[Buildroot] [PATCH=2020.02.x] package/redis: bump version to 5.0.9

Thomas De Schampheleire patrickdepinguin at gmail.com
Mon Jun 29 10:51:02 UTC 2020


Hello,

El lun., 22 jun. 2020 a las 9:49, Titouan Christophe (<
titouan.christophe at railnova.eu>) escribió:

> Hello Peter and all,
>
> On 21/06/20 23:39, Peter Korsgaard wrote:
> > Fixes a critical issue related to streams. From the release notes:
> >
> >
> ================================================================================
> > Redis 5.0.9     Released Thu Apr 17 12:41:00 CET 2020
> >
> ================================================================================
> >
> > Upgrade urgency:CRITICAL if you use Streams with AOF ore replicas.
> >                  Otherwise the upgrade urgency is LOW.
> >
> > This release has a speed improvement and a critical fix:
> >
> >      * FIX: XREADGROUP when fetching data in a blocking way, would not
> >             emit the XCLAIM in the AOF file and to replicas. This means
> >             that the last ID is not updated, and that restarting the
> server
> >             will have the effect of reprocessing some entries.
> >      * NEW: Clients blocked on the same key are now unblocked on
> >             O(1) time. Backported from Redis 6.
> >
> > Commits:
> >
> >      1fc8ef81a Fix XCLAIM propagation in AOF/replicas for blocking
> XREADGROUP.
> >      a5e24eabc Speedup: unblock clients on keys in O(1).
> >
> > Signed-off-by: Peter Korsgaard <peter at korsgaard.com>Acked-by: Titouan
> Christophe <titouan.christophe at railnova.eu>
>
>
Just want to highlight that also the 5.0.8 turns out to have a security
fix: http://cve.circl.lu/cve/CVE-2020-14147

Which reminds me of the fact that the package stats and associated CVE
detection is currently only running on the master branch (that I know of).
Which means that we are missing the CVE detection on the LTS branch.
Does it take a lot of resources / Is it hard to do, enabling this on the
LTS branch too (mostly the CVE part) ?

Thanks,
Thomas
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.busybox.net/pipermail/buildroot/attachments/20200629/c8f3d5e7/attachment.html>


More information about the buildroot mailing list