Accepted redis 2:2.4.14-1+deb7u2 (source amd64) into oldoldstable
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Sun, 05 Nov 2017 16:11:12 +0000
Source: redis
Binary: redis-server
Architecture: source amd64
Version: 2:2.4.14-1+deb7u2
Distribution: wheezy-security
Urgency: high
Maintainer: Chris Lamb <lamby@debian.org>
Changed-By: Chris Lamb <lamby@debian.org>
Description:
redis-server - Persistent key-value database with network interface
Changes:
redis (2:2.4.14-1+deb7u2) wheezy-security; urgency=high
.
* CVE-2016-1051: Prevent a "Cross Protocol Scripting" attack by checking for
"POST" and "Host:" strings which are not valid in the Redis protocol but
occur when an attack triggers an HTTP request to the Redis TCP port.
Checksums-Sha1:
d285dea8120484267f2b674b3e14f6eb0a35f01d 1826 redis_2.4.14-1+deb7u2.dsc
3f0a2ac2eef9319edb0d789d3553f77b2a3dc31d 627494 redis_2.4.14.orig.tar.gz
67740b9907497216cb68ee1a8af443edae7dea33 19107 redis_2.4.14-1+deb7u2.debian.tar.gz
ecc2d75c8bb41830e40d7c633fb4c27b00129085 235888 redis-server_2.4.14-1+deb7u2_amd64.deb
Checksums-Sha256:
69c314968e32502d2b206968227bee0700e23d560b96a92cbe87a340c759e2c3 1826 redis_2.4.14-1+deb7u2.dsc
4f26ae8cad0f9143ef30b9bb9565a1618570654eb86ee911c20966971660cc7e 627494 redis_2.4.14.orig.tar.gz
36deb858f94aaf1e324fea1128c45765d0ef2f105245cc6d4bf7c8325282c260 19107 redis_2.4.14-1+deb7u2.debian.tar.gz
cb926b1c89bce5fffd15191abb3c631434522637b8be37f2badff8a21c7377cc 235888 redis-server_2.4.14-1+deb7u2_amd64.deb
Files:
6c2298b92ea8be03bda4b152b542054a 1826 database optional redis_2.4.14-1+deb7u2.dsc
1bc8f833b955ef119d643da08084433f 627494 database optional redis_2.4.14.orig.tar.gz
2e3b9d88a83121097cf61d3aa3f42128 19107 database optional redis_2.4.14-1+deb7u2.debian.tar.gz
c57bb2dd0d7d6d1bc6d355bcb2bed016 235888 database optional redis-server_2.4.14-1+deb7u2_amd64.deb
-----BEGIN PGP SIGNATURE-----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=Ok3X
-----END PGP SIGNATURE-----