7.0.13
Upgrade urgency SECURITY: See security fixes below.
Security Fixes
- (CVE-2023-41053) Redis does not correctly identify keys accessed by SORT_RO and
as a result may grant users executing this command access to keys that are not
explicitly authorized by the ACL configuration.
Bug Fixes
- Cluster: fix a race condition where a slot migration may revert on a
subsequent failover or node joining (#12344) - Ensure that the function load timeout is disabled during loading from RDB/AOF
and on replicas. (#12451) - Fix the assertion when script timeout occurs after it signaled a blocked client (#12459)