[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: [SECURITY] [DSA 3634-1] redis security update

Unsuscribe me please.

2016-07-30 18:11 GMT+02:00 Sebastien Delafond <seb@debian.org>:
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-3634-1                   security@debian.org
https://www.debian.org/security/                       Sebastien Delafond
July 30, 2016                         https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : redis
CVE ID         : CVE-2013-7458
Debian Bug     : 832460

It was discovered that redis, a persistent key-value database, did not
properly protect redis-cli history files: they were created by default
with world-readable permissions.

Users and systems administrators may want to proactively change
permissions on existing ~/rediscli_history files, instead of waiting
for the updated redis-cli to do so the next time it is run.

For the stable distribution (jessie), this problem has been fixed in
version 2:2.8.17-1+deb8u5.

For the testing (stretch) and unstable (sid) distributions, this
problem has been fixed in version 2:3.2.1-4.

We recommend that you upgrade your redis packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org



             Página web www.satzubillaga-online.es

Para localizarnos en un mapa siga el enlace de abajo:

cl/ Huesca s/n. Edif. Proa 2 bajo. 
Servicio oficial Braun.
Fuengirola 29640.
Tel: 952 470 791


Este correo electrónico y, cualquier fichero anexo al mismo, contiene información de carácter confidencial exclusivamente dirigida a su destinatario/os. Queda prohibida su divulgación, copia o distribución a terceros sin la previa autorización, en virtud de la legislación vigente. Si ha recibido este correo por error, le rogamos nos lo comunique inmediatamente por esta misma vía y proceda a su destrucción.


The information in this e-mail and in any attachments is confidential and it is intended solely for the attention and use of the named addresses. You are hereby notified that any dissemination, distribution or copy of this communication is prohibited without prior consent and it is strictly prohibited by law. If you have received this communication in error, please, notify the sender immediately by replying this e-mail and delete the mail and the attachments.

Reply to: