weekly changelog digest

Redis changelog digest

Apr 21 - Apr 27, 2025. Useful releases, risky migrations, and noisy updates from the Redis channel.

Most useful

Most risky

Noise filtered

No matching updates in this bucket.

all updates

Redis updates in 2025-w17

3 updates

Redis1 year agoApr 23, 2025, 12:00 PMUsefulAI-assisted summary

score 0

~Fix security vulnerability (CVE‑2025‑21605) allowing unauthenticated buffer growth
+Resolve FUNCTION FLUSH memory leak with jemalloc and several stability bugs (WAITAOF, SLAVEOF crash, RANDOMKEY loop, ShardID inconsistency)
~General bug fixes improve reliability of lazy free and client pause handling

Security-relevantsecuritybugfixsource needs reviewLast checked 4 days ago

Redis1 year agoApr 23, 2025, 11:59 AMUsefulAI-assisted summary

score 0

~Fixed CVE‑2025‑21605 where an unauthenticated client could cause unlimited growth of output buffers, leading to a potential denial‑of‑service.
~Patched the buffer‑handling logic to prevent uncontrolled memory expansion and improve overall security.

Security-relevantsecuritysource needs reviewLast checked 4 days ago

Redis1 year agoApr 23, 2025, 11:58 AMUsefulAI-assisted summary

score 0

~Fixed CVE‑2025‑21605 allowing unauthenticated clients to cause unbounded output buffer growth.
~Resolved race condition between main thread and module threads and fixed infinite loop in RANDOMKEY during client pause.
~Fixed ShardID inconsistency when both primary and replica support it, along with other bug fixes (IDs 12817, 12905, 13863, 13877).

Security-relevantsecuritybugfixsource needs reviewLast checked 4 days ago