Redis 6.2.11

00-RELEASENOTES

@@ -11,6 +11,32 @@ CRITICAL: There is a critical bug affecting MOST USERS. Upgrade ASAP.
 SECURITY: There are security fixes in the release.
 --------------------------------------------------------------------------------
 
+================================================================================
+Redis 6.2.11 Released Tue Feb 28 12:00:00 IST 2023
+================================================================================
+
+Upgrade urgency: SECURITY, contains fixes to security issues.
+
+Security Fixes:
+* (CVE-2023-25155) Specially crafted SRANDMEMBER, ZRANDMEMBER, and HRANDFIELD
+  commands can trigger an integer overflow, resulting in a runtime assertion
+  and termination of the Redis server process.
+* (CVE-2022-36021) String matching commands (like SCAN or KEYS) with a specially
+  crafted pattern to trigger a denial-of-service attack on Redis, causing it to
+  hang and consume 100% CPU time.
+
+Bug Fixes
+=========
+
+* Fix a crash when reaching the maximum invalidations limit of client-side tracking (#11814)
+* Fix cluster inbound link keepalive time (#11785)
+* Make sure that fork child doesn't do incremental rehashing (#11692)
+
+Performance and resource utilization improvements
+=================================================
+
+* Avoid realloc to reduce size of strings when it is unneeded (#11766)
+
 ================================================================================
 Redis 6.2.10 Released Mon Jan 17 12:00:00 IST 2023
 ================================================================================

src/version.h

@@ -1,2 +1,2 @@
-#define REDIS_VERSION "6.2.10"
-#define REDIS_VERSION_NUM 0x0006020a
+#define REDIS_VERSION "6.2.11"
+#define REDIS_VERSION_NUM 0x0006020b