http://bugzilla.opensuse.org/show_bug.cgi?id=1191331 http://bugzilla.opensuse.org/show_bug.cgi?id=1191331#c4 Andreas Stieger <Andreas.Stieger@gmx.de> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|RESOLVED |REOPENED Resolution|FIXED |--- --- Comment #4 from Andreas Stieger <Andreas.Stieger@gmx.de> --- (In reply to Paul Fee from comment #3)
Leap 15.3 ships with hiredis 0.13.3, the fix is not available for that version of hiredis.
This is not in line with our security maintenance policy. Create a backport against 0.13.3. Do not close the issue but re-assign to security-team@suse.de when you are done. Set a needinfo request on them if unable. Here is the debian backport to help you get started: https://lists.debian.org/debian-lts-announce/2021/10/msg00007.html https://salsa.debian.org/lamby/pkg-hiredis/-/commit/e210141d449659042f00fad7... -- You are receiving this mail because: You are on the CC list for the bug.