Minor Version | Category | New/Optimization/Fixes |
7.1.5 | Performance optimization | Optimized the internal dictionary storage structure of the database by splitting the global dictionary into slot-independent dictionaries, effectively reducing the memory usage of the instance. |
7.1.4 | Security Fixes | Fixed CVE-2026-23631: Lua script master-replica synchronization use-after-free may lead to remote code execution vulnerability. |
| | Fixed CVE-2026-25243: Illegal memory access in the RESTORE command may lead to remote code execution vulnerability. |
7.1.3 | Performance optimization | Optimize the timeout handling mechanism for the cluster Slot scanning task to improve the operational stability of the cluster under high-load scenarios. |
| | Optimized the cluster state calculation logic when arbitration nodes are added to ensure the accuracy of cluster size information. |
7.1.2 | Security Fixes | Fixed CVE-2026-21863: Malicious cluster bus message leading to remote denial of service vulnerability. |
| | Fixed CVE-2025-67733: RESP protocol injection vulnerability via Lua error_reply. |
7.1.1 | New Features | Supports dual-channel replication, where independent data transmission channels are used between primary/secondary nodes. During full synchronization, incremental data synchronization remains unaffected, significantly shortening the full synchronization time. |
| | Dual-channel replication supports disk logging mode. During full synchronization, replica nodes store incremental data to disk instead of memory, effectively reducing the memory pressure on replica nodes. |
7.1.0 | New Features | Supports the client redirection feature. During instance version upgrades or data migration scenarios, the system automatically redirects client connections from the old instance to the new instance, without requiring businesses to modify connection configurations or restart applications, achieving seamless and smooth migration and version upgrades. |
7.0.26 | New Features | Supports the safe shutdown feature, ensuring data persistence is completed when the instance is shut down, reducing the risk of data loss. |
| | Supports automatically preventing key expiration and memory eviction during data synchronization, ensuring the integrity of data migration. |
| | Supports asynchronous handshake authentication for cluster nodes, enhancing cluster security. |
7.0.25 | Security Fixes | Fixed CVE-2025-49844: Lua Use-After-Free Remote Code Execution Vulnerability. |
| | Fixed CVE-2025-46817: Integer overflow in Lua library commands that could lead to remote code execution vulnerability. |
| | Fixed CVE-2025-46818: Lua function user identity verification vulnerability. |
| | Fixed CVE-2025-46819: Lua out-of-bounds read vulnerability. |
7.0.24 | Security Fixes | Fixed CVE-2025-27151 security vulnerability: AOF filename length verification vulnerability. |
| | Fixed CVE-2025-32023 security vulnerability: HyperLogLog command out-of-bounds write that could lead to remote code execution vulnerability. |
| | Fixed CVE-2025-48367 security vulnerability: Improper connection error handling resulting in denial-of-service vulnerability. |
| Security Fixes | Fixed CVE-2025-21605 security vulnerability: Unauthenticated client abuse leading to unbounded growth of output buffers that could result in denial-of-service vulnerability. |
| New Features | Added new client input/output buffer OOM statistics items to facilitate monitoring of client memory usage. |
| Performance optimization | Optimize CLUSTER RESET to execute asynchronously, mitigating service blocking during reset operations. |
7.0.22 | Security Fixes | Fixed CVE-2024-46981 security vulnerability: Lua use-after-free vulnerability that could lead to remote code execution. |
7.0.20 | Security Fixes | Fixed CVE-2024-31449: Lua bit.tohex stack buffer overflow that could lead to remote code execution vulnerability. |
| | Fixed CVE-2024-31228: String pattern matching abuse that could lead to denial-of-service vulnerability. |
| | Fixed CVE-2024-31227: Malicious selector in ACL SETUSER that could lead to denial-of-service vulnerability. |
7.0.19 | New Features | Support for FIFO LRU eviction policy for Lua scripts. When the number of script caches reaches the limit, it automatically evicts the earliest unused scripts to prevent excessive memory consumption. |
| | Adding OOM (out-of-memory) checks during Lua script execution to prevent instance memory exhaustion caused by script runs. |
| | Support reserving additional memory for internal buffers to prevent actual memory from exceeding the maximum limit. |
| | Prevent Lua error_reply abuse from causing unbounded growth of errorstats, ensuring monitoring data accuracy. |
| Performance optimization | Optimize the failover time after master node failure, shortening the HA switchover time. |
7.0.18 | New Features | Support for controlling log output during the rehash process. |
7.0.16 | Performance optimization | Reserve additional file descriptors for connection management to enhance stability in high-concurrency scenarios. |
7.0.15 | New Features | Tencent Cloud's first distributed in-memory cloud database built on Redis community edition and compatible with Redis 7.0. |
Minor Version | Category | New/Optimization/Fixes |
6.2.18 | Performance optimization | Optimized the internal dictionary storage structure of the database by splitting the global dictionary into slot-independent dictionaries, effectively reducing the memory usage of the instance. |
6.2.17 | Security vulnerability | Fixed CVE-2026-23631: Lua script master-replica synchronization use-after-free may lead to remote code execution vulnerability. |
| | Fixed CVE-2026-25243: Illegal memory access in the RESTORE command may lead to remote code execution vulnerability. |
6.2.16 | New Features | Supports dual-channel replication, where independent data transmission channels are used between primary/secondary nodes. During full synchronization, incremental data synchronization remains unaffected, significantly shortening the full synchronization time. |
| | During replica synchronization, replication data can be staged to disk to significantly reduce memory pressure. |
| | The replication backlog buffer and replicas utilize a globally shared replication buffer, enabling multiple replicas to share the same backlog data, effectively reducing the memory usage of the master node. |
6.2.15 | Performance optimization | Optimizes the task scheduling mechanism in high-load cluster scenarios to enhance operational stability. |
| | Optimizing the key eviction policy during data synchronization to enhance reliability. |
6.2.14 | New Features | Cluster state changes are automatically logged to facilitate troubleshooting and issue diagnosis. |
| | Supports client eviction feature. When client memory usage exceeds the configured threshold, it automatically evicts client connections consuming more memory to ensure memory availability of the instance. |
| | Supports the safe shutdown feature, ensuring data persistence is completed when the instance is shut down. |
| | Supports automatic prevention of key expiration and memory eviction during data synchronization to ensure data migration integrity. |
| | Supports asynchronous handshake authentication for cluster nodes, enhancing cluster security. |
| Performance optimization | Optimize the index positioning algorithm for the List data structure, supporting automatic selection to start the search from the nearest end based on the target index position, effectively reducing traversal steps and improving access performance for List-type data. |
6.2.13 | Security Fixes | Fixed CVE-2025-49844: Lua Use-After-Free Remote Code Execution Vulnerability. |
| | Fixed CVE-2025-46817: Integer overflow in Lua library commands that could lead to remote code execution vulnerability. |
| | Fixed CVE-2025-46818: Lua function user identity verification vulnerability. |
| | Fixed CVE-2025-46819: Lua out-of-bounds read vulnerability. |
6.2.12 | Security Fixes | Supports controlling whether replica nodes respond to read requests when data is not fully synchronized, meeting the balance requirements for data consistency and availability in different business scenarios. |
| | Fixed CVE-2025-32023 security vulnerability: HyperLogLog command out-of-bounds write that could lead to remote code execution vulnerability. |
| | Fixed CVE-2025-48367 security vulnerability: Improper connection error handling resulting in denial-of-service vulnerability. |
6.2.11 | Security Fixes | Fixed CVE-2025-21605 security vulnerability: Unauthenticated client abuse leading to unbounded growth of output buffers that could result in denial-of-service vulnerability. |
| | Fixed CVE-2023-25155: RAND command integer overflow vulnerability. |
| New Features | Optimize the performance of incremental rehashing in high-load scenarios. |
| | Added the lazyfree-lazy-user-del configuration item. When this item is enabled, the DEL command will asynchronously release memory to avoid service blocking during big Key deletion. |
| | Restrict the RDB/AOF file storage directory to enhance data security. |
| | Supports viewing the number of asynchronously released objects via the INFO command. |
| | Enable protected configurations and security controls for sensitive commands. |
| Performance optimization | Optimize the execution performance of the CLUSTER SLOTS command. |
| | Enhancing the parameter validation capability of the HINCRBYFLOAT command to improve the security of data operations. |
6.2.10 | Performance optimization | Optimize the client connection management policy to improve the load balancing efficiency of new and existing connections in high-concurrency scenarios. |
| New Features | The COPY command supports Multi-DB, removing database restrictions in cluster mode. |
| Security Fixes | Fixed CVE-2024-46981: Lua use-after-free remote code execution vulnerability. |
6.2.9 | Security Fixes | Fixed CVE-2024-31449: Lua bit.tohex stack buffer overflow that could lead to remote code execution vulnerability. |
| Security Fixes | Fixed CVE-2022-36021: A denial of service vulnerability caused by crafted patterns in string matching commands that could lead to full CPU utilization. |
| Security Fixes | Fixed CVE-2024-31228: String pattern matching abuse that could lead to denial-of-service vulnerability. |
6.2.8 | New Features | Support for FIFO LRU eviction policy for Lua scripts. When the number of script caches reaches the limit, it automatically evicts the earliest unused scripts to prevent excessive memory consumption. |
| New Features | Adding OOM (out-of-memory) checks during Lua script execution to prevent instance memory exhaustion caused by script runs. |
| New Features | Support reserving additional memory for internal buffers to prevent actual memory from exceeding the maximum limit. |
| New Features | Prevent Lua error_reply abuse from causing unbounded growth of errorstats, ensuring monitoring data accuracy. |
| Performance optimization | Optimized memory fragmentation defragmentation capability to improve defragmentation efficiency. |
| Performance optimization | SCRIPT FLUSH command has been changed to asynchronous execution to prevent blocking business requests. |
| Performance optimization | Optimize the failover time after master node failure, shortening the HA switchover time. |
6.2.7 | New Features | Support for controlling log output during the rehash process. |
6.2.5 | New Features | Tencent Cloud's first distributed caching cloud database based on the Redis community edition and compatible with Redis 6.2. |
| | The multi-DB feature is supported, with a maximum of 256 DBs. |
| | Supported performing rehash operations during maintenance. |
Minor Version | Category | New/Optimization/Fixes |
5.2.19 | Security Fixes | Fixed CVE-2026-25243: Illegal memory access in the RESTORE command may lead to remote code execution vulnerability. |
5.2.18 | Security Fixes | Fixed CVE-2026-23631: Lua script master-replica synchronization use-after-free may lead to remote code execution vulnerability. |
5.2.17 | Performance optimization | Optimizing the key eviction policy during data synchronization to reduce the risk of unnecessary data loss. |
5.2.16 | New Features | Supports client eviction feature. When client memory usage exceeds the configured threshold, it automatically evicts client connections consuming more memory to ensure memory availability of the instance. |
| New Features | Supports the safe shutdown feature, ensuring data persistence is completed when the instance is shut down, reducing the risk of data loss. |
| New Features | During data synchronization, it automatically avoids key expiration and memory eviction to ensure data migration integrity. |
| New Features | Supports asynchronous handshake authentication for cluster nodes, enhancing cluster security. |
| Performance optimization | Optimize the index positioning algorithm for the List data structure, supporting automatic selection to start the search from the nearest end based on the target index position, effectively reducing traversal steps and improving access performance for List-type data. |
| Security Fixes | Fixed CVE-2023-45145: Unix socket listening permissions race condition vulnerability. |
| Security Fixes | Fixed CVE-2021-32626: Lua script stack overflow resulting in memory write vulnerability. |
| Security Fixes | Fixed CVE-2021-21309: Integer overflow vulnerability. |
5.2.15 | Security Fixes | Fixed CVE-2025-46819: Lua out-of-bounds read vulnerability. |
| Security Fixes | Fixed CVE-2025-46818: Lua function user identity verification vulnerability. |
| Security Fixes | Fixed CVE-2025-46817: Integer overflow in Lua library commands that could lead to remote code execution vulnerability. |
| Security Fixes | Fixed CVE-2025-49844: Lua Use-After-Free Remote Code Execution Vulnerability. |
5.2.14 | New Features | Supports controlling whether replica nodes respond to read requests when data synchronization is not completed. |
| Security Fixes | Fixed CVE-2025-48367: Denial of Service vulnerability caused by improper handling of connection errors. |
| | Fixed CVE-2025-32023: Out-of-bounds write in HyperLogLog commands that could lead to remote code execution vulnerability. |
5.2.13 | New Features | Added the lazyfree-lazy-user-del configuration item. When this item is enabled, the DEL command will asynchronously release memory to avoid service blocking during big Key deletion. |
| New Features | Restrict the RDB/AOF file storage directory to enhance data security. |
| New Features | Supports viewing the number of asynchronously released objects via the INFO command. |
| New Features | Enable protected configurations and security controls for sensitive commands. |
| Performance optimization | Optimize the execution performance of the CLUSTER SLOTS command. |
| Security Fixes | Fixed CVE-2021-3470: Vulnerability caused by incorrect assumption in memory allocation function. |
| Security Fixes | Fixed CVE-2021-32761: BITFIELD series commands overflow vulnerability on 32-bit systems. |
| Security Fixes | Fixed CVE-2023-25155: RAND command integer overflow vulnerability. |
| Security Fixes | Fixed CVE-2025-21605: Denial-of-service vulnerability caused by unauthenticated client abuse leading to unbounded growth of the output buffer. |
5.2.12 | Security Fixes | Fixed CVE-2024-46981: Lua use-after-free remote code execution vulnerability. |
5.2.11 | Security Fixes | Fixed CVE-2024-31449: Lua bit.tohex stack buffer overflow that could lead to remote code execution vulnerability. |
| Security Fixes | Fixed CVE-2024-31228: String pattern matching abuse that could lead to denial-of-service vulnerability. |
5.2.10 | New Features | Support for FIFO LRU eviction policy for Lua scripts. When the number of script caches reaches the limit, it automatically evicts the earliest unused scripts to prevent excessive memory consumption. |
| New Features | Adding OOM (out-of-memory) checks during Lua script execution to prevent instance memory exhaustion caused by script runs. |
| Performance optimization | Optimized memory fragmentation defragmentation capability to improve defragmentation efficiency. |
| Performance optimization | SCRIPT FLUSH command has been changed to asynchronous execution to prevent blocking business requests. |
| Performance optimization | Optimize the failover time after master node failure, shortening the HA switchover time. |
5.2.9 | New Features | Support for controlling log output during the rehash process. |
5.2.8 | Security Fixes | Fixed CVE-2022-36021: A denial of service vulnerability caused by crafted patterns in string matching commands that could lead to full CPU utilization. |
| Security Fixes | Fixed CVE-2022-35977: An integer overflow vulnerability in SETRANGE/SORT that could lead to OOM. |
5.2.7 | New Features | Supported performing rehash operations during maintenance. |
5.2.0 | New Features | Supported the multi-DB feature. A single instance can support up to 256 DBs (databases), facilitating data isolation and management. |
| Performance optimization | Time-consuming memory statistics operations are handled asynchronously to avoid blocking the main thread, effectively ensuring low-latency responses under high concurrency. |
Minor Version | Category | New/Optimization/Fixes |
4.3.20 | Security Fixes | Fixed CVE-2026-25243: Illegal memory access in the RESTORE command may lead to remote code execution vulnerability. |
4.3.19 | Security Fixes | Fixed CVE-2026-23631: Lua script master-replica synchronization use-after-free may lead to remote code execution vulnerability. |
4.3.18 | Performance optimization | Optimizing the key eviction policy during data synchronization to reduce the risk of unnecessary data loss. |
4.3.17 | New Features | Supports client eviction feature. When client memory usage exceeds the configured threshold, it automatically evicts client connections consuming more memory to ensure memory availability of the instance. |
| | Supports the safe shutdown feature, ensuring data persistence is completed when the instance is shut down, reducing the risk of data loss. |
| | During data synchronization, it automatically avoids key expiration and memory eviction to ensure data migration integrity. |
| | Supports asynchronous handshake authentication for cluster nodes, enhancing cluster security. |
| Performance optimization | Optimize the index positioning algorithm for the List data structure, supporting automatic selection to start the search from the nearest end based on the target index position, effectively reducing traversal steps and improving access performance for List-type data. |
| Security Fixes | Fixed CVE-2023-45145: Unix socket listening permissions race condition vulnerability. |
| | Fixed CVE-2021-32626: Lua script stack overflow resulting in memory write vulnerability. |
| | Fixed CVE-2021-21309: Integer overflow vulnerability. |
4.3.16 | Security Fixes | Fixed CVE-2025-46819: Lua out-of-bounds read vulnerability. |
| | Fixed CVE-2025-46818: Lua function user identity verification vulnerability. |
| | Fixed CVE-2025-46817: Integer overflow in Lua library commands that could lead to remote code execution vulnerability. |
| | Fixed CVE-2025-49844: Lua Use-After-Free Remote Code Execution Vulnerability. |
4.3.15 | New Features | Supports controlling whether replica nodes respond to read requests when data synchronization is not completed. |
| Security Fixes | Fixed CVE-2025-48367: Denial of Service vulnerability caused by improper handling of connection errors. |
| Security Fixes | Fixed CVE-2025-32023: Out-of-bounds write in HyperLogLog commands that could lead to remote code execution vulnerability. |
4.3.14 | New Features | Added the lazyfree-lazy-user-del configuration item. When this item is enabled, the DEL command will asynchronously release memory to avoid service blocking during big Key deletion. |
| New Features | Restrict the RDB/AOF file storage directory to enhance data security. |
| New Features | Supports viewing the number of asynchronously released objects via the INFO command. |
| New Features | Enable protected configurations and security controls for sensitive commands. |
| Performance optimization | Optimize the execution performance of the CLUSTER SLOTS command. |
| Security Fixes | Fixed CVE-2021-3470: Vulnerability caused by incorrect assumption in memory allocation function. |
| Security Fixes | Fixed CVE-2021-32761: BITFIELD series commands overflow vulnerability on 32-bit systems. |
| Security Fixes | Fixed CVE-2023-25155: RAND command integer overflow vulnerability. |
| Security Fixes | Fixed CVE-2025-21605: Denial-of-service vulnerability caused by unauthenticated client abuse leading to unbounded growth of the output buffer. |
4.3.13 | Security Fixes | Fixed CVE-2024-46981: Lua use-after-free remote code execution vulnerability. |
4.3.12 | Security Fixes | Fixed CVE-2024-31449: Lua bit.tohex stack buffer overflow that could lead to remote code execution vulnerability. |
| Security Fixes | Fixed CVE-2024-31228: String pattern matching abuse that could lead to denial-of-service vulnerability. |
4.3.11 | New Features | Support for FIFO LRU eviction policy for Lua scripts. When the number of script caches reaches the limit, it automatically evicts the earliest unused scripts to prevent excessive memory consumption. |
| New Features | Adding OOM (out-of-memory) checks during Lua script execution to prevent instance memory exhaustion caused by script runs. |
| Performance optimization | Optimized memory fragmentation defragmentation capability to improve defragmentation efficiency. |
| Performance optimization | SCRIPT FLUSH command has been changed to asynchronous execution to prevent blocking business requests. |
| Performance optimization | Optimize the failover time after master node failure, shortening the HA switchover time. |
4.3.10 | New Features | Support for controlling log output during the rehash process. |
4.3.9 | Security Fixes | Fixed CVE-2022-36021: A denial-of-service vulnerability where crafted patterns in string matching commands (SCAN/KEYS) could trigger CPU exhaustion. |
| Security Fixes | Fixed CVE-2022-35977: An integer overflow vulnerability in SETRANGE/SORT that could lead to OOM. |
4.3.8 | New Features | Supported performing rehash operations during maintenance. |
4.3.0 | New Features | Supported the multi-DB feature. A single instance can support up to 256 DBs (databases), facilitating data isolation and management. |
| | Changed the default broadcast mode to non-broadcast mode, effectively reducing network traffic overhead and resource consumption within the cluster. |
| Performance optimization | Optimized the fault detection mechanism. When a replica node detects an abnormal condition, it can proactively send notifications to the cluster, significantly reducing the discovery and failover time for faulty nodes. |
| Performance optimization | Time-consuming memory statistics operations are handled asynchronously to avoid blocking the main thread, effectively ensuring low-latency responses under high concurrency. |
Esta página foi útil?
Você também pode entrar em contato com a Equipe de vendas ou Enviar um tíquete em caso de ajuda.
comentários