1-0ubuntu1) questing; urgency=medium

  * New upstream version 8.1.3 (LP: #2115258)
    - Security fixes:
      + CVE-2025-32023: Out-of-bounds write during hyperloglog operations.
      + CVE-2025-48367: IP Protocol errors resulting in DoS.
      + CVE-2025-27151: AOF file name length not checked.
    - Bug fixes:
      + Fix missing response when AUTH is errored inside a transaction.
      + Properly escape double quotes and backslash in sdscatrepr.
      + Fix random element in skewed sparse hash table.
      + Only mark the client reprocessing flag when unblocked on keys.
      + Fix memory corruption in sharded pubsub unsubscribe.
      + Free module context even if there was no content written in auxsave2.
      + Detect SSL_new() returning NULL in outgoing connections.
      + Correctly cast the extension lengths.
      + Fix cluster myself CLUSTER SLOTS/NODES wrong port after updating
        port/tls-port.
      + Fix replica can't finish failover when config epoch is outdated.
      + Fix CLIENT UNBLOCK ability to unpause paused clients.
  * d/p/fix-8.1.x-multi-unit-test.patch: Fix multi unit test issue in new
    version.
  * d/p/0005-Incorporate-Redis-CVE-for-CVE-2025-27151-2146.patch: Remove- fixed
    upstream in 8.1.2.

Date: Mon, 07 Jul 2025 16:21:10 -0400
Changed-By: Lena Voytek <lena.voytek at canonical.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/valkey/8.1.3+dfsg1-0ubuntu1
-------------- next part --------------
Format: 1.8
Date: Mon, 07 Jul 2025 16:21:10 -0400
Source: valkey
Built-For-Profiles: noudeb
Architecture: source
Version: 8.1.3+dfsg1-0ubuntu1
Distribution: questing
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Lena Voytek <lena.voytek at canonical.com>
Launchpad-Bugs-Fixed: 2115258
Changes:
 valkey (8.1.3+dfsg1-0ubuntu1) questing; urgency=medium
 .
   * New upstream version 8.1.3 (LP: #2115258)
     - Security fixes:
       + CVE-2025-32023: Out-of-bounds write during hyperloglog operations.
       + CVE-2025-48367: IP Protocol errors resulting in DoS.
       + CVE-2025-27151: AOF file name length not checked.
     - Bug fixes:
       + Fix missing response when AUTH is errored inside a transaction.
       + Properly escape double quotes and backslash in sdscatrepr.
       + Fix random element in skewed sparse hash table.
       + Only mark the client reprocessing flag when unblocked on keys.
       + Fix memory corruption in sharded pubsub unsubscribe.
       + Free module context even if there was no content written in auxsave2.
       + Detect SSL_new() returning NULL in outgoing connections.
       + Correctly cast the extension lengths.
       + Fix cluster myself CLUSTER SLOTS/NODES wrong port after updating
         port/tls-port.
       + Fix replica can't finish failover when config epoch is outdated.
       + Fix CLIENT UNBLOCK ability to unpause paused clients.
   * d/p/fix-8.1.x-multi-unit-test.patch: Fix multi unit test issue in new
     version.
   * d/p/0005-Incorporate-Redis-CVE-for-CVE-2025-27151-2146.patch: Remove- fixed
     upstream in 8.1.2.
Checksums-Sha1:
 2f172368a4b4fee200ba715f4846d397b7a5b40c 2484 valkey_8.1.3+dfsg1-0ubuntu1.dsc
 738d66ab2f782097d715db139836c0b7fef256f6 2728696 valkey_8.1.3+dfsg1.orig.tar.xz
 32a97fadac604378ffb3a518e2fd2bb2dd7f125a 20716 valkey_8.1.3+dfsg1-0ubuntu1.debian.tar.xz
 d1a9ac4e6916582da1fc03b221adee7802f176ff 8030 valkey_8.1.3+dfsg1-0ubuntu1_source.buildinfo
Checksums-Sha256:
 c2da9f5ae40e869b7aa94cd6ffd6a968392af226b3986b6df80b8f5a9235235f 2484 valkey_8.1.3+dfsg1-0ubuntu1.dsc
 49e0daad48562641bdcb166a5d2b5ac7909329c5529a38143e9c79ca07218ea8 2728696 valkey_8.1.3+dfsg1.orig.tar.xz
 ce4f3acf68d6eb9b6ee091cbed2dd6d48ccf7f92454b1fe15e3594e7992fa26e 20716 valkey_8.1.3+dfsg1-0ubuntu1.debian.tar.xz
 d5daba87b1d045259354f360d67b455730d69e90801bb1adf6a2fbd1f848efe3 8030 valkey_8.1.3+dfsg1-0ubuntu1_source.buildinfo
Files:
 4f1b3a99f791054f2bb1e7bf24cda777 2484 database optional valkey_8.1.3+dfsg1-0ubuntu1.dsc
 1b46f53493c700f2dd6871fb1b0b2e43 2728696 database optional valkey_8.1.3+dfsg1.orig.tar.xz
 7e9011d6b812fbb1963e616f09793622 20716 database optional valkey_8.1.3+dfsg1-0ubuntu1.debian.tar.xz
 2aeb328db0812d7ec3ebc509e639df6d 8030 database optional valkey_8.1.3+dfsg1-0ubuntu1_source.buildinfo
Original-Maintainer: Lucas Kanashiro <kanashiro at debian.org>
Vcs-Git: https://git.launchpad.net/~lvoytek/ubuntu/+source/valkey
Vcs-Git-Commit: 9fdf0ae35801b6cdf077af89de6318681e28eebc
Vcs-Git-Ref: refs/heads/update-8.1.3-questing

More information about the Questing-changes mailing list