Skip to content

Releases: redis-stack/redis-stack

Redis Stack 7.4.0-v8

03 Nov 13:45
@ViktarStarastsenka ViktarStarastsenka
v7.4.0-v8
3dd73af
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
Redis Stack 7.4.0-v8 Latest
Latest

This is a maintenance release for Redis Stack Server 7.4.0.

Update urgency: HIGH: There is a critical bug that may affect a subset of users.
Docker

Headlines:

This version includes a stability fix for the Redis server addressing a critical issue in the HyperLogLog data structure, where an overflow condition could occur when processing datasets exceeding 2GB entries, potentially resulting in a Redis crash.
This release also includes several fixes related to probabilistic data structures, enhancing overall reliability and performance.
Additionally, this maintenance release ships with the latest version of Redis Insight.

Details:

Bug Fixes

  • Redis:

    • An overflow in HyperLogLog with 2GB+ entries may result in a Redis crash

  • Probabilistic:

    • Cuckoo filter - Division by zero in Cuckoo filter insertion
    • Cuckoo filter - Counter overflow
    • Bloom filter - Arbitrary memory read/write with invalid filter
    • Bloom filter - Out-of-bounds access with empty chain
    • Top-k - Out-of-bounds access
    • Bloom filter - Restore invalid filter
    • #886 - TDIGEST.CREATE crashes (OOM) on huge initialization values (MOD-10840)

Redis version:

Module versions

Recommended Client Libraries

Compatible with Redis Insight. The Docker image redis/redis-stack for this version is bundled with Redis Insight 2.70.1.

Note: version numbers follow the following pattern:
x.y.z-b

  • x.y Redis Major version
  • z increases with even numbers as a module x.y version increases.
  • b denotes a patch to Redis or a module (any z of Redis or Modules). b will consist of a v + numeric value.

Downloads

Assets 2
Loading

Redis Stack 7.2.0-v20

03 Nov 10:02
@ViktarStarastsenka ViktarStarastsenka
v7.2.0-v20
920e110
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
Redis Stack 7.2.0-v20

This is a maintenance release for Redis Stack Server 7.2.0.

Update urgency: HIGH: There is a critical bug that may affect a subset of users.
Docker

Headlines:

This version includes a stability fix for the Redis server addressing a critical issue in the HyperLogLog data structure, where an overflow condition could occur when processing datasets exceeding 2GB entries, potentially resulting in a Redis crash.
This release also includes several fixes related to probabilistic data structures, enhancing overall reliability and performance.
Additionally, this maintenance release ships with the latest version of Redis Insight.

Details:

Bug Fixes

  • Redis:

    • An overflow in HyperLogLog with 2GB+ entries may result in a Redis crash

  • Probabilistic:

    • Cuckoo filter - Division by zero in Cuckoo filter insertion
    • Cuckoo filter - Counter overflow
    • Bloom filter - Arbitrary memory read/write with invalid filter
    • Bloom filter - Out-of-bounds access with empty chain
    • Top-k - Out-of-bounds access
    • Bloom filter - Restore invalid filter

Redis version:

Module versions

Recommended Client Libraries

Compatible with Redis Insight. The Docker image redis/redis-stack for this version is bundled with Redis Insight 2.70.1.

Note: version numbers follow the following pattern:
x.y.z-b

  • x.y Redis Major version
  • z increases with even numbers as a module x.y version increases.
  • b denotes a patch to Redis or a module (any z of Redis or Modules). b will consist of a v + numeric value.

Downloads

Loading

Redis Stack 7.4.0-v7

03 Oct 11:38
@ViktarStarastsenka ViktarStarastsenka
v7.4.0-v7
13533d5
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
Redis Stack 7.4.0-v7

This is a maintenance release for Redis Stack Server 7.4.0.

Update urgency: SECURITY: there are security fixes in the release.

Docker

Headlines:

This version includes security fixes for the Redis server, addressing several issues related to Lua scripts, such as an out-of-bounds read, a potential remote code execution vulnerability, and other related vulnerabilities.
In addition to the security updates, the release delivers several bug fixes, including endless client blocking when using blocking commands, a potential use-after-free issue after Pub/Sub and Lua defragmentation, and other related fixes.
Finally, this maintenance release ships with the latest version of Redis Insight.

Details:

Security and privacy

  • Redis:
    • (CVE-2025-49844) A Lua script may lead to remote code execution
    • (CVE-2025-46817) A Lua script may lead to integer overflow and potential RCE
    • (CVE-2025-46818) A Lua script can be executed in the context of another user
    • (CVE-2025-46819) LUA out-of-bound read

Bug Fixes

  • Redis
    • #14330 Potential use-after-free after pubsub and Lua defrag
    • #14319 Potential crash on Lua script defrag
    • #14164 Prevent CLIENT UNBLOCK from unblocking CLIENT PAUSE
    • #14165 Endless client blocking for blocking commands
    • #14163 EVAL crash when error table is empty
    • #14227 HINCRBYFLOAT removes field expiration on replica

Redis version:

Module versions

Recommended Client Libraries

Compatible with Redis Insight. The Docker image redis/redis-stack for this version is bundled with Redis Insight 2.70.1.

Note: version numbers follow the following pattern:
x.y.z-b

  • x.y Redis Major version
  • z increases with even numbers as a module x.y version increases.
  • b denotes a patch to Redis or a module (any z of Redis or Modules). b will consist of a v + numeric value.

Downloads

Loading

Redis Stack 7.2.0-v19

03 Oct 12:14
@ViktarStarastsenka ViktarStarastsenka
v7.2.0-v19
966d666
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
Redis Stack 7.2.0-v19

This is a maintenance release for Redis Stack Server 7.2.0.

Update urgency: SECURITY: there are security fixes in the release.

Docker

This version includes security fixes for the Redis server, addressing several issues related to Lua scripts, such as an out-of-bounds read, a potential remote code execution vulnerability, and other related vulnerabilities.
Additionally, this maintenance release ships with the latest version of Redis Insight.

Details:

Security and privacy

  • Redis:
    • (CVE-2025-49844) A Lua script may lead to remote code execution
    • (CVE-2025-46817) A Lua script may lead to integer overflow and potential RCE
    • (CVE-2025-46818) A Lua script can be executed in the context of another user
    • (CVE-2025-46819) LUA out-of-bound read

Redis version:

Module versions

Recommended Client Libraries

Compatible with Redis Insight. The Docker image redis/redis-stack for this version is bundled with Redis Insight 2.70.1.

Note: version numbers follow the following pattern:
x.y.z-b

  • x.y Redis Major version
  • z increases with even numbers as a module x.y version increases.
  • b denotes a patch to Redis or a module (any z of Redis or Modules). b will consist of a v + numeric value.

Downloads

Loading

Redis Stack 7.4.0-v6

07 Jul 11:48
@ViktarStarastsenka ViktarStarastsenka
v7.4.0-v6
315c503
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
Redis Stack 7.4.0-v6

This is a maintenance release for Redis Stack Server 7.4.0.

Update urgency: SECURITY: there are security fixes in the release.

Docker

Headlines:

This version includes security fixes for the Redis server, addressing an out-of-bounds write vulnerability in HyperLogLog commands and improving connection handling by retrying accepted connections even after an error.
It also includes improvements and bug fixes for the Redis Query Engine, JSON, and time series data structures.
Additionally, this maintenance release ships with the latest version of Redis Insight.

Details:

Security and privacy

  • Redis:
    • (CVE-2025-32023) Fix out-of-bounds write in HyperLogLog commands
    • (CVE-2025-48367) Retry accepting other connections even if the accepted connection reports an error

Improvements

  • Redis Query Engine
    • #6279 Lock mechanism for collecting FT.INFO statistics when concurrently running index sanitiser (MOD-10007, MOD-9761)
    • #5637 Memory allocation when converting special UTF-8 symbols requires more memory (MOD-8799)
    • #6007 Parser for intersections on parentheses and sub-queries order won't affect full-text scores (MOD-9278)
    • #6020 Preventing access to the Redis key space when LOAD...@__key is used (MOD-9419)
    • #5938 Performance of collecing vector index statistics, reducing CPU time (MOD-9354)
    • #5800 Accuracy of index memory reporting by correcting a bug that caused negative memory counts (MOD-5904)

Bug Fixes

  • Redis Query Engine

    • #6211 Some languages could have multiple lower and upper case matches, causing index misbehaviour (MOD-9835)
    • #6349 Search on terms larger than 128 characters could lead to missing matches (MOD-6786)
    • #6305 Iterating over a large index tree, due to frequent document updates, could hit the TIMEOUT, causing a crash (MOD-9856)
    • #6184 Reindexing from RDB with multiple vector indices could lead to a crash due to cluster health check - NodeWD (MOD-9220,MOD-8809)
    • #6028 FT.CURSOR...DEL while another thread is reading it could lead to a crash (MOD-9408,MOD-9432,MOD-9433,MOD-9434,MOD-9435)
    • #5967 When indexing documents using TEXT and without the text in the documents leads to an inf or nan score (MOD-9423)
    • #6056 Avoid lazy expiration in background indexing for Active-Active setup preventing keys from expiring incorrectly (MOD-9486)
    • #6108 Timeout fail returned when ON_TIMEOUT RETURN policy stop collecting of the partial results - best effort (MOD-9612)
    • #6207 Continuous increasing of index error counts on FT.INFO, could lead to an overflow and memory leak (MOD-9396)
    • #5859 Last query result using could be missing FT.AGGREGATE with ON_TIMEOUT RETURN and using multi-threading (MOD-9222)
    • #5858 Collecting empty results from shards during FT.AGGREGATE with RESP3 could cause a crash (MOD-9174)

  • JSON:

    • #1329 Memory usage calculation: some allocations are counted twice (MOD-9169)

  • Time series:

    • #1725 TS.DEL crashes on keys with compactions if the deletion removes the last compaction bucket (MOD-8936)
    • LibMR#58 Crash when a cluster contains both 1.8 and newer nodes (MOD-8976, MOD-9192)

Redis version:

Module versions

Recommended Client Libraries

Compatible with Redis Insight. The Docker image redis/redis-stack for this version is bundled with Redis Insight 2.70.

Note: version numbers follow the following pattern:
x.y.z-b

  • x.y Redis Major version
  • z increases with even numbers as a module x.y version increases.
  • b denotes a patch to Redis or a module (any z of Redis or Modules). b will consist of a v + numeric value.

Downloads

Loading

Redis Stack 7.2.0-v18

07 Jul 12:35
@ViktarStarastsenka ViktarStarastsenka
v7.2.0-v18
8a8b2d8
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
Redis Stack 7.2.0-v18

This is a maintenance release for Redis Stack Server 7.2.0.

Update urgency: SECURITY: there are security fixes in the release.

Docker

Headlines:

This version includes security fixes for the Redis server, addressing an out-of-bounds write vulnerability in HyperLogLog commands and improving connection handling by retrying accepted connections even after an error.
It also includes improvements and bug fixes for the Redis Query Engine, JSON, and time series data structures.
Additionally, this maintenance release ships with the latest version of Redis Insight.

Details:

Security and privacy

  • Redis:
    • (CVE-2025-32023) Fix out-of-bounds write in HyperLogLog commands
    • (CVE-2025-48367) Retry accepting other connections even if the accepted connection reports an error

Improvements

  • Redis Query Engine
    • #6340 Lock mechanism for collecting FT.INFO statistics when concurrently running index sanitiser (MOD-10007, MOD-9761)
    • #6340 Lock mechanism for collecting FT.INFO statistics when concurrently running index sanitiser (MOD-10007, MOD-9761)
    • #6008 Parser for intersections on parentheses and sub-queries order won't affect full-text scores (MOD-9278)
    • #5939 Performance of collecing vector index statistics, reducing CPU time (MOD-9354)
    • #5801 Accuracy of index memory reporting by correcting a bug that caused negative memory counts (MOD-5904)

Bug Fixes

  • Redis Query Engine

    • #6207 Continuous increasing of index error counts on FT.INFO, could lead to an overflow and memory leak (MOD-9396)
    • #6349 Search on terms larger than 128 characters could lead to missing matches (MOD-6786)
    • #6305 Iterating over a large index tree, due to frequent document updates, could hit the TIMEOUT, causing a crash (MOD-9856)
    • #6191 Reindexing from RDB with multiple vector indices could lead to a crash due to cluster health check - NodeWD (MOD-9220,MOD-8809)
    • #6031 FT.CURSOR...DEL while another thread is reading it could lead to a crash (MOD-9408,MOD-9432,MOD-9433,MOD-9434,MOD-9435)
    • #5966 When indexing documents using TEXT and without the text in the documents leads to an inf or nan score (MOD-9423)
    • #6057 Avoid lazy expiration in background indexing for Active-Active setup, preventing keys from expiring incorrectly (MOD-9486)
    • #6113 Timeout fail returned when ON_TIMEOUT RETURN policy stop collecting of the partial results - best effort (MOD-9612)
    • #5864 Last query result using could be missing FT.AGGREGATE with ON_TIMEOUT RETURN and using multi-threading (MOD-9222)
    • #5863 Collecting empty results from shards during FT.AGGREGATE with RESP3 could cause a crash (MOD-9174)

  • JSON:

    • #1329 Memory usage calculation: some allocations are counted twice (MOD-9169)

  • Time series:

    • #1725 TS.DEL crashes on keys with compactions if the deletion removes the last compaction bucket (MOD-8936)
    • LibMR#58 Crash when a cluster contains both 1.8 and newer nodes (MOD-8976, MOD-9192)

Redis version:

Module versions

Recommended Client Libraries

Compatible with Redis Insight. The Docker image redis/redis-stack for this version is bundled with Redis Insight 2.70.

Note: version numbers follow the following pattern:
x.y.z-b

  • x.y Redis Major version
  • z increases with even numbers as a module x.y version increases.
  • b denotes a patch to Redis or a module (any z of Redis or Modules). b will consist of a v + numeric value.

Downloads

Loading

Redis Stack 7.4.0-v5

28 May 11:09
@ViktarStarastsenka ViktarStarastsenka
v7.4.0-v5
cdd74a7
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
Redis Stack 7.4.0-v5

This is a maintenance release for Redis Stack Server 7.4.0.

Update urgency: SECURITY: there are security fixes in the release.

Docker | Download

Headlines:

This version includes security fixes for the Redis server, addressing a vulnerability in redis-check-aof that could lead to a stack overflow and potential remote code execution (RCE).
It also contains several bug fixes for the Redis server.
Additionally, this maintenance release ships with the latest version of Redis Insight.

Details:

Security and privacy

  • Redis:
    • (CVE-2025-27151) redis-check-aof may lead to a stack overflow and potential RCE

Bug Fixes

  • Redis:
    • #13966, #13932 CLUSTER SLOTS - TLS port update not reflected in CLUSTER SLOTS
    • #13958 XTRIM, XADD - incorrect lag due to trimming stream

Redis version:

Module versions

Recommended Client Libraries

Compatible with Redis Insight. The Docker image redis/redis-stack for this version is bundled with Redis Insight 2.70.

Note: version numbers follow the following pattern:
x.y.z-b

  • x.y Redis Major version
  • z increases with even numbers as a module x.y version increases.
  • b denotes a patch to Redis or a module (any z of Redis or Modules). b will consist of a v + numeric value.

Downloads

Loading

Redis Stack 7.2.0-v17

28 May 11:29
@ViktarStarastsenka ViktarStarastsenka
v7.2.0-v17
e850131
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
Redis Stack 7.2.0-v17

This is a maintenance release for Redis Stack Server 7.2.0.

Update urgency: SECURITY: there are security fixes in the release.

Docker | Download

Headlines:

This version includes security fixes for the Redis server, addressing a vulnerability in redis-check-aof that could lead to a stack overflow and potential remote code execution (RCE).
It also contains several bug fixes for the Redis server.
Additionally, this maintenance release ships with the latest version of Redis Insight.

Details:

Security and privacy

  • Redis:
    • (CVE-2025-27151) redis-check-aof may lead to a stack overflow and potential RCE

Bug Fixes

  • Redis:
    • #13966, #13932 CLUSTER SLOTS - TLS port update not reflected in CLUSTER SLOTS
    • #13958 XTRIM, XADD - incorrect lag due to trimming stream

Redis version:

Module versions

Recommended Client Libraries

Compatible with Redis Insight. The Docker image redis/redis-stack for this version is bundled with Redis Insight 2.70.

Note: version numbers follow the following pattern:
x.y.z-b

  • x.y Redis Major version
  • z increases with even numbers as a module x.y version increases.
  • b denotes a patch to Redis or a module (any z of Redis or Modules). b will consist of a v + numeric value.

Downloads

Loading

Redis Stack 7.4.0-v4

24 Apr 11:34
@ViktarStarastsenka ViktarStarastsenka
v7.4.0-v4
1753895
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
Redis Stack 7.4.0-v4

This is a maintenance release for Redis Stack Server 7.4.0.

Update urgency: SECURITY: there are security fixes in the release.

Docker | Download

Headlines:

This version includes security fixes for the Redis server, addressing a vulnerability where an unauthenticated client can cause unlimited growth of output buffers.
It also delivers an improvement to the Redis Query Engine, along with bug fixes for both the Redis server and the Redis Query Engine.
Additionally, this maintenance release ships with the latest version of Redis Insight.

Details:

Security and privacy

  • Redis:
    *(CVE-2025-21605) An unauthenticated client can cause an unlimited growth of output buffers

Improvements

  • Redis Query Engine:
    • #5734 Coordinator race condition preventing the premature release and avoiding errors and inconsistencies during query executions (MOD-8794)

Bug Fixes

  • Redis:
    *#13661 FUNCTION FLUSH - memory leak when using jemalloc
    *#13793 WAITAOF returns prematurely
    *#13853 SLAVEOF - crash when clients are blocked on lazy free
    *#13863 RANDOMKEY - infinite loop during client pause
    *#13877 ShardID inconsistency when both primary and replica support it

  • Redis Query Engine:

    • #5734 Cursor with SORTBY is never depleted, blocking queries if cursor limit is achieved (MOD-8483)
    • #5734 Empty results with RESP3 due to the TIMEOUT even if setting to deliver partial results - ON_TIMEOUT policy (MOD-8482, MOD-8856)
    • #5734 Cursor with RESP3 on FT.AGGREGATE is never depleted, blocking queries if cursor limit is achieved (MOD-8515)
    • #5734 Using FT.CURSOR READ on queries that timed out led to fewer results than expected (MOD-8606)
    • #5804 FT.AGGREGATEresponse in RESP3 the total_results field is not correct (MOD-9054)
    • #5704 Weights in the query string are ignored if using SCORER BM25 (MOD-7896)
    • #5646 FT.SEARCH using Cyrillic characters and wildcards delivering no results (MOD-7944)
    • #5163 SCORER selection ignored on FT.AGGREGATE commands in clustered database

Redis version:

Module versions

Recommended Client Libraries

Compatible with Redis Insight. The Docker image redis/redis-stack for this version is bundled with Redis Insight 2.68.

Note: version numbers follow the following pattern:
x.y.z-b

  • x.y Redis Major version
  • z increases with even numbers as a module x.y version increases.
  • b denotes a patch to Redis or a module (any z of Redis or Modules). b will consist of a v + numeric value.

Downloads

Loading

Redis Stack 7.2.0-v16

24 Apr 11:33
@ViktarStarastsenka ViktarStarastsenka
v7.2.0-v16
1a83112
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
Redis Stack 7.2.0-v16

This is a maintenance release for Redis Stack Server 7.2.0.

Update urgency: SECURITY: there are security fixes in the release.

Docker | Download

Headlines:

This version includes security fixes for the Redis server, addressing a vulnerability where an unauthenticated client can cause unlimited growth of output buffers.
It also delivers an improvement to the Redis Query Engine, along with bug fixes for the Redis server, the Redis Query Engine, and probabilistic data structures.
Additionally, this maintenance release ships with the latest version of Redis Insight.

Details:

Security and privacy

  • Redis:
    • (CVE-2025-21605) An unauthenticated client can cause an unlimited growth of output buffers

Improvements

  • Redis Query Engine:
    • #5788 Coordinator race condition preventing the premature release and avoiding errors and inconsistencies during query executions (MOD-8794)

Bug Fixes

  • Redis:

    • #12817, #12905 Fix race condition issues between the main thread and module threads
    • #13863 RANDOMKEY - infinite loop during client pause
    • #13877 ShardID inconsistency when both primary and replica support it

  • Redis Query Engine:

    • #5709 Weights in the query string are ignored if using SCORER BM25 (MOD-7896)
    • #5788 Cursor with SORTBY is never depleted, blocking queries if cursor limit is achieved (MOD-8483)
    • #5788 Empty results with RESP3 due to the TIMEOUT even if setting to deliver partial results - ON_TIMEOUT policy (MOD-8482)
    • #5788 Cursor with RESP3 on FT.AGGREGATE is never depleted, blocking queries if cursor limit is achieved (MOD-8515)
    • #5788 Using FT.CURSOR READ on queries that timed out led to fewer results than expected (MOD-8606)
    • #5810 FT.AGGREGATEresponse in RESP3 the total_results field is not correct (MOD-9054)
    • #5647 FT.SEARCH using Cyrillic characters and wildcards delivering no results (MOD-7944)

  • Probabilistic:

    • #828 CMS.INCRBY does not notify WATCHers or client-side caching (MOD-8193)
    • #827 Top-K - suboptimal results after RDB load due to missing initialization (MOD-8194)

Redis version:

Module versions

Recommended Client Libraries

Compatible with Redis Insight. The Docker image redis/redis-stack for this version is bundled with Redis Insight 2.68.

Downloads

Loading