Situation for redis for bookworm?

To: Chris Lamb <lamby@debian.org>
Cc: team@security.debian.org, debian-release@lists.debian.org
Subject: Situation for redis for bookworm?
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Sun, 26 Mar 2023 13:57:51 +0200
Message-id: <[🔎] ZCAzP4eu4t6rKB4V@eldamar.lan>
Mail-followup-to: Chris Lamb <lamby@debian.org>, team@security.debian.org, debian-release@lists.debian.org

Hi Chris,

I'm trying to clarify some packages which have security-fixes which
did not yet land in bookworm.

redis is on the radar for that, recent uploads for unstable did fix
some (arguably no-dsa) CVEs. Redis is though not able to migrate to
testing. Can you have a look and if the testing regressions are fase
positives or to be ignore fill a unblock request for the release team?

https://qa.debian.org/excuses.php?package=redis mentios that ther are
autopkgtest regression for python-channels-redis. 

As it is furthermore a key package is needs to be asked explicilty for
an unblock.

CVEs fixed in unstable but not yet in bookworm cover CVE-2022-35977,
CVE-2022-36021, CVE-2023-22458 and CVE-2023-25155.

Would be great to have redis situation addresses before bookworm
release.

Regards,
Salvatore

Reply to:

Follow-Ups:
- Re: Situation for redis for bookworm?
  - From: Paul Gevers <elbrus@debian.org>

Prev by Date: Bug#1033492: unblock: php8.2/8.2.4-1 ????
Next by Date: Re: Situation for redis for bookworm?
Previous by thread: Bug#1033503: dgit autopkgtests broken by git 2.40
Next by thread: Re: Situation for redis for bookworm?
Index(es):
- Date
- Thread