Hello, Redis community,
We've just released Redis 7.0.10 to fix bugs and a security issue.
Following are the release notes.
Upgrade urgency: SECURITY, contains fixes to security issues.
(CVE-2023-28425) Specially crafted MSETNX command can lead to assertion and denial-of-service
Large blocks of replica client output buffer may lead to PSYNC loops and unnecessary memory usage (#11666)
Fix CLIENT REPLY OFF|SKIP to not silence push notifications (#11875)
Trim excessive memory usage in stream nodes when exceeding stream-node-max-bytes (#11885)
Fix module RM_Call commands failing with OOM when maxmemory is changed to zero (#11319)
Cheers,
The Redis core team