Skip to content

Commit

Permalink
Release 0.1.23 (includes security update)
Browse files Browse the repository at this point in the history 
Bugfix: Apply ACL rules to WebSocket commands.
        ACL rules were not applied for WebSocket connections, this is
        now fixed.

Upgraded: Jansson was upgraded to version 2.14 (latest)

Security: this is also a security update, fixing vulnerabilities found
in the OpenSSL library, installed from Alpine Linux packages (Alpine
Linus provides the base image for Webdis).
For more details: https://scout.docker.com/v/CVE-2023-5363

Impact: Webdis can connect to external Webdis instances over TLS.
By default, it does not use TLS to connect to Redis, but interfaces
with Redis over a local connection within the Docker container.
Please review whether these OpenSSL vulnerabilities affect your
deployment. If you do not use TLS to connect to Redis, then you should
not be affected.
  • Loading branch information
@nicolasff
nicolasff committed Oct 30, 2023
1 parent 12cfdd3 commit 267476b
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion src/version.h
View file
Original file line number Diff line number Diff line change
Expand Up @@ -2,7 +2,7 @@
#define VERSION_H

#ifndef WEBDIS_VERSION
#define WEBDIS_VERSION "0.1.23-dev"
#define WEBDIS_VERSION "0.1.23"
#endif

#endif /* VERSION_H */

0 comments on commit 267476b

Please sign in to comment.