Instaclustr is pleased to announce that Redis® 7.0.5 was made generally available to customers of our managed service on October 10.
Redis 7.0.5 is the latest version and includes a fix for CVE-2022-35951. This CVE was given a Critical CVSS score as per the NIST National Vulnerability Database. Shortly after the CVE announcement, we published this blog explaining our assessment of the impact of this CVE on our managed offering, Instaclustr for Redis.
Our advice at the time was for all customers on Redis 7.0.4 to upgrade to Redis 7.0.5 once we made it available, which is now an option with the GA of 7.0.5. We’ve already been in touch with customers impacted by this and offered our help in carrying out this upgrade. If you haven’t done this yet, we recommend you do so soon.
For all other customers—and new customers, we recommend trying out Redis 7.0.5 as it comes with more than just the fix for the mentioned CVE. It contains over a dozen other fixes for issues found in previous Redis releases. Click here for more details.
Any questions? Please don’t hesitate to get in touch with us by opening a support ticket.