Red Hat Product Errata RHSA-2021:2034 - Security Advisory

Issued:: 2021-05-19
Updated:: 2021-05-19

RHSA-2021:2034 - Security Advisory

Overview
Updated Packages

Synopsis

Important: redis:6 security update

Type/Severity

Security Advisory: Important

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for the redis:6 module is now available for Red Hat Enterprise Linux 8.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

Redis is an advanced key-value store. It is often referred to as a data-structure server since keys can contain strings, hashes, lists, sets, and sorted sets. For performance, Redis works with an in-memory data set. You can persist it either by dumping the data set to disk every once in a while, or by appending each command to a log.

Security Fix(es):

redis: Integer overflow via STRALGO LCS command (CVE-2021-29477)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

Red Hat Enterprise Linux for x86_64 8 x86_64
Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.4 x86_64
Red Hat Enterprise Linux Server - AUS 8.4 x86_64
Red Hat Enterprise Linux for IBM z Systems 8 s390x
Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 8.4 s390x
Red Hat Enterprise Linux for Power, little endian 8 ppc64le
Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.4 ppc64le
Red Hat Enterprise Linux Server - TUS 8.4 x86_64
Red Hat Enterprise Linux for ARM 64 8 aarch64
Red Hat Enterprise Linux for ARM 64 - Extended Update Support 8.4 aarch64
Red Hat Enterprise Linux Server (for IBM Power LE) - Update Services for SAP Solutions 8.4 ppc64le
Red Hat Enterprise Linux Server - Update Services for SAP Solutions 8.4 x86_64

Fixes

BZ - 1957410 - CVE-2021-29477 redis: Integer overflow via STRALGO LCS command

CVEs

CVE-2021-29477

References

https://access.redhat.com/security/updates/classification/#important

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux for x86_64 8

SRPM
redis-6.0.9-3.module+el8.4.0+10984+ed187465.src.rpm	SHA-256: e929a99c0b603317029b2a1a011381acb14fef99f685e0028089c9399e6d698b
x86_64
redis-6.0.9-3.module+el8.4.0+10984+ed187465.x86_64.rpm	SHA-256: d49d0bb0e6621e21a2610786d5c05a802824a50f77a383b69948154885920766
redis-debuginfo-6.0.9-3.module+el8.4.0+10984+ed187465.x86_64.rpm	SHA-256: 7c4a609cd674af0f588c0b29013f2512215c68e12c9a26458a313f20fee6f324
redis-debugsource-6.0.9-3.module+el8.4.0+10984+ed187465.x86_64.rpm	SHA-256: 537c6a85597acfd14966c659ccdd1256e479fba772d9e004fb17f2381d3dd312
redis-devel-6.0.9-3.module+el8.4.0+10984+ed187465.x86_64.rpm	SHA-256: cd7f97200018388f3242ba80bd7f01f3b1f197d3a62d85c0cce7988d6c9ee393
redis-doc-6.0.9-3.module+el8.4.0+10984+ed187465.noarch.rpm	SHA-256: b95b5fe5344f7a4404a3caf016e4c20e2559073bbe3f65b55e82dfcbb676a015

Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.4

SRPM
redis-6.0.9-3.module+el8.4.0+10984+ed187465.src.rpm	SHA-256: e929a99c0b603317029b2a1a011381acb14fef99f685e0028089c9399e6d698b
x86_64
redis-6.0.9-3.module+el8.4.0+10984+ed187465.x86_64.rpm	SHA-256: d49d0bb0e6621e21a2610786d5c05a802824a50f77a383b69948154885920766
redis-debuginfo-6.0.9-3.module+el8.4.0+10984+ed187465.x86_64.rpm	SHA-256: 7c4a609cd674af0f588c0b29013f2512215c68e12c9a26458a313f20fee6f324
redis-debugsource-6.0.9-3.module+el8.4.0+10984+ed187465.x86_64.rpm	SHA-256: 537c6a85597acfd14966c659ccdd1256e479fba772d9e004fb17f2381d3dd312
redis-devel-6.0.9-3.module+el8.4.0+10984+ed187465.x86_64.rpm	SHA-256: cd7f97200018388f3242ba80bd7f01f3b1f197d3a62d85c0cce7988d6c9ee393
redis-doc-6.0.9-3.module+el8.4.0+10984+ed187465.noarch.rpm	SHA-256: b95b5fe5344f7a4404a3caf016e4c20e2559073bbe3f65b55e82dfcbb676a015

Red Hat Enterprise Linux Server - AUS 8.4

SRPM
redis-6.0.9-3.module+el8.4.0+10984+ed187465.src.rpm	SHA-256: e929a99c0b603317029b2a1a011381acb14fef99f685e0028089c9399e6d698b
x86_64
redis-6.0.9-3.module+el8.4.0+10984+ed187465.x86_64.rpm	SHA-256: d49d0bb0e6621e21a2610786d5c05a802824a50f77a383b69948154885920766
redis-debuginfo-6.0.9-3.module+el8.4.0+10984+ed187465.x86_64.rpm	SHA-256: 7c4a609cd674af0f588c0b29013f2512215c68e12c9a26458a313f20fee6f324
redis-debugsource-6.0.9-3.module+el8.4.0+10984+ed187465.x86_64.rpm	SHA-256: 537c6a85597acfd14966c659ccdd1256e479fba772d9e004fb17f2381d3dd312
redis-devel-6.0.9-3.module+el8.4.0+10984+ed187465.x86_64.rpm	SHA-256: cd7f97200018388f3242ba80bd7f01f3b1f197d3a62d85c0cce7988d6c9ee393
redis-doc-6.0.9-3.module+el8.4.0+10984+ed187465.noarch.rpm	SHA-256: b95b5fe5344f7a4404a3caf016e4c20e2559073bbe3f65b55e82dfcbb676a015

Red Hat Enterprise Linux for IBM z Systems 8

SRPM
redis-6.0.9-3.module+el8.4.0+10984+ed187465.src.rpm	SHA-256: e929a99c0b603317029b2a1a011381acb14fef99f685e0028089c9399e6d698b
s390x
redis-doc-6.0.9-3.module+el8.4.0+10984+ed187465.noarch.rpm	SHA-256: b95b5fe5344f7a4404a3caf016e4c20e2559073bbe3f65b55e82dfcbb676a015
redis-6.0.9-3.module+el8.4.0+10984+ed187465.s390x.rpm	SHA-256: ed1b5e64fce44510e55662eaa7450b26a25ba9993bf11ee7491ccd957bda948a
redis-debuginfo-6.0.9-3.module+el8.4.0+10984+ed187465.s390x.rpm	SHA-256: 96c912ee48a885d12502477a2fadd2215e3ad80e240635c7d4d70955eaa58a1a
redis-debugsource-6.0.9-3.module+el8.4.0+10984+ed187465.s390x.rpm	SHA-256: 15c2d2730ba81b2d7aedfcb39bb4eb5119caf9ce0f4e07235afe1b40f0a07922
redis-devel-6.0.9-3.module+el8.4.0+10984+ed187465.s390x.rpm	SHA-256: 89bb9d55fc966d3ab5887e66c880a3d250dc5bb2d352cfc146f723ff1ec6e839

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 8.4

SRPM
redis-6.0.9-3.module+el8.4.0+10984+ed187465.src.rpm	SHA-256: e929a99c0b603317029b2a1a011381acb14fef99f685e0028089c9399e6d698b
s390x
redis-doc-6.0.9-3.module+el8.4.0+10984+ed187465.noarch.rpm	SHA-256: b95b5fe5344f7a4404a3caf016e4c20e2559073bbe3f65b55e82dfcbb676a015
redis-6.0.9-3.module+el8.4.0+10984+ed187465.s390x.rpm	SHA-256: ed1b5e64fce44510e55662eaa7450b26a25ba9993bf11ee7491ccd957bda948a
redis-debuginfo-6.0.9-3.module+el8.4.0+10984+ed187465.s390x.rpm	SHA-256: 96c912ee48a885d12502477a2fadd2215e3ad80e240635c7d4d70955eaa58a1a
redis-debugsource-6.0.9-3.module+el8.4.0+10984+ed187465.s390x.rpm	SHA-256: 15c2d2730ba81b2d7aedfcb39bb4eb5119caf9ce0f4e07235afe1b40f0a07922
redis-devel-6.0.9-3.module+el8.4.0+10984+ed187465.s390x.rpm	SHA-256: 89bb9d55fc966d3ab5887e66c880a3d250dc5bb2d352cfc146f723ff1ec6e839

Red Hat Enterprise Linux for Power, little endian 8

SRPM
redis-6.0.9-3.module+el8.4.0+10984+ed187465.src.rpm	SHA-256: e929a99c0b603317029b2a1a011381acb14fef99f685e0028089c9399e6d698b
ppc64le
redis-doc-6.0.9-3.module+el8.4.0+10984+ed187465.noarch.rpm	SHA-256: b95b5fe5344f7a4404a3caf016e4c20e2559073bbe3f65b55e82dfcbb676a015
redis-6.0.9-3.module+el8.4.0+10984+ed187465.ppc64le.rpm	SHA-256: 41e6c69d41e20fd78a13d1d30a5ab02a02314a7cf5c901fa9dd323b141d253b2
redis-debuginfo-6.0.9-3.module+el8.4.0+10984+ed187465.ppc64le.rpm	SHA-256: d3cad7b6e0dd39f13a95e284b603e0bc7e615ed31d1d8f33965167da4d8e8d72
redis-debugsource-6.0.9-3.module+el8.4.0+10984+ed187465.ppc64le.rpm	SHA-256: ef5ba4ddf2357718174938049b6262a05e35cd31d8ad8e3862b43494ba9ab18c
redis-devel-6.0.9-3.module+el8.4.0+10984+ed187465.ppc64le.rpm	SHA-256: 6e5ff5fad8f3f6204ca9913b54c6059ff903eafcf2b909707ea8ed2fda07fa7c

Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.4

SRPM
redis-6.0.9-3.module+el8.4.0+10984+ed187465.src.rpm	SHA-256: e929a99c0b603317029b2a1a011381acb14fef99f685e0028089c9399e6d698b
ppc64le
redis-doc-6.0.9-3.module+el8.4.0+10984+ed187465.noarch.rpm	SHA-256: b95b5fe5344f7a4404a3caf016e4c20e2559073bbe3f65b55e82dfcbb676a015
redis-6.0.9-3.module+el8.4.0+10984+ed187465.ppc64le.rpm	SHA-256: 41e6c69d41e20fd78a13d1d30a5ab02a02314a7cf5c901fa9dd323b141d253b2
redis-debuginfo-6.0.9-3.module+el8.4.0+10984+ed187465.ppc64le.rpm	SHA-256: d3cad7b6e0dd39f13a95e284b603e0bc7e615ed31d1d8f33965167da4d8e8d72
redis-debugsource-6.0.9-3.module+el8.4.0+10984+ed187465.ppc64le.rpm	SHA-256: ef5ba4ddf2357718174938049b6262a05e35cd31d8ad8e3862b43494ba9ab18c
redis-devel-6.0.9-3.module+el8.4.0+10984+ed187465.ppc64le.rpm	SHA-256: 6e5ff5fad8f3f6204ca9913b54c6059ff903eafcf2b909707ea8ed2fda07fa7c

Red Hat Enterprise Linux Server - TUS 8.4

SRPM
redis-6.0.9-3.module+el8.4.0+10984+ed187465.src.rpm	SHA-256: e929a99c0b603317029b2a1a011381acb14fef99f685e0028089c9399e6d698b
x86_64
redis-6.0.9-3.module+el8.4.0+10984+ed187465.x86_64.rpm	SHA-256: d49d0bb0e6621e21a2610786d5c05a802824a50f77a383b69948154885920766
redis-debuginfo-6.0.9-3.module+el8.4.0+10984+ed187465.x86_64.rpm	SHA-256: 7c4a609cd674af0f588c0b29013f2512215c68e12c9a26458a313f20fee6f324
redis-debugsource-6.0.9-3.module+el8.4.0+10984+ed187465.x86_64.rpm	SHA-256: 537c6a85597acfd14966c659ccdd1256e479fba772d9e004fb17f2381d3dd312
redis-devel-6.0.9-3.module+el8.4.0+10984+ed187465.x86_64.rpm	SHA-256: cd7f97200018388f3242ba80bd7f01f3b1f197d3a62d85c0cce7988d6c9ee393
redis-doc-6.0.9-3.module+el8.4.0+10984+ed187465.noarch.rpm	SHA-256: b95b5fe5344f7a4404a3caf016e4c20e2559073bbe3f65b55e82dfcbb676a015

Red Hat Enterprise Linux for ARM 64 8

SRPM
redis-6.0.9-3.module+el8.4.0+10984+ed187465.src.rpm	SHA-256: e929a99c0b603317029b2a1a011381acb14fef99f685e0028089c9399e6d698b
aarch64
redis-doc-6.0.9-3.module+el8.4.0+10984+ed187465.noarch.rpm	SHA-256: b95b5fe5344f7a4404a3caf016e4c20e2559073bbe3f65b55e82dfcbb676a015
redis-6.0.9-3.module+el8.4.0+10984+ed187465.aarch64.rpm	SHA-256: 21aa67eba66415cb82ca94613783615e7a39d05f73a0c5802e4960310523f946
redis-debuginfo-6.0.9-3.module+el8.4.0+10984+ed187465.aarch64.rpm	SHA-256: d281f60f202a1a43479e80ab408a7c10b7dc138bad917c8a058e931bc4a3c363
redis-debugsource-6.0.9-3.module+el8.4.0+10984+ed187465.aarch64.rpm	SHA-256: 9531243af6319e135418072c7de856f1b35de764ce829ca1a1ffc794614c6422
redis-devel-6.0.9-3.module+el8.4.0+10984+ed187465.aarch64.rpm	SHA-256: db1fcf44bad792168a586196b98746d3606b4e51958e74e6bbdf4f9ff229ede8

Red Hat Enterprise Linux for ARM 64 - Extended Update Support 8.4

SRPM
redis-6.0.9-3.module+el8.4.0+10984+ed187465.src.rpm	SHA-256: e929a99c0b603317029b2a1a011381acb14fef99f685e0028089c9399e6d698b
aarch64
redis-doc-6.0.9-3.module+el8.4.0+10984+ed187465.noarch.rpm	SHA-256: b95b5fe5344f7a4404a3caf016e4c20e2559073bbe3f65b55e82dfcbb676a015
redis-6.0.9-3.module+el8.4.0+10984+ed187465.aarch64.rpm	SHA-256: 21aa67eba66415cb82ca94613783615e7a39d05f73a0c5802e4960310523f946
redis-debuginfo-6.0.9-3.module+el8.4.0+10984+ed187465.aarch64.rpm	SHA-256: d281f60f202a1a43479e80ab408a7c10b7dc138bad917c8a058e931bc4a3c363
redis-debugsource-6.0.9-3.module+el8.4.0+10984+ed187465.aarch64.rpm	SHA-256: 9531243af6319e135418072c7de856f1b35de764ce829ca1a1ffc794614c6422
redis-devel-6.0.9-3.module+el8.4.0+10984+ed187465.aarch64.rpm	SHA-256: db1fcf44bad792168a586196b98746d3606b4e51958e74e6bbdf4f9ff229ede8

Red Hat Enterprise Linux Server (for IBM Power LE) - Update Services for SAP Solutions 8.4

SRPM
redis-6.0.9-3.module+el8.4.0+10984+ed187465.src.rpm	SHA-256: e929a99c0b603317029b2a1a011381acb14fef99f685e0028089c9399e6d698b
ppc64le
redis-doc-6.0.9-3.module+el8.4.0+10984+ed187465.noarch.rpm	SHA-256: b95b5fe5344f7a4404a3caf016e4c20e2559073bbe3f65b55e82dfcbb676a015
redis-6.0.9-3.module+el8.4.0+10984+ed187465.ppc64le.rpm	SHA-256: 41e6c69d41e20fd78a13d1d30a5ab02a02314a7cf5c901fa9dd323b141d253b2
redis-debuginfo-6.0.9-3.module+el8.4.0+10984+ed187465.ppc64le.rpm	SHA-256: d3cad7b6e0dd39f13a95e284b603e0bc7e615ed31d1d8f33965167da4d8e8d72
redis-debugsource-6.0.9-3.module+el8.4.0+10984+ed187465.ppc64le.rpm	SHA-256: ef5ba4ddf2357718174938049b6262a05e35cd31d8ad8e3862b43494ba9ab18c
redis-devel-6.0.9-3.module+el8.4.0+10984+ed187465.ppc64le.rpm	SHA-256: 6e5ff5fad8f3f6204ca9913b54c6059ff903eafcf2b909707ea8ed2fda07fa7c

Red Hat Enterprise Linux Server - Update Services for SAP Solutions 8.4

SRPM
redis-6.0.9-3.module+el8.4.0+10984+ed187465.src.rpm	SHA-256: e929a99c0b603317029b2a1a011381acb14fef99f685e0028089c9399e6d698b
x86_64
redis-6.0.9-3.module+el8.4.0+10984+ed187465.x86_64.rpm	SHA-256: d49d0bb0e6621e21a2610786d5c05a802824a50f77a383b69948154885920766
redis-debuginfo-6.0.9-3.module+el8.4.0+10984+ed187465.x86_64.rpm	SHA-256: 7c4a609cd674af0f588c0b29013f2512215c68e12c9a26458a313f20fee6f324
redis-debugsource-6.0.9-3.module+el8.4.0+10984+ed187465.x86_64.rpm	SHA-256: 537c6a85597acfd14966c659ccdd1256e479fba772d9e004fb17f2381d3dd312
redis-devel-6.0.9-3.module+el8.4.0+10984+ed187465.x86_64.rpm	SHA-256: cd7f97200018388f3242ba80bd7f01f3b1f197d3a62d85c0cce7988d6c9ee393
redis-doc-6.0.9-3.module+el8.4.0+10984+ed187465.noarch.rpm	SHA-256: b95b5fe5344f7a4404a3caf016e4c20e2559073bbe3f65b55e82dfcbb676a015

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

Runtimes

Integration and Automation