-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
- -------------------------------------------------------------------------
Debian Security Advisory DSA-3634-1 security@debian.org
https://www.debian.org/security/ Sebastien Delafond
July 30, 2016 https://www.debian.org/security/faq
- -------------------------------------------------------------------------
Package : redis
CVE ID : CVE-2013-7458
Debian Bug : 832460
It was discovered that redis, a persistent key-value database, did not
properly protect redis-cli history files: they were created by default
with world-readable permissions.
Users and systems administrators may want to proactively change
permissions on existing ~/rediscli_history files, instead of waiting
for the updated redis-cli to do so the next time it is run.
For the stable distribution (jessie), this problem has been fixed in
version 2:2.8.17-1+deb8u5.
For the testing (stretch) and unstable (sid) distributions, this
problem has been fixed in version 2:3.2.1-4.
We recommend that you upgrade your redis packages.
Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/
Mailing list: debian-security-announce@lists.debian.org
-----BEGIN PGP SIGNATURE-----
iQEcBAEBCgAGBQJXnM3/AAoJEBC+iYPz1Z1k0W8IAJQwl5aHk4GNcVuzWXOdKoDi
X0mUpb+IYwTmt+DQC7ip7Xv3Ygu1niO0b0WPAmm5vXqOGPnM1IlFSfaBz7jUfV41
+YorVdmRrUZjwOsJyU0PzumqryCmlC7IL4Z01Ro31Gxr9+qFXfNOpVfXxOFt8AQl
NdvoCvf+PtDfYlMEcG2a7d+huoxPJBc0gqP4NRnnmSwlHer+/PxwM1GqrqUS8XVQ
RtUIFMi/3vo/bA9FEtP0JkQXJ+1Mh4XFhFH9Ggj/QuxIksRA7VBXRfVl+2E2Hsv4
2a1ZvcaoDCqf+w1URoHKA3AuuQAUV0J7232MktSPepeOeqnLmxc+Nrv9Ktk4Hqk=
=Vugt
-----END PGP SIGNATURE-----
Confidencialidad
Este correo electrónico y, cualquier fichero anexo al mismo, contiene información de carácter confidencial exclusivamente dirigida a su destinatario/os. Queda prohibida su divulgación, copia o distribución a terceros sin la previa autorización, en virtud de la legislación vigente. Si ha recibido este correo por error, le rogamos nos lo comunique inmediatamente por esta misma vía y proceda a su destrucción.
Confidentiality
The information in this e-mail and in any attachments is confidential and it is intended solely for the attention and use of the named addresses. You are hereby notified that any dissemination, distribution or copy of this communication is prohibited without prior consent and it is strictly prohibited by law. If you have received this communication in error, please, notify the sender immediately by replying this e-mail and delete the mail and the attachments.